Microsoft has released a security update today that will change the default behavior of the "Point and Print" feature to mitigate a severe security issue disclosed last month.
First added in Windows 2000, the Point and Print feature works by connecting to a print server to download and install necessary print drivers every time a user creates a connection to a remote printer without providing installation media.
Earlier this year, Jacob Baines, a reverse engineer for Dark Wolf Solutions (currently at Dragos), found that threat actors inside a company's network could abuse the Point and Print feature to run a malicious print server and force Windows systems to download and install malicious drivers.
![[correlate]](/data/avatars/m/79/79653.jpg?1556985072){kind=avatar}
