And thecareful Security researcher (Jonas L) Jonas L first made a mistake earlier this week, calling it a nasty vulnerability.
Attackers can hide a specially formatted font inside a ZIP file, folder, or even a simple Windows shortcut.
And all a Windows 10 user needs is extract the ZIP file or just look at the folder containing the malicious shortcut, which automatically corrupts the hard drive.
And theConfirmed (Will Dormann), a vulnerability analyst at the Computer Emergency Response Team Coordination Center, finds the findings.
He indicated that there could be more ways to cause damage to the hard drive.
Dorman also revealed that the vulnerability in Windows 10 existed nearly three years ago, and that he reported another NTFS issue two years ago that has yet to be fixed.
A Microsoft spokesperson said: We are aware of this issue and plan to introduce an update in a future release.
“The use of this technology is based on social engineering, and we encourage our customers to practice good online computing habits, including being careful when opening unknown files or accepting file transfers,” he added.
Others have discovered that the vulnerability that causes hard drive corruption also occurs if you paste the offending string into the address bar of your browser.
Bleeping Computer tested the error in a number of different wayspointed out Windows 10 users are required to restart the computer to repair corrupted hard drive records.
Restarting will launch the chkdsk process in Windows, which should succeed in repairing the damage.
However, the repair process is not always automatic, andSays Dorman: It may take manual intervention to successfully repair corrupted disk records.
The error does not require administrator rights to run or special write permissions, and that could make it more difficult for IT administrators if the chkdsk process fails to automatically fix the affected hard drive.