Who can I trust *now*....
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/05/09
|
@CounterEthicsCommissioner
Axsimulate | 11/05/09
|
|
Yeah, I feel sad for mom & pop.
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/05/09
|
|
I certainly feel sad for your mom and pop.
Sleeper Service | 11/05/09
|
Wow that's one seriously sparse post.
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/05/09
|
simple first
Quebec-french | 11/06/09
|
|
Addendum:
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/06/09
|
|
I feel sad for your mom & pop, too
quasilou | 11/09/09
|
|
Re: I feel sad for your mom & pop, too
pgripley@... | 11/09/09
|
|
Yes & No
quasilou | 11/09/09
|
|
Well put
msharma117@... | 11/09/09
|
|
Of course...
TristanGrimaux | 11/09/09
|
|
Windows 7 UAC malware problem
rgeiken@... | 11/09/09
|
|
Amen, Quasilou!
the_fish_69@... | 11/10/09
|
|
cars are good analogy *NEW*
stremin | 11/23/09
|
|
You can't use windows? *NEW*
notsofast | 11/09/09
|
|
RE: I feel sad for your... *NEW*
MythicalMe | 11/09/09
|
|
If we accept your premise *NEW*
tnboren@... | 11/11/09
|
|
As an automotive historian *NEW*
ICUR12 | 11/13/09
|
|
Re: Re: I feel sad for your mom & pop, too *NEW*
ICUR12 | 11/13/09
|
|
Not that it adds anything but... *NEW*
914four | 11/19/09
|
|
Re: 914four *NEW*
AzuMao | 11/19/09
|
|
No choice... *NEW*
DB_z | 11/09/09
|
|
@DB_z: You don't understand "choice" *NEW*
quasilou | 11/09/09
|
|
Choice *NEW*
Jkirk3279 | 11/09/09
|
|
Excellent reply *NEW*
An Old Man | 11/09/09
|
|
@JKirk I Agree *NEW*
914four | 11/19/09
|
|
Agree to a degree *NEW*
stremin | 11/23/09
|
|
@DB_z: And I didn't even bother... *NEW*
quasilou | 11/09/09
|
|
Choice? *NEW*
DB_z | 11/09/09
|
|
@DB_z: How do you reconcile this with... *NEW*
ye | 11/09/09
|
|
That standard doesn't apply to any other industry *NEW*
martyh@... | 11/09/09
|
|
RE: feel sad for your mom & pop, too *NEW*
joe6pack_z | 11/09/09
|
|
people are either too lazy or too apathetic *NEW*
stillgolfing | 11/09/09
|
|
What are you talking about? *NEW*
Me_too | 11/09/09
|
|
re:@CounterEthicsCommissioner *NEW*
Tsingi | 11/06/09
|
|
Hmm. What to say. *NEW*
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/06/09
|
|
@Tsigni *NEW*
Axsimulate | 11/07/09
|
|
I love this *NEW*
JABBER_WOLF | 11/09/09
|
|
Love What?? *NEW*
kavallerie07@... | 11/09/09
|
|
I've been telling you all for the past few months.. *NEW*
AzuMao | 11/06/09
|
|
Let them play with fire. *NEW*
fr0thy2 | 11/06/09
|
|
I believed you... *NEW*
JCitizen | 11/09/09
|
|
In the wild? *NEW*
quasilou | 11/09/09
|
|
I couldn't agree more *NEW*
jmgroft@... | 11/09/09
|
|
Calm down. *NEW*
AzuMao | 11/09/09
|
|
@AzuMao: Nice try *NEW*
quasilou | 11/09/09
|
|
Okay... *NEW*
AzuMao | 11/09/09
|
|
Good point! *NEW*
rahbm | 11/10/09
|
|
More secure? It may be. *NEW*
fr0thy2 | 11/06/09
|
|
Trust your brain if there is one *NEW*
JABBER_WOLF | 11/09/09
|
|
May be you don't have so many customers as MS *NEW*
TristanGrimaux | 11/09/09
|
|
here, here *NEW*
stremin | 11/23/09
|
|
You ain't seen nothin' yet... *NEW*
The Mentalist | 11/05/09
|
|
If you are talikg about your FUD and BS *NEW*
GuidingLight | 11/05/09
|
|
