Kaspersky Update Breaks Internet Access For Windows XP Users

← Back to Stories (view on slashdot.org)

Kaspersky Update Breaks Internet Access For Windows XP Users

Posted by timothy on Tuesday February 5, 2013 @04:15AM from the all-a-secret-plot dept.

An anonymous reader writes "Yesterday afternoon, Kaspersky Labs released a definition update that blocked all Internet and Intranet access on Windows XP workstations. While there has been no official communication from Kaspersky, their forum is lit up with angry customers relying on each other to find a fix." Update: 02/05 16:42 GMT by T : Thanks to an anonymous reader, who says that Kaspersky has issued a statement, and a fix (though the fix takes some manual labor to implement).

13 of 92 comments (clear)

Min score:

Reason:

Sort:

let me guess by Anonymous Coward · 2013-02-05 04:16 · Score: 5, Funny

they already have a fix you can download!
Isn't that the goal? by tanveer1979 · 2013-02-05 04:26 · Score: 4, Funny

To be the perfect AV
No internet means
No virus
No Botnet
No Adware
No Spyware ......
Or maybe the program became self aware and realized that the internet is a disease, a virus, needing to be squashed

--
My Aurora : http://www.youtube.com/watch?v=o91ZsGwJYyg
FB : https://www.facebook.com/TanveersPhotography
1. Re:Isn't that the goal? by UnknownSoldier · 2013-02-05 04:41 · Score: 3, Interesting
  
  You may laugh, but originally that was the only way for Windows NT to get C2 certification. :-)
  * http://support.microsoft.com/kb/93362
  " Microsoft has opted not to include certain components of Windows NT in the evaluation process, ... It may be enough to consider networking to be another subsystem, ... "
Link to fix by davidwr · 2013-02-05 04:29 · Score: 5, Informative

http://forum.kaspersky.com/index.php?showtopic=255508&st=20&p=1978848&#entry1978848
Text of fix, credit the forum poster known as "omaudio":

from Kaspersky-
"We apologize for the inconvenience. It does appear that there was a hiccup with an Update pushed out causing Windows XP machines to lose internet connectivity. An update was just released that should address the issue, what I will need you to do is:
To get XP users internet connectivity (temporarily), please disable the Web AV component of your protection policy for your managed computers. After doing so;
In Security Center (or Admin Kit):
1.) Go to the Repositories section >> (Right click) Updates >> All Tasks >> Clear updates repository.
2.) Go to the Repositories section >> (Right click) Updates >> Download Updates
After taking this step, please run your group Update task for Managed Computers. After the update has been pushed to your workstations, please re-enable your Web AV component in your protection policy. This should resolve the issue. "

--
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
Don't worry, they are already working on a fix by Hentes · 2013-02-05 04:30 · Score: 4, Funny

The next update will fix the issue, you'll just have to download it...oh, wait.
Re:In Soviet Russia... by jones_supa · 2013-02-05 04:40 · Score: 4, Funny

In Soviet Russia, the viruses scan YOU!
When does AV become more risky than the virus? by Alioth · 2013-02-05 04:42 · Score: 5, Interesting

I have to wonder at which point workstation AV software becomes a bigger risk than the actual malware.
So far in our organization, we've had two AV incidents. One several years ago when a user brought in an infected laptop with one of the Microsoft RPC exploiting worms. We got the worm before the AV vendor (Symantec at the time) had a signature for it, so the AV software was totally useless. The other event was when Symantec erroneously flagged a Windows Server 2003 resource kit program as malware and quarantined it (fortunately, a program we didn't rely on). So so far, for us - AV has failed to catch our only malware infection and has broken a non-infected program. Strict filtering (both inbound AND outbound) has done a lot more to stop malware in our organization than AV software ever has.
I also remember an incident a few years ago when a prominent AV vendor's software (I think it was Norton) erroneously quarantined a system file in the Chinese version of WinXP, and rendered the workstation unbootable, affecting a very large number of users.
I also wonder if any of the AV companies have independently verified and verifiable procedures for making their updates; a malicious employee at one of the big AV vendors could cause a lot of damage by releasing an update that results in an important system file getting quarantined. What safeguards do each AV vendor have in place to prevent this happening? How is it verified that the companies are actually carrying out the policies if they have them to ensure updates are not malicious, and how is it verified that these policies are actually watertight?

--
Oolite: Elite-like game. For Mac, Linux and Windows
"There has been no official communication..." by hobarrera · 2013-02-05 04:42 · Score: 5, Funny

there has been no official communication from Kaspersky
It seems they were using Windows XP.
Re:people still use windows xp? by Gaygirlie · 2013-02-05 04:52 · Score: 4, Funny

everyone that i know uses windows 8 on intel i7 or Amd FX computers.
So, you don't know anyone besides yourself?
It's not just with WinXP. by andywest · 2013-02-05 04:59 · Score: 3, Interesting

This is not Kaspersky's only problem with its anti-virus product. I have been asked to install a 'technical update'. When I did so, it crashed the anti-virus so badly that it no longer worked at all. I had to physically remove its folder from the Program Files area and reinstall the program from scratch. And this was with Windows 7. That was back in November. When I got the same message in January, I thought Kaspersky might have fixed the problem. Nope: Install -- crash -- scrape up mess -- reinstall from scratch. You kind of wonder what has Kaspersky been doing over the past six months.

--
--- Andy West http://andywest.org
1. Re:It's not just with WinXP. by WhatAreYouDoingHere · 2013-02-05 07:14 · Score: 5, Funny
  
  I had to physically remove its folder from the Program Files area...
  I just got this mental picture of someone opening up their hard drive and scraping a section off one of the platters.... :)
  
  --
  "What are you doing here, Elijah?"
Re:Anti Virus Software by futhermocker · 2013-02-05 07:12 · Score: 3, Funny

Many wishful thank yous my goodest friend. Kaspersky will soon wire money you earn so well by shill being.

--
KERNEL PANIC -SIGFAULT AT ADDRESS #51A54D07
Re:people still use windows xp? by jawtheshark · 2013-02-05 07:16 · Score: 3, Insightful

Yes, exactly.... That is what so many people here on slashdot fail to see: it works, it does the job, replacing it costs money and for the majority of people it isn't a high priority thing to do, or even totally necessary. I have one laptop running XP and it works perfectly fine. If you are moderately knowledgable about Windows XP, it is pretty easy to run a Limited User account for day to day operations and only log in as Admin when necessary for maintenance. Making it nearly as secure as Vista/7/8, in some senses more secure, because UAC won't ask you permission. You'll be denied permission and either will have to use the Run-As feature or log in as Admin. I never needed to reinstall that machine, it's still in very good condition (Machine was bought in January 2007)
My only concern is indeed the lack of support, but then, I'm not even all that worried.

--
Ahhh...the great dumpster continuum. Many a free computer will be found there. -- sowth (748135)