Slashdot Mirror

← Back to Stories (view on slashdot.org)

Kaspersky Fixes Bug That Allowed Attackers To Block Windows Update & Others (softpedia.com)

Posted by samzenpus on from the not-a-feature dept.

An anonymous reader writes with this story at Softpedia about Google Project Zero security researcher Tavis Ormandy's latest find. A vulnerability that allowed abuse by attackers was discovered and quickly fixed in the Kaspersky Internet Security antivirus package, one which allowed hackers to spoof traffic and use the antivirus product against the user and itself. Basically, by spoofing a few TCP packets, attackers could have tricked the antivirus into blocking services like Windows Update, Kaspersky's own update servers, or any other IPs which might cripple a computer's defenses, allowing them to carry out further attacks later on.

1 of 34 comments (clear)

  1. Please, it is getting old.... by benjymouse · · Score: 2, Informative

    The updates to telemetry do not suddenly cause Windows to start sending information back to Microsoft. Only when the user has explicitly accepted CEIP (Customer Experience Improvement Program) will these updates have any effect on a system.

    If you have not activated CEIP, the updates will not cause any information to be sent back to Microsoft. It is that simply.

    https://support.microsoft.com/...

    --
    Reading slashdot one-liner: (irm http://rss.slashdot.org/Slashdot/slashdot).rdf.item | fl title,desc*