@ Guiding-Light - your debating skills need honing *NEW*
TonyOz | 11/05/09
|
|
Consider who he's replying to. *NEW*
Sleeper Service | 11/05/09
|
|
The best response is *NEW*
oncall | 11/05/09
|
|
@ oncall....absolutely.. *NEW*
TonyOz | 11/05/09
|
You're hoping for too much, Tony.  *NEW*
nix_hed | 11/09/09
|
|
Totally agree *NEW*
rahbm | 11/10/09
|
|
And do you know what's the troubling part? *NEW*
The Mentalist | 11/06/09
|
|
Wow, thanks! *NEW*
quasilou | 11/09/09
|
|
I'm just wondering, with that XP mode dohickey... *NEW*
nix_hed | 11/09/09
|
|
Obvious, yet not to some... *NEW*
ITsupportGuy | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
iamrta | 11/05/09
|
|
LOL *NEW*
fr0thy2 | 11/06/09
|
|
Ya *NEW*
AzuMao | 11/06/09
|
|
The only "happy" in Windows 7 *NEW*
nix_hed | 11/09/09
|
|
Performance improvements.. *NEW*
AzuMao | 11/09/09
|
|
Y/N *NEW*
dw.needham@... | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
Agnostic_OS | 11/05/09
|
|
Or that MS is a marketing company. *NEW*
fr0thy2 | 11/06/09
|
|
What does it matter? *NEW*
GuidingLight | 11/05/09
|
|
"What does it matter?" *NEW*
fr0thy2 | 11/06/09
|
|
Masochistic skills *NEW*
theo_durcan | 11/06/09
|
|
Nah *NEW*
AzuMao | 11/07/09
|
|
I'd add *NEW*
Khyron | 11/09/09
|
|
Well Said *NEW*
martyh@... | 11/09/09
|
|
What? *NEW*
rahbm | 11/10/09
|
|
A bad day for MS on ZDNet *NEW*
Richard Flude | 11/05/09
|
|
When MS control blogs *NEW*
fr0thy2 | 11/06/09
|
|
So all this proves was.. *NEW*
eqpc | 11/05/09
|
|
Shh... *NEW*
Sleeper Service | 11/05/09
|
|
Shh .... *NEW*
fr0thy2 | 11/06/09
|
|
@eqpc..incorrect *NEW*
TonyOz | 11/05/09
|
|
What are you on about? *NEW*
eqpc | 11/05/09
|
|
@ eqpc.....again, not so *NEW*
TonyOz | 11/05/09
|
|
Do you actually understand what you are writing? *NEW*
eqpc | 11/05/09
|
|
There is some truth in what TonyOz is saying *NEW*
Earthling2 | 11/05/09
|
|
I agree with what you say but.. *NEW*
eqpc | 11/05/09
|
|
Your reply is intelligent *NEW*
mechBgon | 11/05/09
|
|
That was also when *NEW*
LiquidLearner | 11/06/09
|
|
Finally, some actual discussion... *NEW*
JCitizen | 11/09/09
|
|
Not correct *NEW*
Earthling2 | 11/05/09
|
|
That's what the AV vendors WANT you to think *NEW*
NonZealot | 11/05/09
|
|
TonyOz: please point out what Linux or OS X would have stopped *NEW*
NonZealot | 11/05/09
|
|
@NonZealot *NEW*
TonyOz | 11/05/09
|
|
You don't understand registry *NEW*
NonZealot | 11/05/09
|
|
@ NonZealot and registry files *NEW*
TonyOz | 11/05/09
|
|
Then don't speak of things you know nothing about. *NEW*
ye | 11/05/09
|
|
@ ye......have you ever heard of cyberbullying ? *NEW*
TonyOz | 11/05/09
|
|
@TonyOz: You're clueless about the subject. *NEW*
ye | 11/05/09
|
|
@ye.....again, rudeness and discourtesy *NEW*
TonyOz | 11/05/09
|
|
@TonyOz: Again:You're clueless about the subject. *NEW*
ye | 11/05/09
|
|
@TonyOz - security in Windows *NEW*
Earthling2 | 11/05/09
|
|
@Earthling2: Very good explanation. *NEW*
ye | 11/06/09
|
|
Re: Security in Windows *NEW*
fr0thy2 | 11/06/09
|
|
Adding to frothy's comment... *NEW*
zkiwi | 11/06/09
|
|
Try again *NEW*
Earthling2 | 11/06/09
|
|
No, you try again *NEW*
UAC nanny screen | 11/07/09
|
|
Here we go *NEW*
