Sponsor Message:
Non Aviation Forum
My Starred Topics | Profile | New Topic | Forum Index | Help | Search 
Biggest Windows Threat To Date  
User currently offline777DadandJr From United States of America, joined Feb 2005, 1516 posts, RR: 12
Posted (8 years 9 months 2 days 20 hours ago) and read 1423 times:

Just read this release about what could amount to the biggest security threat to Windows PC's to date.

http://news.ft.com/cms/s/0d644d5e-7bb3-11da-ab8e-0000779e2340.html

Will this madness never end?

Russ


My glass is neither 1/2 empty nor 1/2 full, rather, the glass itself is twice as big as it should be.
10 replies: All unread, jump to last
 
User currently offlineKROC From , joined Dec 1969, posts, RR:
Reply 1, posted (8 years 9 months 2 days 20 hours ago) and read 1409 times:

Lets face it, there will never be a perfect operating system. Like the article said, Windows because of its size and prestige is a favorite target of hackers, so no matter what improvements Microsoft makes, there are thousands of people out there trying to find some way to get through all the new security protection and they will. Whats important is the rapid response to threats.

User currently offlineCtbarnes From United States of America, joined Mar 2000, 3491 posts, RR: 50
Reply 2, posted (8 years 9 months 2 days 20 hours ago) and read 1402 times:

I heard about this on NPR a few days ago. They also interviewed someone from McAfee who said the threat can be minimized by keeping your antivirus and anti-spyware software up to date, as these software companies have now put out virus and/or spyware definitions to identify and trap them.

Charles, SJ



The customer isn't a moron, she is your wife -David Ogilvy
User currently offlineKlaus From Germany, joined Jul 2001, 21479 posts, RR: 54
Reply 3, posted (8 years 9 months 2 days 20 hours ago) and read 1400 times:

Quoting KROC (Reply 1):
Like the article said, Windows because of its size and prestige is a favorite target of hackers, so no matter what improvements Microsoft makes, there are thousands of people out there trying to find some way to get through all the new security protection and they will.

No. Windows has >10000 active threats because it's a house of cards. That it's a house of cards in a very exposed place just makes it a bit worse than it would be anyway.

And this is a duplicate thread: http://www.airliners.net/discussions/non_aviation/read.main/1054253/

Not that the current horror didn't merit some extra attention...

[Edited 2006-01-03 17:13:08]

User currently offlineRichardPrice From , joined Dec 1969, posts, RR:
Reply 4, posted (8 years 9 months 2 days 20 hours ago) and read 1392 times:

Quoting Ctbarnes (Reply 2):
I heard about this on NPR a few days ago. They also interviewed someone from McAfee who said the threat can be minimized by keeping your antivirus and anti-spyware software up to date, as these software companies have now put out virus and/or spyware definitions to identify and trap them.

Since this 'flaw' isnt actually a flaw at all, but a pretty much forgotten about feature of WMF files, none of the antivirus companies can do anything about it without breaking a LOT of programs that use it without knowing.

The 'issue' is that wmf files allow a callback function to be registered in the event that the image cannot be displayed (ie the file is corrupt or it uses features that arent available in the version of the parser used).

This callback function runs pretty much anything the developer wants.

Removing this feature will stop even some major internals within Windows from working, as wmf files are used all over the GUI.

I knew about this 10 years ago, Im surprised its just become an issue now.

Oh well.


User currently offline777DadandJr From United States of America, joined Feb 2005, 1516 posts, RR: 12
Reply 5, posted (8 years 9 months 2 days 19 hours ago) and read 1385 times:

Quoting Klaus (Reply 3):
And this is a duplicate thread: Why I Am Glad I Have A Mac (by APFPilot1985 Jan 3 2006 in Non Aviation)

Not that the current horror didn't merit some extra attention...

My apologies for the duplication. I guess my search wasn't specific enough.

