Kaspersky Fixes Bug That Allowed Attackers To Block Windows Update & Others (softpedia.com)
An anonymous reader writes with this story at Softpedia about Google Project Zero security researcher Tavis Ormandy's latest find. A vulnerability that allowed abuse by attackers was discovered and quickly fixed in the Kaspersky Internet Security antivirus package, one which allowed hackers to spoof traffic and use the antivirus product against the user and itself. Basically, by spoofing a few TCP packets, attackers could have tricked the antivirus into blocking services like Windows Update, Kaspersky's own update servers, or any other IPs which might cripple a computer's defenses, allowing them to carry out further attacks later on.
Thank you hackers!!!
I just flagged gwx.exe as malware in my anti-virus and it works like a charm. Whenever it shows up, it's quarantined and the software makes a full scan. Very convenient.
The updates to telemetry do not suddenly cause Windows to start sending information back to Microsoft. Only when the user has explicitly accepted CEIP (Customer Experience Improvement Program) will these updates have any effect on a system.
If you have not activated CEIP, the updates will not cause any information to be sent back to Microsoft. It is that simply.
https://support.microsoft.com/...
Reading slashdot one-liner: (irm http://rss.slashdot.org/Slashdot/slashdot).rdf.item | fl title,desc*
Would anyone care to explain the funny in the comment above, for those of us who don't use Windows?
If you didn't already block Windows update already you're just going to hypnotize to death.
It's the "utility" that helps users install Windows 10 ...
Forgot quotes around "help".
Im surprised you need malware to break winows update. I can't count the number of times I've had to do something like delete the softwaredistribution folder to start getting updates again.
I just flagged gwx.exe as malware in my anti-virus and it works like a charm. Whenever it shows up, it's quarantined and the software makes a full scan. Very convenient.
How do you get any work done with you computer constantly running virus scans, though?
Users don't care about operating systems they care about running applications. "This bullshit is an unprecedented global backstab in the history of Earth" Evidently you know absolute nothing about the history of Earth. And your comments also make you look mentally incapable of understanding the pros and cons of the various operating systems.
I would love to block Windows Update! Where do I sign up?
Although I hate to date myself I have been employed for 28 years in IT. There isn't an OS in existence that I have not worked on in my career. Judging by your "backstabbing" comments you must be around 12 years old give or take a few years. Evangelizing an OS to the exclusion of all others has no place in the professional IT environment. And I wasn't shilling for MS I was remarking that your average users do not care about their OS they care about running applications. And Linux does have a heavy presence in the data center and in other back end web server roles but so does MS. The MS versus Linux battle boils down to selecting the OS that best fits the situation you are working on.