Earthling2 | 11/07/09
|
|
Of course you can't *NEW*
UAC nanny screen | 11/07/09
|
|
Excellent *NEW*
Earthling2 | 11/07/09
|
|
No, it was exactly... *NEW*
UAC nanny screen | 11/08/09
|
|
Thank you *NEW*
Earthling2 | 11/08/09
|
|
Thank you for what? You being disingenuous? *NEW*
UAC nanny screen | 11/09/09
|
|
Registry ignorance *NEW*
honeymonster | 11/09/09
|
|
re: registry in Windows is a system file *NEW*
Me_too | 11/09/09
|
|
Re; Which of the above 3 items would Linux's *NEW*
hkommedal | 11/06/09
|
|
One of the most clueless posts I've read in a while. *NEW*
ye | 11/05/09
|
|
Read up on NT? Why in this day and age? *NEW*
fr0thy2 | 11/06/09
|
|
Indeed it is clueless *NEW*
honeymonster | 11/09/09
|
|
Talk about clueless *NEW*
UAC nanny screen | 11/10/09
|
|
They couldnt have done that much *NEW*
jdbukis@... | 11/05/09
|
|
People are missing the most obvious advantage UNIX(-like) OSes have *NEW*
Michael Kelly | 11/06/09
|
|
Windows is similar. *NEW*
eqpc | 11/06/09
|
|
Except that they obviously are running *NEW*
Michael Kelly | 11/06/09
|
|
Of course they're not running with escalation. *NEW*
ye | 11/06/09
|
|
Well then *NEW*
Michael Kelly | 11/06/09
|
|
What's going "wrong" is the user is ignoring every warning... *NEW*
ye | 11/06/09
|
|
@ye *NEW*
Axsimulate | 11/06/09
|
|
@Axis: So you're saying that *NIX also identifies exe's using metadata *NEW*
de-void | 11/06/09
|
|
@de-void *NEW*
Axsimulate | 11/06/09
|
|
Unix Windows not so different. *NEW*
bklooste | 11/09/09
|
|
You dont need escalation to run code! *NEW*
eqpc | 11/06/09
|
|
Except that that prompt *NEW*
Michael Kelly | 11/06/09
|
|
No, it's not. *NEW*
ye | 11/06/09
|
|
We dont know if the prompt is failing as they dont mention that but.. *NEW*
eqpc | 11/06/09
|
|
@ye *NEW*
Michael Kelly | 11/06/09
|
|
@Michael Kelly: Irrelevant *NEW*
ye | 11/06/09
|
|
@ye *NEW*
Michael Kelly | 11/06/09
|
|
@Michael: Gutmann is proof that you are wrong *NEW*
NonZealot | 11/06/09
|
|
@Michael Kelly: I am making a distinction because... *NEW*
ye | 11/06/09
|
|
@NZ *NEW*
Michael Kelly | 11/06/09
|
|
You could... *NEW*
WarhavenSC | 11/06/09
|
|
@WarhavenSC: I'd be happy to. *NEW*
ye | 11/06/09
|
|
Got to agree with one of your points, Zealot *NEW*
Ole Man | 11/06/09
|
|
Not quite right *NEW*
quasilou | 11/09/09
|
|
Sure you can. *NEW*
ye | 11/06/09
|
|
Good point *NEW*
Michael Kelly | 11/06/09
|
|
I disagree *NEW*
zmud | 11/06/09
|
|
I said that myself *NEW*
Michael Kelly | 11/06/09
|
|
They require escalation because they perform system level changes. *NEW*
ye | 11/06/09
|
|
Almost identical, but not quite *NEW*
Michael Kelly | 11/06/09
|
|
Yes, it can. *NEW*
ye | 11/06/09
|
|
@ye... we already know that *NEW*
Michael Kelly | 11/06/09
|
|
@Michael Kelly: You don't know this. *NEW*
ye | 11/06/09
|
|
To be fair... *NEW*
quasilou | 11/09/09
|
|
@quasilou: We do have some information about the malware. *NEW*
ye | 11/09/09
|
|
So if I switch off... *NEW*
Sleeper Service | 11/05/09
|
|
You don't care about computing enough to learn them. *NEW*
fr0thy2 | 11/06/09
|
|
One of the saddest things was what bloggers said earlier.. *NEW*
TonyOz | 11/05/09
|
|
@TonyOz *NEW*
