How to Mitigate PrintNightmare Print Spooler Vulnerability on Windows 10 Computers

It seems that there is a vulnerability that affects all versions of Windows called the ‘PrintNightmare.’ Microsoft has acknowledged this issue, and they are looking for solutions. This is a security concern, and this vulnerability affects the Print Spooler service allowing hackers to install apps easily, manipulate private data, and even create full-fledged accounts on your computer. In this tutorial, I will show you how to mitigate PrintNightmare Print Spooler vulnerability on Windows 10 computers.

PrintNightmare Print Spooler Vulnerability

Since there is no permanent fix as of yet, it is essential to do something about this. Sangfor researchers published the vulnerability, and even though it was deleted quickly, the code was placed on GitHub. This gave others access to a threat before it could be removed. Microsoft is looking for solutions and has suggested that users should temporarily disable the Windows Print Spooler service.

Fix PrintNightmare Print Spooler Vulnerability

Step-1: Go to the Start Menu and type PowerShell.

Step-2: Select Run as administrator.

Step-3: You will be asked; do you want to allow this app to make changes to your device? Click Yes.

Step-4: Type this command and press Enter:
Stop-Service -Name Spooler -Force

Step-5: Now type this command and prevent Enter. This is to prevent the Spooler from starting again when your computer restarts.
Set-Service -Name Spooler -StartupType Disabled
After this, your computer will be protected, but you won’t be able to print locally or remotely.

Enable Print Spooler

If you need to print or the vulnerability issue has been resolved by Microsoft, you can enable the feature again.

1.  Open Start Menu and type PowerShell.
2.  Select Run as administrator.
3.  You will be asked, do you want to allow this app to make changes to your device? Click Yes.
4.  Type the following command and press Enter: Set-Service -Name Spooler -StartupType Automatic
5.  Now type this command and press Enter: Start-Service -Name Spooler

Disable Print Spooler Using Group Policy Editor

This method is for users who have the Windows 10 Pro or Enterprise edition installed on their computers. This method will not work for you if you have the Windows 10 Home version.

Step-1: Open the Run box with the shortcut keys Win + R.

Step-2: Type gpedit.msc in the type box and press Enter.

Step-3: Once the Local Policy Editor opens, type the following path in the search bar at the top of the Policy Editor window:
Computer Configuration > Administrative Templates > Printers

Step-4: Scroll down and double-click on Allow Print Spooler to accept client connections.

Step-5: Select Disabled.

Step-6: Click on Apply and then press OK.

Enable Print Spooler Using Group Policy Editor

1. 1.  Open the Run box. (Shortcut keys: Win + R)
   2.  Type gpedit.msc in the type box and press Enter
   3.  Type the following path in the search bar at the top of the Policy Editor window: Computer Configuration > Administrative Templates > Printers.
   4.  Double-click on Allow Print Spooler to accept client connections.
   5.  Select Not Configured.
   6.  Click on Apply and then select OK.

After disabling Print Spooler, you will be able to lessen the risk of hackers accessing your computer. Hopefully, soon Microsoft will come up with a solution that will permanently fix this problem.

The post How to Mitigate PrintNightmare Print Spooler Vulnerability on Windows 10 Computers by Zarmeen Shahzad appeared first on Wccftech.