Slashdot Mirror
Microsoft Says Windows 10 Version 1607 is The Most Secure Windows Ever (thurrott.com)
A new white paper from Microsoft claims that "devices running Windows 10 are 58% less likely to encounter ransomware than when running Windows 7". But an anonymous reader brings more news from Windows-watcher Paul Thurrott:
in a separate blog post, it also makes its case for why Windows 10 version 1607 -- that is, Windows 10 with the Anniversary Update installed -- is the most secure Windows version yet. Improvements in this release include: Microsoft Edge runs Adobe Flash Player in an isolated container, and Edge exploits cannot execute other applications... [And] the Windows Defender signature delivery channel works faster than before so that the in-box anti-virus and anti-malware solution can help block ransomware, both in the cloud and on the client. Additionally, Windows Defender responds to new threats faster using improved cloud protection and automatic sample submission features, plus improved behavioral heuristics aimed at detecting ransomware-related activities.
Interestingly, the paper also touts Microsoft's "Advancing machine-learning systems in our email services to help stop the spread of ransomware via email delivery."
Interestingly, the paper also touts Microsoft's "Advancing machine-learning systems in our email services to help stop the spread of ransomware via email delivery."
. . . .is not what **I** would call a selling point. Sticking to Win7 on my Windoze gaming box, and Ubuntu for my main box. . .
But only proves that all previous versions are total crap...
Amy of right my fellow slashditters?
Just curbing the competition.
Where are the patches for Win7 which address all these known flaws? They're supposed to be providing security updates until 2020.
"National Security is the chief cause of national insecurity." - Celine's First Law
......
Except for the direct pipeline to Microsoft servers that is.
I gave up on updating any of my Win7 machines to anything above 7. I use FF or Chrome and Comodo for firewall /AV. Devender and MSE are disabled. I also use noScript on most sites and filter out ALL ads with a passion.
I also disable all vendor crapware and only run the bare minimum services. The laptops are fast did not have an issue with them since I installed them a few years back.
...is still infinity.
Bitten Apples are still better than dirty Windows...
...now say it in Donald Trump's voice.
Furries make the internet go.
"Most secure Windows ever"?!?!
Is that even a bar to clear?
More like clearing a wet piece of toilet paper clinging to the bottom of a sewer...
That's only because it won't boot. That way, the machine can't get infected.
Security has quite a lot to do with attack surface. I sincerely hope that at least some versions of embedded Windows would be more secure than this one.
They're supposed to be providing security updates until 2020.
They still are. These particular improvements were made to Microsoft Edge, which is not available for Windows 7.
Where up is down.
I heard they accomplished this by removing the network stack.
Even worse. They're lying. It's not Windows 10, it's an application.
"National Security is the chief cause of national insecurity." - Celine's First Law
... that the Galaxy Note 7 is the hottest phone of the year!
Windows x is way better than Windows (x-1) ever was...since when? the 80s? Give us a break. https://www.youtube.com/watch?...
1. security != privacy
2. "most secure Windows ever" doesn't say much to begin with
How low can you go!
If it was secure, I could control which outside servers the operating system contacts and what information it sends to them. An operating system for which you cannot even control where it connects to is insecure by definition.
It connects to more than a hundred outside servers Microsoft refuses to publish a complete list of these places and what data it exactly transmits, so it is also practically impossible for the end user to reliably distinguish Microsoft traffic from trojan horses and malware. It's ridiculous to call that secure.
Edge... that's Microsoft new Chrome installer right?
Mod me down, my New Earth Global Warmingist friends!
Security that the USER cannot control is not what **i** would call a selling point
A fine stance if you are a a technically competent IT pro or equivalent. However for the 99+% of the people out there who don't fit that description, having the security handled by the system vendor can actually be a good idea. Microsoft can do a better job of it than my mother can. (yes I know... stop snickering) The VAST majority of users don't have the foggiest idea how to properly secure their computers nor any meaningful interest in learning. Having the option of user control for those with the ability is a good idea but probably not a good default for most users. Microsoft may not do a great job but they'll probably do a better job than the majority of users (which is kind of a sad commentary but it is reality). It only is a problem if they deny competent users the ability to control security when the need arises.
So Windows 10 is the more secure EVAR simply because they can't have malware competing with their own spamming adware that they call Windows 10.
The telemetry, cloud features, ads, Microsoft account, etc would substantially reduce its score in a proper security assessment.
How secure this version of Windows is can only be determined after-the-fact.
Once a year goes by, and security researchers have sunk in their teeth, can we really determine how good the initial threat model was.
"The most secure version of windows" has been claimed for every release since Windows 98... and we know how that turned out.
