Project Zero is a Google initiative that targets weaknesses in different software's that are currently available in the market, after determining the possible susceptibility of those programs it is then reported to its respective vendor for them to be able to patch it before hackers can use those vulnerabilities to exploit their systems. However, Google only gives the developer a 90-day limit in order to create a patch to fix the issue and after that Google will publish the loophole along with codes that could exploit it. Unfortunately for Microsoft the 90-day window has already expired and the tech giant has yet to develop a patch for the detected problems on its software.

A researcher working on the Windows 8.1 found out that a gaping security hole is open for hackers to exploit. The vulnerability will allow low-level users such as Guests to access and gain Administrator rights, thus giving them full control and access to sensitive and possibly damaging functions. After Google Zero team informed Microsoft of the possible security weakness in their system, Microsoft was given exactly 90 days to create a patch to fix it. Unfortunately for Microsoft, no patch was created and Google published the security flaw days ago, right on schedule.

Some experts say that Google is doing more harm than good with its Project Zero, specifically pointing out the flexibility of its publishing deadline. Those who are on Google's side say that the 90-day window is fair and reasonable enough for any developer or vendor to create a patch for their software's own weaknesses. Others are pointing fingers to Microsoft for their lack of attention with regards to their own security loopholes. So far, no hacks were reported to have used the discovered loophole and according to Microsoft's official statement regarding the matter, they are currently "working to release a security update to address an Elevation of Privilege issue."