Skip to content
Aug 7 / Ozymandias

Vista "Hacked" at Black Hat Conference

Saw a post on CNET about Windows Vista being “hacked” at the recent Black Hat conference. What’s interesting is that the “hack” actually depends on a user to do an explict action – and bypass a warning. Here’s the relevant quote:


As one of the security measures in Vista, Microsoft is adding a mechanism to block unsigned driver software to run on the 64-bit version of the operating system. However, Rutkowska found a way to bypass the shield and get her code to run. Malicious drivers could pose a serious threat because they run at a low level in the operating system, security experts have said.


<snip>

To stage the attack, however, Vista needs to be running in administrator mode, Rutkowska acknowledged. That means her attack would be foiled by Microsoft’s User Account Control, a Vista feature that runs a PC with fewer user privileges. UAC is a key Microsoft effort to prevent malicious code from being able to do as much damage as on a PC running in administrator mode, a typical setting on Windows XP.

“I just hit accept,” Rutkowska replied to a question from the audience about how she bypassed UAC. Because of the many security pop-ups in Windows, many users will do the same without realizing what they are allowing, she said.

I’ve been running betas of Vista for a few months now, and have to admit I have a bit of a love/hate relationship with the User Account Control functionality. On the plus side, it works as advertised. A user is no longer an administrator by default, so many potential attacks on the OS are just blocked. The problem is that when installing applications you get a security warning asking you whether or not you want the installation action to continue – and no matter how you spin it, it’s a distraction from whatever you’re currently trying to do. This means you tend to train yourself to quickly approve the prompt and although I try to read the prompts knowing full-well the value of the warning, I have found myself accidentally approving something without fully giving myself the time to comprehend what I actually just allowed.

It’ll be interesting to watch as the Vista team tunes this functionality. I have to say it’s become infinitely better than earlier builds when I felt as though I had to approve every little action on the PC. Now it’s a mild annoyance, but one that’s well worth having. I just hope people learn to read those security warnings when they do appear. Otherwise, these sorts of “shoulda been blocked hacks” may become more common.

The good news? The OS did block the hack attempt. No OS is 100% secure, but I’m personally feeling super-positive about the steps Vista has taken in that direction.

Related posts:

  1. Vista Game Doctor
  2. Windows Vista Coming Together
  3. At Seattle Casual Games Conference this Week
  4. Games for Windows Articles
  5. Get your Windows 7 Beta!

Comments are closed.

Filed under Uncategorized
  • http://www.jasoncross.org JasonC

    Here’s an even better story about it:

    http://www.eweek.com/article2/0,1895,1999241,00.asp

    The money quote from Microsoft’s security chief Ben Fathi:

    "This is the reason we’re here. To see the advancements in research and work closely with these guys [white hat hackers] to figure out what’s working and what’s not working," Fathi said in an interview with eWEEK immediately after the presentation.

    "We’ve already fixed that path [of attack] … It’s beta software that will have bugs. That [attack scenario] has already been fixed in later builds," Fathi said. "

  • Bladestar

    I wouldn’t consider this a hack. This will not be a problem for corporate image PC where the user is not allowed to install any programs. Also, people should know that installing a program from an unknown/reliable source it’s simply stupid.

  • Ozymandias

    Re: "I wouldn’t consider this a hack. This will not be a problem for corporate image PC where the user is not allowed to install any programs. Also, people should know that installing a program from an unknown/reliable source it’s simply stupid."

    I think many corporations will have to work with this IMO. You’ll hit this anytime an application tries to install – potentially, could even be an ActiveX control on a web page you visit, the messenger client you want to update, etc. I’m crossing my fingers that it won’t be too obtrusive.

  • WiNG

    Being working as computer teacher (specially teaching how to use Windows/Office) I came in the end with the conclusion that people simply do not read the screen, that simple. I bet you can actually make a vb program with a messagebox saying "press accept if you want to send all your money to my bank account, otherwise close this window" and everyone would still press the accept button…

  • HcC

     Ya I agree, this isn’t a hack because it requires the user to allow it. On the other hand, I can guarantee that vista will be vulnerable. Maybe not like XP, I mean, if they were stupid enough to have a netbios service running and automatically sharing c$ from the moment you install, then I can’t see it being too much different this time.

