backtop

Print E-mail del.icio.us 20 comment(s) - last by Mithan.. on Dec 23 at 8:01 PM
Microsoft tests Vista against top malware threats

Microsoft's Windows Vista operating system has been released already for businesses (and beta testers who got a free copy of Vista Ultimate/Business), but the rest of us will have to wait until January 30, 2007 to get our retail copies. Within the next year, Microsoft is projected to ship roughly 90 million copies of Vista within the first year alone.

In the mean time, Microsoft has been testing Vista's defenses to the top malware threats as reported by Sophos on November 30. The results from Microsoft's internal testing were quite promising according to Jim Allchin.

Testing showed that when using a clean install of Windows Vista with no third-party security applications installed, Vista was immune to all ten of the malware threats.

When using Outlook or third-party email applications which prevent users from running executables known to be malware threats, Vista was protected eight out of ten times. Bagle-Zip and Mydoom-O were the culprits in this test. Microsoft contends that it's not the fault of the Windows Vista operating system, but rather a function of the email program and users who open up suspicious .ZIP files and then run the executables found within.

It's interesting to note that Windows Mail, which comes standard with Vista, blocks .ZIP attachments. Microsoft's Outlook client does not do the same. Microsoft does note, however, that email clients can support .ZIP blocking via its Attachment Manager API.

Jim Allchin in closing gives these tips for users to abide by when it comes to Windows Vista:  1) stay on top of security updates, 2) use a firewall and 3) use anti-virus software. All of these are pretty much common sense -- however, if common sense was employed more often in computing, we wouldn't have large malware breakouts via email in the first place.

Comments     Threshold


This article is over a month old, voting and posting comments is disabled
Once again...
By BioRebel on 12/20/2006 10:51:29 AM , Rating: 5
IT all comes down to the user not being a total moron. Personally I can't wait to give Vista a try, I just hope the 64-bit version is nice and stable and works well with my older games.




RE: Once again...
By Master Kenobi (blog) on 12/20/2006 11:53:19 AM , Rating: 3
Not yet it doesn't. The DX10 in there can only support games on DX7 or later right now, I've got the 64-Bit running and theres a slight problem. My DX5 games all fail. =/. Not an issue unless you like playing games that are older. (See: Star Wars Rebellion)


RE: Once again...
By BioRebel on 12/20/2006 12:19:43 PM , Rating: 3
Meh, I dont think I have a problem there. The oldest game I play is StarCraft, and I haven't pulled that out in a while.


RE: Once again...
By mgambrell on 12/20/2006 4:58:48 PM , Rating: 2
starcraft is dx5 directdraw. i wish you luck.


RE: Once again...
By KewlWhip on 12/20/2006 12:00:58 PM , Rating: 2
I'm running Vista 64bit RTM and it's been completely stable. I haven't tried any older games yet as it's my work laptop.


RE: Once again...
By KewlWhip on 12/20/2006 12:06:18 PM , Rating: 2
For Vista I would suggest 2GB of RAM. I have 2GB and am a heavy user. My colleague is running Vista with only 1GB and while the OS runs fine if you open quite a few applications it starts to feel sluggish (too much disk caching on slower laptop drives).

-Microsoft employee


RE: Once again...
By Tsuwamono on 12/21/2006 6:26:31 PM , Rating: 1
quote:
-Microsoft employee


ITS THE DEVIL!


Outllook 3rd party?
By Homerboy on 12/20/2006 10:53:30 AM , Rating: 2
That's still MS, so technically still the same party.
Regardless, nice news. However that just means the Mal/Spyware coders will go back to the drawing board and work around the Vista security.

It's simply a never ending cycle. Not MS's fault.




RE: Outllook 3rd party?
By sthaznpride17 on 12/20/2006 11:46:03 AM , Rating: 2
I love how all the Macheads blame MS for all the security woes and problems. Hey look im a hacker, 95% of the market or 5% of the market??? I wonder where I can cause the most damage...