Axsimulate | 11/05/09
|
|
What's really sad, Axis... *NEW*
Sleeper Service | 11/05/09
|
|
@Sleeper Service *NEW*
Axsimulate | 11/06/09
|
|
Actually what's really sad... *NEW*
Sleeper Service | 11/06/09
|
|
@Sleeper Service *NEW*
Axsimulate | 11/06/09
|
|
Talk about arrogant snobs *NEW*
GuidingLight | 11/06/09
|
|
@GuidingLight *NEW*
Axsimulate | 11/06/09
|
|
Where the blame goes. *NEW*
joe.smetona@... | 11/10/09
|
|
Incorrect assumption, irrelevant proof *NEW*
Earthling2 | 11/05/09
|
|
What is your Linux experience? *NEW*
joe.smetona@... | 11/09/09
|
|
I agree. *NEW*
joe.smetona@... | 11/09/09
|
|
It would've been very, very helpful... *NEW*
Earthling2 | 11/05/09
|
|
@ Earthling2...agreed, but this is where Microsoft is at fault *NEW*
TonyOz | 11/05/09
|
|
Completely agree, but... *NEW*
Earthling2 | 11/05/09
|
|
No machine was infected in either example *NEW*
NonZealot | 11/05/09
|
|
UAC is Misunderstood by Everyone, Including Microsoft *NEW*
mikefarinha | 11/05/09
|
|
Good points. *NEW*
jamesrayg | 11/06/09
|
|
UAC: Designed to annoy users *NEW*
toadlife | 11/06/09
|
|
According to one Microsoft executive......... *NEW*
Ole Man | 11/06/09
|
|
What?!? I don't annoy anybody! *NEW*
UAC nanny screen | 11/07/09
|
|
UAC wasn't designed to annoy USERS *NEW*
Lerianis10 | 11/07/09
|
|
UAC: Annoyance and failings *NEW*
PeterBoyles | 11/09/09
|
|
They weren't new. *NEW*
ye | 11/09/09
|
|
Wow! *NEW*
rahbm | 11/10/09
|
|
The only apps that SHOULD need Admin access *NEW*
Lerianis10 | 11/07/09
|
|
@Lerianis10: What are you talking about? *NEW*
quasilou | 11/09/09
|
|
Move to a Linux distro or Mac *NEW*
use_linux | 11/05/09
|
|
You do know that saying it doesn't make it real? *NEW*
tonymcs@... | 11/05/09
|
|
Compile source code - and solve problems *NEW*
Ole Man | 11/06/09
|
|
Your post title alone... *NEW*
quasilou | 11/09/09
|
|
Please take your own medicine *NEW*
rahbm | 11/10/09
|
|
An interesting minor detail *NEW*
Earthling2 | 11/05/09
|
|
No. *NEW*
James T. Kirk | 11/05/09
|
|
amen brother! *NEW*
Richie086 | 11/05/09
|
|
And which all recently had to be patched due to a number of vulns *NEW*
de-void | 11/06/09
|
|
RTFA *NEW*
n0neXn0ne | 11/07/09
|
|
And??? *NEW*
de-void | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
Loverock Davidson | 11/05/09
|
|
It bypassed 7 and infected 7. *NEW*
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/05/09
|
|
it's really not your issue being so stupid *NEW*
ljenux-23043766007667558234416105604265 | 11/06/09
|
|
When *NEW*
Viva la crank dodo | 11/06/09
|
|
You do a disservice by posting advertisements in the form of blogs *NEW*
NonZealot | 11/05/09
|
|
Thankyou... *NEW*
eqpc | 11/05/09
|
|
Double Standards *NEW*
Metronome49 | 11/06/09
|
|
You keep bringing up Linux... *NEW*
bjbrock | 11/05/09
|
|
I didn't bring up Linux or OS X *NEW*
NonZealot | 11/05/09
|
|
Percentage wise... *NEW*
bjbrock | 11/06/09
|
|
Windows is the MOST uninfected OS ever *NEW*
NonZealot | 11/06/09
|
|
That is a good point *NEW*
bobiroc | 11/06/09
|
|
Bob *NEW*
Viva la crank dodo | 11/06/09
|
|
@Viva *NEW*
bobiroc | 11/06/09
|
|
I appreciate what you are saying *NEW*
Viva la crank dodo | 11/06/09
|
|