     I read an article from another source this morning about this same subject and they basically said half the battle is winning over the public. If you make people believe you’re providing the most secure system, then you’ve won. I agree, I laugh every time I go into future shop and see a product labeled "STOP HACKERS". Again, if they convince people that the problems they had last time won’t happen again, enough to sell the OS, great. But in the end it’s the user who should take responsibility for keeping their system up to date and clean.

  • HcC

     Ya I agree, this isn’t a hack because it requires the user to allow it. On the other hand, I can guarantee that vista will be vulnerable. Maybe not like XP, I mean, if they were stupid enough to have a netbios service running and automatically sharing c$ from the moment you install, then I can’t see it being too much different this time.

     I read an article from another source this morning about this same subject and they basically said half the battle is winning over the public. If you make people believe you’re providing the most secure system, then you’ve won. I agree, I laugh every time I go into future shop and see a product labeled "STOP HACKERS". Again, if they convince people that the problems they had last time won’t happen again, enough to sell the OS, great. But in the end it’s the user who should take responsibility for keeping their system up to date and clean.

  • Bobby Charlton

    Will you be posting the same title next year when Vista actually does get hacked?

    I love Microsoft and love the look and feel of the new Vista, but surely you are asking for trouble posting this?

  • http://gaysitex012867.no.sapo.pt/01.htm gay black man sex

    importance of father son relationships

    gay bareback *** in ass

    boys in nylons and dresses

    gay huge *** videos

    hot men hunk gay xxx

  • http://gaysitex012867.no.sapo.pt father son beach

    gay black movie clips

    bad boys 1 cast and crew

    horny moms and boys

    boys virgin

    granny sex with boys

  • http://gaysitex012867.no.sapo.pt/01.htm huge and hairy gay cocks

    russian gay teens

    founders of boy scouts

    boy girl having sex

    farm boy sex

    muslim names for boys

  • http://gaysitex012867.no.sapo.pt/01.htm father son and the holy ghost symbol

    japanese boys peeing in a japanese bathroom

    rhonda beach boys

    gay bear butts

    rhonda beach boys

    gay blowjob videos

  • http://gaysitex012867.no.sapo.pt/01.htm gay black man sex

    xxx free gay porn

    boys first erection galleries

    boy underwear pics

    bad boy entertainment logo

    nice man the bad boys

  • http://gaysitex012867.no.sapo.pt father son and the holy ghost symbol

    beach boys kokomo wav

    gay chat so ca

    gay bareback amateur

    beautiful nude young teen boys

    gay and chat

  • http://gaysitex012867.no.sapo.pt/05.htm huge and hairy gay cocks

    gay sex bears

    gay gloryhole videos

    boy father sex

    latest gay movies

    small boy pics

  • http://gaysitex012867.no.sapo.pt/01.htm naked boy teen

    gay xxx clips

    gay teen boy tgp

    gay leather bdsm

    gay wrestling drawings

    gay huge *** videos

  • http://gaysitex012867.no.sapo.pt/04.htm naked boy teen

    los angeles gay bars

    father son sex gay

    gay gay xxx

    gay massage in massachusetts

    gay leather master

  • http://gaysitex012867.no.sapo.pt/02.htm horny gay toons

    sex porn gay man

    gay black guys in dc

    trailer park boys movie trailer

    gay bear butts

    gay young sperm

  • http://gaysitex012867.no.sapo.pt/01.htm gay black man sex

    free downloadable gay colloge cocks

    bad boy songs

    gay jock porn videos

    xxx gay web cam

    free hot naked gay black men

  • http://gaysitex012867.no.sapo.pt/04.htm huge and hairy gay cocks

    beach boys tones

    gay dating inland empire ca only

    boys teen gay

    by chicago gay in man man massage

    it feels good to be a gangster ghetto boys