Vista Hacked At Black Hat

profdlpprofdlp The Holy City Of Westlake, Ohio
edited August 2006 in Science & Tech
Perfect security measures are impossible to achieve, but let's hope the final release of Vista is a little closer to the mark.
While Microsoft talked up Windows Vista security at Black Hat, a researcher in another room demonstrated how to hack the operating system.

Joanna Rutkowska, a Polish researcher at Singapore-based Coseinc, showed that it is possible to bypass security measures in Vista that should prevent unsigned code from running.

And in a second part of her talk, Rutkowska explained how it is possible to use virtualization technology to make malicious code undetectable, in the same way a rootkit does. She code-named this malicious software Blue Pill.
MS: Buy Vista for the security

Source: ZDNet

Comments

  • KwitkoKwitko Sheriff of Banning (Retired) By the thing near the stuff Icrontian
    edited August 2006
    Before the Windows bashers defile this thread, I would like to stress that no operating system is 100% safe. Millions of lines of code and you're bound to miss something somewhere.
  • profdlpprofdlp The Holy City Of Westlake, Ohio
    edited August 2006
    KwitCo™ wrote:
    ...I would like to stress that no operating system is 100% safe...
    If it can be invented by the mind of man, it can be figured out by the mind of man.

    Unless that man is General Keebler. :mullet:
  • ThraxThrax 🐌 Austin, TX Icrontian
    edited August 2006
    "...And in a last Alliance of Men, and Elves..."

    Er, sorry.
  • LeonardoLeonardo Wake up and smell the glaciers Eagle River, Alaska Icrontian
    edited August 2006
    It should also be noted that Microsoft actually paid a sponsorship fee at this year's Blackhat convention. There were a couple MS corporate types there who formally invited convention attendees to test Vista and do their best to break in. I think that is good thinking.

    Oh yes, BTW, at the same convention OS-X was hacked into also. (Sorry for the generic terminology. I don't remember the details.)
  • RWBRWB Icrontian
    edited August 2006
    KwitCo™ wrote:
    Before the Windows bashers defile this thread, I would like to stress that no operating system is 100% safe. Millions of lines of code and you're bound to miss something somewhere.

    Not to mention this is still a beta product...
  • CyrixInsteadCyrixInstead Stoke-on-Trent, England Icrontian
    edited August 2006
    Wow this has turned into the "let's forgive Microsoft" thread!

    ~Cyrix
  • WuGgaRoOWuGgaRoO Not in the shower Icrontian
    edited August 2006
    hey they have bumbleded before and they will bumble again..need i remind u of one of the first win98 runs where the blue screen of death came up...
  • airbornflghtairbornflght Houston, TX Icrontian
    edited August 2006
    I was surprised M$ went to blackhat, though it is a good idea, cause the best people in the world are there.
  • GrayFoxGrayFox /dev/urandom Member
    edited August 2006
    Leonardo wrote:
    It should also be noted that Microsoft actually paid a sponsorship fee at this year's Blackhat convention. There were a couple MS corporate types there who formally invited convention attendees to test Vista and do their best to break in. I think that is good thinking.

    Oh yes, BTW, at the same convention OS-X was hacked into also. (Sorry for the generic terminology. I don't remember the details.)
    The wi-fi driver was exploited nothing new there.
  • ThraxThrax 🐌 Austin, TX Icrontian
    edited August 2006
    No, it was something new. It's the first time someone has been able to successfully launch an attack at a PC via a wireless device without even having to contend with WEP, WPA or MAC filtering.
Sign In or Register to comment.