Russ



My glass is neither 1/2 empty nor 1/2 full, rather, the glass itself is twice as big as it should be.
User currently offlineCruiser From Canada, joined Apr 2005, 1001 posts, RR: 7
Reply 6, posted (8 years 9 months 2 days 19 hours ago) and read 1366 times:

I got hit with it a couple of days ago, and I work in IT. Everything was up to date including Norton Antivirus Corporate Edition, all of my Windows Updates.

I was just browsing through a clean (you know what I mean!) link from A.net. It was some news site.

So, this is easy to get, and to be honest, there is nothing that I know of that will stop it at this time. The only thing which I have done recently was throw on Zonealarm (which I had forgotten to install when I got my latest laptop in November....it happens when you get a new one at least once a year, but usually sooner!). I am now able to block the .exe's.

Watch out for it...it sucks! It even changes your desktop to a big advertisement that you now have spyware.

James



Leahy on Per Seat Costs: "Have you seen the B-2 fly-by at almost US$1bn a copy? It has only 2 seats!"
User currently offlineKlaus From Germany, joined Jul 2001, 21479 posts, RR: 54
Reply 7, posted (8 years 9 months 2 days 18 hours ago) and read 1359 times:

The problem with this one is that a protection (other than blocking the functionality with the subsequent side effects) would require filtering every single graphic that might be embedded in any email or in any webpage that's being loaded.

It's the equivalent of a wide-open barn door, leading right to the bank vault with a neon sign pointing the way.

And it has absolutely nothing to do with the popularity of Windows: It is a severe design mistake, one of many that make Windows inherently unsafe, top to bottom.


User currently offlineYooYoo From Canada, joined Nov 2003, 6057 posts, RR: 50
Reply 8, posted (8 years 9 months 2 days 18 hours ago) and read 1349 times:

Does this have anything to do with the "SpySherif" virus/spy ware i contracted the other week?

My first in over a decade of computer use.

What a crap feeling.



I am so smart, i am so smart... S-M-R-T... i mean S-M-A-R-T
User currently offlineJ_Hallgren From United States of America, joined Jun 2000, 1507 posts, RR: 0
Reply 9, posted (8 years 9 months 2 days 18 hours ago) and read 1346 times:

Here's some more info I found using links in stories linked above:
http://isc.sans.org/diary.php
Seems that unregistering a DLL and using a patch from some independent guy may help avoid problem until M$ patches it on Jan 10...read it for yourself...



COBOL - Not a dead language yet!
User currently offlineCruiser From Canada, joined Apr 2005, 1001 posts, RR: 7
Reply 10, posted (8 years 9 months 2 days 17 hours ago) and read 1322 times:

Quoting YooYoo (Reply 8):
Does this have anything to do with the "SpySherif" virus/spy ware i contracted the other week?

Thats the one...



Leahy on Per Seat Costs: "Have you seen the B-2 fly-by at almost US$1bn a copy? It has only 2 seats!"
Top Of Page
Forum Index

This topic is archived and can not be replied to any more.

Printer friendly format

Similar topics:More similar topics...
Bush Biggest Lead To Date posted Mon Oct 25 2004 21:07:05 by Techrep
Credit A Threat To National Security? posted Fri Oct 20 2006 21:23:14 by TedTAce
Iran's Threat To US Is Financial, Not Nuclear posted Wed May 17 2006 17:07:45 by Ilikeyyc
Favorite Christmas/Holiday Memory--to Date posted Thu Dec 8 2005 02:35:11 by Jake056
The Real Threat To The US.. posted Sun Aug 14 2005 18:24:42 by Soyuzavia
Anyone Ever Want To Date Pe@rson? posted Fri Aug 5 2005 17:24:41 by Mrniji
Which One Would You Like To Date? posted Sun Apr 24 2005 15:12:53 by Catatonic
Indian Army 1765 To Date In Pictures posted Mon Mar 7 2005 05:20:19 by HAWK21M
"Dirty Bomb" Threat To Boston posted Thu Jan 20 2005 19:00:36 by Planespotterx
The Other Terrorist Threat To The US posted Thu Jan 8 2004 19:13:24 by GDB