Are they really claiming that the networked Windows 10 is more secure than the non-networked versions prior to Windows 3.11 and Windows for Workgroups? In the "old" versions the only realistic attack vector was floppy disk based viruses, which only caused the systems to misbehave, not "leak" data.
After years of being told that the only secure windows PC is one that is turned off, they listened.
They released a update that broke the boot system.
Damn the man!
Most secure from the user trying to control their own computer rather than Microsoft?
If you want to fly an attack on a U.S. battleship, you'll do it on a Patch Tuesday.
"Most secure since" does not mean it is secure. Just that it is more secure thann what came before.
Say on a scale of 1-100 that Win95 was 1 secure and Win98 was 2 secure and Win8 was 15 secure and this one is 16 secure, it is indeed the most secure one. Not secure, most secure.
And that is all without knowing how the security is measured. Is the securety level stable over the lifespan, or does it decrease with time as more faults are found, or does it stay the same?
So even though the claim is valid, it is also meaningless. It is like saying that the birthday girl is the oldest she ever was on her birthday. True, but useless info.
Don't fight for your country, if your country does not fight for you.
Funny how Microsoft makes these claims based on using Edge for internet access? On a personal user level I would much rather use Windows 7 and install a decent security suite than face the privacy issues and ugly UI of Windows 10. I am certainly glad Microsoft is taking security seriously and it's fine to improve basic protection for Windows. Nothing wrong with that, but I doubt the impression of Edge with change for most users who see a browser like Chrome or Firefox and better overall choice because of their cross platform support.
You'll be modded down, but in all honesty I get about as much useful information from your post as I get from what Microsoft says about Microsoft's Windows security.
It SHOULD be the most secure version.
What is the alternative? "Hey guys, we got this new version of Windows. It is a lot less secure than previous versions, but it has so much cool useless shit to distract you, you won't care about all the new security holes." ???
Isn't that something like "Best Mexican wine"?
Well, it crashes randomly a few times a week with that above error code.
When I ran Linux (mint) on the same box, it never crashed. I have to run Windows 10 because of my HTC Vive Virtual Reality kit, otherwise I'd say bye to that flawed system by now.
What this world is coming to - is for you and me to decide.
How can an OS that collects all your data (to improve your experience) and sends it over the internet be secure?
The installed base for Windows 10 is way smaller than Windows 7 so of course the ransomware infection rate on it is lower too. pff!
Saying something is "the most secure Windows ever" is roughly the equivalent of being the finest outdoor ice hockey player in Ecuador. That is to say, something which is only impressive out of context.
Who did what now?
WRONG, LUDDITE! Edge isn't a LUDDITE application, it's an appy app app that apps other apps!
Apps!
breaking news at 11...
Microsoft announce their latest version is better than their previous version.
Would you believe it, software 'development' appears to be a concept after all.
The general speaks with Bill Gates.
We suffer more in our imagination than in reality. - Seneca
But it is almost like saying that the Samsung Galaxy Notes 7 is the most explosive Samsung phone ever. Consider yourself middle-fingered, Microsoft.
After years of being told that the only secure windows PC is one that is turned off, they listened.
They released a update that broke the boot system.
Wait! Is this insightful? Or funny? Or informative?
Yes.
The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
I'll add the most secure Windows ever to my collection. Let's see:
1. Most Secure Windows Evah!!!
2. World's tallest midget
3. Most pleasant smelling turd
4. Most beautiful day for Rosie O'Donnell
Do you have ESP?
Why are the Microsoft H1B Zombie Geniuses allowed to churn out this level of code? Intrusion methodologies are publicly known. Is testing for them that difficult to master?
Do you remember when "Secure" used to include "Doesn't Phone Home"?
So the latest sieve from MS has one less hole. Pronouncements like that, just shows how utterly craptastic the previous versions were.
Excuse me, but please get off my Pennisetum Clandestinum, eh!
Because security is soooooooo hard!
For a lot of people it is. For those who make their living doing IT it might seem rather straightforward but that's a tiny percentage of the population. Like any task that is outside your domain of expertise even easy things can seem hard if you don't know enough to ask the right questions. And frankly even most IT pros really aren't experts in security despite what they might tell you.
The "most secure Windows ever" still requires a lot of security updates, which means it really isn't all that secure.
Every major operating system requires security updates including Windows, linux, Android, iOS, OS X, and the rest. You will not find a non-trivial piece of operating system software that does not require security patches from time to time.
Uh .... isn't *every* version of Windows supposed to be the most secure version ever?