That's kind of idiotic, bob *NEW*
UAC nanny screen | 11/07/09
|
|
Bogus point made from their marketshare *NEW*
Metronome49 | 11/06/09
|
|
Well coming from you Nanny Pants *NEW*
bobiroc | 11/09/09
|
|
@zealot, stop lying *NEW*
UAC nanny screen | 11/07/09
|
|
Threatfire Blogger is clueless *NEW*
ye | 11/05/09
|
|
Ha! What about Ed Bott, his whole blog is an Ad *NEW*
Metronome49 | 11/06/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
whoflungdung | 11/05/09
|
|
What did you expect? *NEW*
bendib | 11/05/09
|
|
wake up guys *NEW*
soulxfer@... | 11/05/09
|
|
You don't have AV... *NEW*
jamesrayg | 11/06/09
|
|
Windows is no Linux *NEW*
bobiroc | 11/06/09
|
|
It's what users wanted =/ *NEW*
NStalnecker | 11/05/09
|
|
This doesn't appear to be related to the reduced security setting. *NEW*
ye | 11/05/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 Malawi samples *NEW*
CharlesEtheridge@... | 11/05/09
|
|
What UAC Really Is *NEW*
JasonJD48 | 11/05/09
|
|
Nicely said *NEW*
NStalnecker | 11/06/09
|
|
Agreed *NEW*
Rude Union | 11/06/09
|
|
running a malware with limited privileges is NOT bypassing UAC! *NEW*
directory | 11/06/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
argon0 | 11/06/09
|
|
What you're referring to is not UAC. *NEW*
ye | 11/06/09
|
|
RE:What you're referring to.... *NEW*
argon0 | 11/06/09
|
|
UAC is a privilege escalation mechanism. *NEW*
ye | 11/06/09
|
|
RE: UAC is a privilege.... *NEW*
argon0 | 11/06/09
|
|
It does not. *NEW*
ye | 11/06/09
|
|
*NEW*
argon0 | 11/06/09
|
|
@argon0: It is not UAC. *NEW*
ye | 11/06/09
|
|
So much misunderstanding about the execute bit *NEW*
NonZealot | 11/06/09
|
|
@NonZealot: The irony being... *NEW*
ye | 11/06/09
|
|
ye and nz *NEW*
argon0 | 11/06/09
|
|
@ye *NEW*
Michael Kelly | 11/06/09
|
|
@argon0: You're welcome. *NEW*
ye | 11/07/09
|
|
@Michael Kelly: He specifically mentioned scripts. *NEW*
ye | 11/07/09
|
|
well told you so just quite doesnt make it *NEW*
Quebec-french | 11/06/09
|
|
wow...those 2 are miracle actually *NEW*
ljenux-23043766007667558234416105604265 | 11/06/09
|
|
that is not fair swiss cheese did nothing wrong to you *NEW*
Quebec-french | 11/06/09
|
|
Dancho Danchev.. *NEW*
eqpc | 11/06/09
|
|
Rather than lying *NEW*
markbn | 11/07/09
|
|
ZDNet Bloggers *NEW*
Yeartenn | 11/06/09
|
|
Once Linux... *NEW*
bjbrock | 11/06/09
|
|
COMMENT...... *NEW*
carlsf@... | 11/06/09
|
|
UAC is a 'focus box' to prompt the user *NEW*
use_linux | 11/06/09
|
|
So much ignorance *NEW*
sjaak327 | 11/06/09
|
|
Starting with 7 this is no longer the case. *NEW*
AzuMao | 11/11/09
|
|
The Idiots won *NEW*
wolf_z | 11/06/09
|
|
It's not what you think. *NEW*
ye | 11/06/09
|
|
Agreed *NEW*
wolf_z | 11/06/09
|
|
Agreed as well. *NEW*
ye | 11/06/09
|
|
So then... *NEW*
NStalnecker | 11/06/09
|
|
Correct. *NEW*
eqpc | 11/06/09
|
|
With the little information we have it does not need admin rights. *NEW*
ye | 11/06/09
|
|
Indeed *NEW*
NStalnecker | 11/06/09
|
|
This "research"... *NEW*
whoflungdung | 11/06/09
|
|
@whoflungdung: Clarification. *NEW*
ye | 11/06/09
|
|
Best post here, thanks ye *NEW*
NonZealot | 11/06/09
|
|
@whoflungdung - plenty of warnings *NEW*
Earthling2 | 11/06/09
