If geeks love it, we’re on it

Vista Hacked At Black Hat

Vista Hacked At Black Hat

Perfect security measures are impossible to achieve, but let’s hope the final release of Vista is a little closer to the mark.

While Microsoft talked up Windows Vista security at Black Hat, a researcher in another room demonstrated how to hack the operating system.

Joanna Rutkowska, a Polish researcher at Singapore-based Coseinc, showed that it is possible to bypass security measures in Vista that should prevent unsigned code from running.

And in a second part of her talk, Rutkowska explained how it is possible to use virtualization technology to make malicious code undetectable, in the same way a rootkit does. She code-named this malicious software Blue Pill.

MS: Buy Vista for the security

Source: ZDNet

Comments

  1. Kwitko
    Kwitko Before the Windows bashers defile this thread, I would like to stress that no operating system is 100% safe. Millions of lines of code and you're bound to miss something somewhere.
  2. profdlp
    profdlp
    KwitCo™ wrote:
    ...I would like to stress that no operating system is 100% safe...
    If it can be invented by the mind of man, it can be figured out by the mind of man.

    Unless that man is General Keebler. :mullet:
  3. Thrax
    Thrax "...And in a last Alliance of Men, and Elves..."

    Er, sorry.
  4. Leonardo
    Leonardo It should also be noted that Microsoft actually paid a sponsorship fee at this year's Blackhat convention. There were a couple MS corporate types there who formally invited convention attendees to test Vista and do their best to break in. I think that is good thinking.

    Oh yes, BTW, at the same convention OS-X was hacked into also. (Sorry for the generic terminology. I don't remember the details.)
  5. RWB
    RWB
    KwitCo™ wrote:
    Before the Windows bashers defile this thread, I would like to stress that no operating system is 100% safe. Millions of lines of code and you're bound to miss something somewhere.

    Not to mention this is still a beta product...
  6. CyrixInstead
    CyrixInstead Wow this has turned into the "let's forgive Microsoft" thread!

    ~Cyrix
  7. WuGgaRoO
    WuGgaRoO hey they have bumbleded before and they will bumble again..need i remind u of one of the first win98 runs where the blue screen of death came up...
  8. airbornflght
    airbornflght I was surprised M$ went to blackhat, though it is a good idea, cause the best people in the world are there.
  9. GrayFox
    GrayFox
    Leonardo wrote:
    It should also be noted that Microsoft actually paid a sponsorship fee at this year's Blackhat convention. There were a couple MS corporate types there who formally invited convention attendees to test Vista and do their best to break in. I think that is good thinking.

    Oh yes, BTW, at the same convention OS-X was hacked into also. (Sorry for the generic terminology. I don't remember the details.)
    The wi-fi driver was exploited nothing new there.
  10. Thrax
    Thrax No, it was something new. It's the first time someone has been able to successfully launch an attack at a PC via a wireless device without even having to contend with WEP, WPA or MAC filtering.

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!