RE: Outllook 3rd party?
By Ralph The Magician on 12/20/2006 1:41:56 PM , Rating: 2
If you are actually a "hacker" you will be able to reap a lot more benefits from the 5% that use OSs based on BSD subsystems than you will be able to get from the 95% of the market that uses Windows XP, simply because people rely on BSD for security, and thus those who value their data will use it over Windows. It's akin to the amount of money that might be found in a steel bank vault vs a shoebox under someone's bed.

Many Mac OS X users keep all their passwords in their Keychain, and they trust that to be secure. It's a goldmine.


RE: Outllook 3rd party?
By gramboh on 12/20/2006 1:53:54 PM , Rating: 2
I disagree, BSD/unix based systems with valuable/sensitive data are much more actively monitored than your average users corporate/home desktop as far as intrusion detection.

It requires a lot more effort to break into a BSD/unix system and not be caught immediately. Of course if you are just trying to steal data this is ok, but if you are trying to harness the machine's resources it is different.

Most Malware/Trojans are used to create zombie/drone machines to use in e-mail spam campaigns/DoS attacks. It works because end users are oblivious to any intrusion on their system. Any competent BSD/unix admin will notice immediately or at least quickly.


RE: Outllook 3rd party?
By Ralph The Magician on 12/20/2006 5:36:41 PM , Rating: 2
I'm not talking about malware. I specifically put the word "hacker" in quotes. I'm not sure malware that turns your computer into a popup server really counts as "hacking."


RE: Outllook 3rd party?
By MAIA on 12/21/2006 2:38:36 PM , Rating: 2
A hacker, praising himself of being a hacker, doesn't work towards causing "the most damage", that's for crackers. Hackers have this need to prove a system is vulnerable, no more, no less.

All system all vulnerables, it's just microsoft way of programing stuff that makes it more vulnerable than nix based systems. Easy to use OS are not known of having good security measures, you're like trading flexibility for security.


RE: Outllook 3rd party?
By MAIA on 12/21/2006 2:41:01 PM , Rating: 2
you're like trading flexibility for security ... or the opposite i mean ;)


RE: Outllook 3rd party?
By Christopher1 on 12/21/2006 1:42:57 AM , Rating: 2
True, it's a neverending cycle, and it would just move to OSX or Linux if Microsoft ever lost it's position.

Really though, Outlook should be BANNED from any office. It is not secure at all, even in it's latest iteration, and I am almost totally sure that I saw that they didn't rewrite Outlook Express for Vista at all.


Thanks alot norton and macafee :/
By Pythias on 12/20/2006 3:26:36 PM , Rating: 3
quote:
The recent feedback we received around our decision to continue to include Kernel Patch Protection in the 64-bit versions of Windows Vista (even though we had shipped this protection in 64-bit versions of Windows XP nearly two years ago) was more controversial than we would have expected. It's a complicated world -- that's all I can say.



Apparently, Microsoft isn't allowed to build a better OS bcause it would hurt SOMEONE's bottom line.

Maybe they should sue Apple next.




By Christopher1 on 12/21/2006 1:44:54 AM , Rating: 2
Well, if the kernel of the system was totally protected, it WOULD affect the bottom line of companies like Symantec, McAfree and others.

They are justifiably worried about someone getting around Patchguard and making it so that their applications cannot spot the viruses and spyware.

Microsoft has already taken care of those fears however, by giving them certain ways to access/scan the kernel.


wow!
By Russell on 12/20/2006 3:16:26 PM , Rating: 1
Wow! Vista, a next-gen operating system, is immune to ten current-gen malware applications! Incredible, how did MS do it??




RE: wow!
By dugbug on 12/21/2006 9:01:34 AM , Rating: 2
He is responding to a report that vista is in fact vulnerable to these. This isn't an out-of-the-blue announcement declaring vista immune to 10 "old" malwares.


By Mithan on 12/23/2006 8:01:33 PM , Rating: 2
I've used Windows XP since it came out and I have had 1 trojan hit me in all of that time but of course, I know what I am doing.

The average user has no clue so yes, it has to be improved but I think even with "improved" security, people will still inadvertantly install trojans, spyware, viruses, etc just by accident.




"Spreading the rumors, it's very easy because the people who write about Apple want that story, and you can claim its credible because you spoke to someone at Apple." -- Investment guru Jim Cramer






Latest Blog Posts