|
|
NZ... *NEW*
argon0 | 11/06/09
|
|
Yet by making that argument *NEW*
Michael Kelly | 11/06/09
|
|
It's likely there are warnings given the programs are trojans. *NEW*
ye | 11/06/09
|
|
Which is why *NEW*
Michael Kelly | 11/06/09
|
|
Most likely the latter. *NEW*
ye | 11/06/09
|
|
I vote deception *NEW*
bobiroc | 11/06/09
|
|
I prefer not to vote or guess *NEW*
Michael Kelly | 11/06/09
|
|
@Michael *NEW*
NonZealot | 11/06/09
|
|
@Michael Kelly: It's not a guess and I have very high confidence... *NEW*
ye | 11/06/09
|
|
The sky is blue too. Everybody knows it. *NEW*
HypnoToad72 | 11/06/09
|
|
I always wanted a green sky with purple polka-dots. *NEW*
nix_hed | 11/09/09
|
|
Master Joe Says... *NEW*
MasterJoe | 11/06/09
|
|
Things are going to be different this time - Trust me *NEW*
Chad_z | 11/06/09
|
|
Would Vistas default UAC have prevented these? *NEW*
Metronome49 | 11/06/09
|
|
No. This has nothing to do with UAC. *NEW*
ye | 11/06/09
|
|
If I may steal your favorite retort... *NEW*
Michael Kelly | 11/06/09
|
|
I wouldn't stake my life on it. *NEW*
ye | 11/06/09
|
|
Actually no *NEW*
Michael Kelly | 11/06/09
|
|
I am right. So you can rest easy. nt *NEW*
ye | 11/06/09
|
|
Interesting that not just one... *NEW*
jasonp@... | 11/09/09
|
|
Of course they came to the same conclusion. *NEW*
ye | 11/09/09
|
|
There wouldn't be a market period... *NEW*
jasonp@... | 11/09/09
|
|
@jasonp: No, you do not. *NEW*
ye | 11/09/09
|
|
ROTFLMAO @ "that's a fact" *NEW*
jasonp@... | 11/09/09
|
|
@ jasonp: It's worked perfectly fine for me for years. *NEW*
ye | 11/09/09
|
|
So let's just ignore the millions... *NEW*
jasonp@... | 11/10/09
|
|
Think about it for a minute.. *NEW*
eqpc | 11/06/09
|
|
That thought actually did cross my mind *NEW*
Michael Kelly | 11/06/09
|
|
LOL! *NEW*
eqpc | 11/06/09
|
|
Are you serious? *NEW*
Michael Kelly | 11/06/09
|
|
@Michael *NEW*
eqpc | 11/06/09
|
|
@Michael: Are you serious? *NEW*
NonZealot | 11/06/09
|
|
@Michael Kelley. Just so you know. *NEW*
Lunatic59 | 11/06/09
|
|
@NZ - If that's the case *NEW*
Michael Kelly | 11/06/09
|
|
@Michael: I don't know but I can guess *NEW*
NonZealot | 11/06/09
|
|
Spare us your patronizing, @Lunatic59 *NEW*
UAC nanny screen | 11/07/09
|
|
I've had malware bypass the UAC... *NEW*
JCitizen | 11/10/09
|
|
So vauge, nothing of value can be obtained. *NEW*
JoeMama_z | 11/06/09
|
|
@Axsimulate *NEW*
jmoleary | 11/06/09
|
|
What will Windows do then? *NEW*
argon0 | 11/06/09
|
|
Yes...it will... *NEW*
lawryll@... | 11/06/09
|
|
And UNIX does essentially the same with its metadata *NEW*
ye | 11/08/09
|
|
I think his concern is... *NEW*
eqpc | 11/08/09
|
|
Right *NEW*
AzuMao | 11/08/09
|
|
How is the OS supposed to determine... *NEW*
ye | 11/08/09
|
|
Okay *NEW*
AzuMao | 11/08/09
|
|
@AzuMao: Your wish is Microsoft's command. *NEW*
ye | 11/08/09
|
|
If any program can disable the component that makes them need permission *NEW*
AzuMao | 11/08/09
|
|
@AzuMao: What are you referring to? *NEW*
ye | 11/09/09
|
|
"Have not been any known exploits"? Where have you been the past year? *NEW*
AzuMao | 11/09/09
|
|
@AzuMao: I didn't see any exploits. *NEW*
ye | 11/09/09
