Kaspersky Fixes Bug That Allowed Attackers To Block Windows Update & Others (softpedia.com) 34
An anonymous reader writes with this story at Softpedia about Google Project Zero security researcher Tavis Ormandy's latest find. A vulnerability that allowed abuse by attackers was discovered and quickly fixed in the Kaspersky Internet Security antivirus package, one which allowed hackers to spoof traffic and use the antivirus product against the user and itself. Basically, by spoofing a few TCP packets, attackers could have tricked the antivirus into blocking services like Windows Update, Kaspersky's own update servers, or any other IPs which might cripple a computer's defenses, allowing them to carry out further attacks later on.
Block Windows Update? (Score:1, Interesting)
Thank you hackers!!!
Re:Windows Update (Score:5, Funny)
I just flagged gwx.exe as malware in my anti-virus and it works like a charm. Whenever it shows up, it's quarantined and the software makes a full scan. Very convenient.
Please, it is getting old.... (Score:2, Informative)
The updates to telemetry do not suddenly cause Windows to start sending information back to Microsoft. Only when the user has explicitly accepted CEIP (Customer Experience Improvement Program) will these updates have any effect on a system.
If you have not activated CEIP, the updates will not cause any information to be sent back to Microsoft. It is that simply.
https://support.microsoft.com/... [microsoft.com]
Re: (Score:2)
Do else would a "customer experience improvement program" work, if not by sending customer experience data to Microsoft?
Re: (Score:2)
Do else would a "customer experience improvement program" work, if not by sending customer experience data to Microsoft?
But would a computer illiterate person know that? Or, for that matter, would they even read the text of the question, or just mechanically click yes?
Btw, here at work, we have come across a Win 7 box where this service was indeed enabled, without anybody having clicked anything. Sure, it can be disabled again after the fact, but for that you first have to know about it...
Re: (Score:2)
I assume you work at a very small company.
Otherwise someone in IT would have had to approve the update via WSUS and configure the setting to turn it on.
The only other way for it to happen would be for a user with admin rights to do it.
Re: (Score:2)
Re: (Score:3, Insightful)
Only when the user has explicitly accepted CEIP (Customer Experience Improvement Program) will these updates have any effect on a system.
If you have not activated CEIP, the updates will not cause any information to be sent back to Microsoft. It is that simply.
I do not believe you.
Re: (Score:2)
Users don't care about operating systems they care about running applications. "This bullshit is an unprecedented global backstab in the history of Earth" Evidently you know absolute nothing about the history of Earth. And your comments also make you look mentally incapable of understanding the pros and cons of the various operating systems.
Re: (Score:2)
Although I hate to date myself I have been employed for 28 years in IT. There isn't an OS in existence that I have not worked on in my career. Judging by your "backstabbing" comments you must be around 12 years old give or take a few years. Evangelizing an OS to the exclusion of all others has no place in the professional IT environment. And I wasn't shilling for MS I was remarking that your average users do not care about their OS they care about running applications. And Linux does have a heavy presence i
Re: (Score:3)
The updates to telemetry do not suddenly cause Windows to start sending information back to Microsoft. Only when the user has explicitly accepted CEIP (Customer Experience Improvement Program) will these updates have any effect on a system.
Since Windows is closed-source, and Microsoft has enabled spying features in their produces without asking in the past, and you cannot in fact disable all the telemetry in Windows 10 even by checking all the options which claim to do so, there is not only no reason for the user to take Microsoft at their word, but in fact when Microsoft claims that they are not collecting data the onus is on them to prove it. They have acted in bad faith in the past, and I expect them to do so in both the present and future
Re: (Score:2)
You can look at the network packets and go from there.
Right, that's been done, we discussed it here on Slashdot.
Now, since that requires some basic technical skills, you ofcource are incapable of doing it
Big words from a coward who isn't even capable of looking back at prior discussions we had on this topic where, if you did so, you would find vindication for my statements.
Re: (Score:2)
The updates to telemetry do not suddenly cause Windows to start sending information back to Microsoft. Only when the user has explicitly accepted CEIP (Customer Experience Improvement Program) will these updates have any effect on a system.
All you have to do is believe that bit of pie in the sky.
Re: (Score:2)
Re: (Score:1)
It's the "utility" that helps users install Windows 10 ...
Re: (Score:2)
Forgot quotes around "help".
Re: (Score:1)
I just flagged gwx.exe as malware in my anti-virus and it works like a charm. Whenever it shows up, it's quarantined and the software makes a full scan. Very convenient.
How do you get any work done with you computer constantly running virus scans, though?
LOL (Score:1)
Windows update breaks often enough (Score:2)
Im surprised you need malware to break winows update. I can't count the number of times I've had to do something like delete the softwaredistribution folder to start getting updates again.
Comment Subject: (Score:1)