|
|
The exploit.. *NEW*
AzuMao | 11/09/09
|
|
@AzuMao: What you have provided is PoC not exploits. *NEW*
ye | 11/09/09
|
|
When I said by default *NEW*
AzuMao | 11/09/09
|
|
And UAC will have stopped those but... *NEW*
eqpc | 11/08/09
|
|
Yup... *NEW*
argon0 | 11/09/09
|
|
I fail to see the point of... *NEW*
ye | 11/09/09
|
|
point.... *NEW*
argon0 | 11/09/09
|
|
Windows will attempt to run the file if... *NEW*
ye | 11/09/09
|
|
@ye.... *NEW*
argon0 | 11/10/09
|
|
@jmoleary *NEW*
Axsimulate | 11/08/09
|
|
UAC=Stupid, Slider UAC=Stupid, Jr. *NEW*
nfordzdn | 11/06/09
|
|
They only ask you whether you wish to run a program multiple times *NEW*
Lerianis10 | 11/07/09
|
|
Is that why Norton need kernel access?... *NEW*
JCitizen | 11/10/09
|
|
unbelievable JUNK *NEW*
pupkin_z | 11/06/09
|
|
I FEEL NAKED NOW. Let me explain. *NEW*
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/06/09
|
|
Was that an XP under admin (root) acount? *NEW*
Earthling2 | 11/06/09
|
|
Note to Earthling: *NEW*
CounterEthicsCommissioner-23034636492738337469105860790963 | 11/06/09
|
|
I must be doing something wrong... *NEW*
Earthling2 | 11/06/09
|
|
The main dangerous websites are porn websites *NEW*
Lerianis10 | 11/09/09
|
|
Yes *NEW*
AzuMao | 11/09/09
|
|
You have problems. *NEW*
deowll | 11/07/09
|
|
Lessons Learned from Five Years of Building More Secure Software *NEW*
Ole Man | 11/06/09
|
|
It is funny though *NEW*
Earthling2 | 11/07/09
|
|
In daze of Windows past *NEW*
Ole Man | 11/07/09
|
|
I am hoping *NEW*
Earthling2 | 11/07/09
|
|
I'm witcha...... *NEW*
Ole Man | 11/08/09
|
|
Here's the problem *NEW*
Earthling2 | 11/08/09
|
|
No problem! Technical issues are constant...... *NEW*
Ole Man | 11/12/09
|
|
Most of those 'design issues' you mention *NEW*
Lerianis10 | 11/07/09
|
|
Pretty Much Useless *NEW*
jpr75_z | 11/06/09
|
|
You should not disable it *NEW*
Earthling2 | 11/06/09
|
|
Only because you don't know what it actually does.. *NEW*
sjaak327 | 11/07/09
|
|
The usual suspects are out... *NEW*
zkiwi | 11/06/09
|
|
Same *NEW*
NStalnecker | 11/06/09
|
|
Really? *NEW*
zkiwi | 11/07/09
|
|
Microsoft says EVERY SINGLE DAY *NEW*
Lerianis10 | 11/07/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
deowll | 11/07/09
|
|
Of course it's a fud article *NEW*
otaddy | 11/07/09
|
|
For what stupid reason the linux fanboys think sudo is safer than UAC? *NEW*
directory | 11/07/09
|
|
There is no slider for sudo *NEW*
n0neXn0ne | 11/07/09
|
|
It begins... *NEW*
IssacS | 11/07/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
prof123 | 11/07/09
|
|
Yep *NEW*
wile_thang | 11/07/09
|
|
Slanted Article. Why not test with MSE running? *NEW*
trance2tec | 11/08/09
|
|
If Microsoft were forcing everyone to use MSE... *NEW*
jasonp@... | 11/09/09
|
|
Get real... *NEW*
quasilou | 11/09/09
|
|
Because it's not part of Windows 7, most likely. *NEW*
AzuMao | 11/09/09
|
|
Windows 7 was deemed 'less secure' than Vista... *NEW*
Spikey_Mike | 11/09/09
|
|
Yes, Windows 7 was deemed 'less secure' BUT *NEW*
Lerianis10 | 11/09/09
|
|
If you ran a program that was a trojan on OSX or Linux *NEW*
Lerianis10 | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
metilley@... | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
quasilou | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
GTX11 | 11/09/09
|
|
Really? Anybody? *NEW*
quasilou | 11/09/09
|
|
The story doesn't really tell us what they did. *NEW*
mikefulton | 11/09/09
|
|
any one see the latest MAC commercial ? *NEW*
lynne1462@... | 11/09/09
|
|
Would setting the UAC to MAX instead of Default make a difference? *NEW*
Claud.Cutler@... | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
nappy_d | 11/09/09
|
|
This isn't a surprise *NEW*
baileysc | 11/09/09
|
|
Naturally! *NEW*
rahbm | 11/10/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
shinji257 | 11/09/09
|
|
Do you have any references for this? *NEW*
ye | 11/09/09
|
|
Hey You!!!! STOP THAT *slap* *NEW*
taiyurshu | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
PrestonSK | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
Papamambo | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
dw.needham@... | 11/09/09
|
|
This is why I use Malwarebytes *NEW*
rupaa62 | 11/09/09
|
|
Cookies , html and javascript will always bypass UAC *NEW*
bklooste | 11/09/09
|
|
How does windows install itself? *NEW*
Mahegan | 11/09/09
|
|
No, the installation process doesn't utilize UAC. *NEW*
ye | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
MoosieAZ | 11/09/09
|
|
Just wondering about filthy porno sites?? *NEW*
brettze | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
hwaynew | 11/09/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
Starliner | 11/09/09
|
|
I'm Sorry But I've gotta Say... *NEW*
barefoot1976 | 11/09/09
|
|
RE: Lazy *NEW*
Paul1402 | 11/10/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
ps2os2 | 11/10/09
|
|
Not to throw my 2cents in again, but... *NEW*
Papamambo | 11/10/09
|
|
I can't condone using Windows based on it's record. *NEW*
joe.smetona@... | 11/10/09
|
|
lol *NEW*
AzuMao | 11/10/09
|
|
Were these run under x86 or x64 variants of Win 7 ? *NEW*
pounder_arthur@... | 11/12/09
|
|
The Musk Ox gather at the water-hole for a drink *NEW*
Ole Man | 11/12/09
|
|
The UAC bypass works on 32-bit and 64-bit versions. *NEW*
AzuMao | 11/13/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
wskige001 | 11/12/09
|
|
Send me two dozen of each *NEW*
Ole Man | 11/12/09
|
|
Wtf *NEW*
AzuMao | 11/13/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
wgrimes | 11/15/09
|
|
RE: Windows 7's default UAC bypassed by 8 out of 10 malware samples *NEW*
cocococo013 | 11/16/09
|
|
hmm copyight??? *NEW*
dannydaman9@... | 11/19/09
|
|
They could *NEW*
AzuMao | 11/19/09
|
The findings are in fact not surprising, since the main problem with Windows 7’s UAC lies in the over-expectation of the average end user. Just like free antivirus software relying entirely on signatures based scanning only, the over-expectation of Windows 7’s UAC may in fact fool a large number of users that third-party security software is not a necessity.
Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response. He's been an active security blogger since 2007, and maintains a popular security blog. See his full profile and disclosure of his industry affiliations.