Looking at the links and white paper, this is really related to Ransomware and Defender only. In that regard, they are certainly getting better, which then makes it an easy marketing statement to make. But everyone is (generally) getting better over time. Reading between the lines, what this is really saying is that Windows Defender is most likely Good Enough for most home users, and realistically it probably is. Most signature based software is terrible and has a 40-something% efficacy rating. The free AV has been shown to be untrustworthy with adware or selling data or various unsavory activities.
Compared to enterprise/corporate options, it's really not a worthy comparison unless you have to implement it for compliance reasons. Some corporate solutions are not considered AV in the compliance sense, even if they perform the same role. And if you really are a geek and like to have better control this won't be what you want either. There are a lot of caveats in their claim, but it makes headlines.
I will shred my adversaries. Pull their eyes out just enough to turn them towards their mewing, mutilated faces. Illyria
Close down shop please. The appeal of the M$ brand with me is of little worth. I sort of feel like a prisoner having to use Win 7.
I'm shocked that they cleared such a high hurdle!
The cesspool just got a check and balance.
Windows Defender signature... So it still has known vulnerabilities that have to be papered over...
Still connects to unknown remote servers? yes.
Uses stealth to hide the servers it connects to? yes.
Obviously the vendor is still lying.
Microsoft will know about every program I run?
... all you have to do is unplug your network cable and all wireless devices.
pfoghfobijncxv vibojbf hjfo o podfjodjg soifjg f
I like the container/sandbox work in Edge. I don't use the browser myself, but I like that there's better security in the OS default browser.
The efforts on Windows Defender are OK. Enterprise already has its own host protection, as do expert users. Any improvement is good for the masses though.
Overall, this doesn't really make Windows 10 much more appealing, but it's a step in the right direction.
---
According to the latest ruleset, this post should be modded as Vorpal Flamebait +5.
Because, no telemetry spying.
So even reducing the change to get it by 100% really isn't that impressive.
Yeah it's becoming so secure it's almost unusable! installing new products is a pain.
Windows 10 is so secure that I haven't had any security problems with it and don't expect to until Windows 7 won't run.
Don't waste your vote! Vote for whoever you want, unless you live in a swing state it won't matter anyways
"Microsoft Says Windows 10 Version 1607 is The Most Secure Windows Ever"
Yeah, and and they should be able to say this about version 1608, and 1609, and 1610....so what? Every later version SHOULD be more secure than the previous versions.
It's like saying that "on my next birthday I'll be older than I was on my last birthday".
Just cruising through this digital world at 33 1/3 rpm...
Windows 10 is so secure that it will reverse YOUR own decisions for you!
PROGRE.. god damn notifications fuck off.
Welp, there goes the system to driver "updates".
PROGRESS
We did it India! xD
/ Windows-10-in-a-nutshell
gcc, which they trust, and shouldn't really, as it could have been compromised and no one could tell
If there exist multiple C compilers, one of which is available to the public as source code, one can use David A. Wheeler's diverse double-compiling procedure to make the probability of a backdoor negligible.
If the resulting binaries of GCC-compiled-with-GCC are identical other than internal timestamps, one of the following is true: A. either GCC as compiled by DCC, ECC, and FCC is clean, or B. DCC, ECC, and FCC all share the same backdoor. Which is more likely in practice?
But they aren't claiming "since"
They are claiming it is the most secure version, period...which is just not possible to claim, until tested.
The oldest, supported version of Windows is likely the most secure - due to all major, known, CVE's being patched.
New code cannot inherently be claimed to be secure.
.. and the data that will make it the NSA?
Wake me up when MS stops having quarterly remote admin level exploits across **every** modern version of their operating system.
eg:
CERT - MU Security Alert
Multiple Vulnerabilities in Microsoft Products
Original Issue Date: 10 August, 2016
Severity Rating: High
Description:
Multiple vulnerabilities have been identified in Microsoft products and they can be
exploited by attackers to cause execution of arbitrary code, gain knowledge of sensitive
information, take full control of the affected systems and bypass security restrictions.
CVE-2016-3288 ...
CVE-2016-3289
http://cert-mu.govmu.org/English/Pages/Targeted%20Alerts/2016/Security%20Alert%20-%20Microsoft%20August%202016.pdf
Gonorrhea 1607 has the least greenish purulent discharge of all major strains of gonorrhea.
So, what if my mom is nothing like an IT pro, but is reasonably good at shopping? There's a lot of internet security products on the market designed to protect the computers of people who are not IT pros. Are you saying that reading reviews and trusting one of these products that was liked by reviewers to be competent at providing internet security is not a successful strategy - that only the system vendor can do this job sufficiently well?
My Arse is 58% cleaner this morning too. So What?
>> "devices running Windows 10 are 58% less likely to encounter ransomware"
In other news, 78.647% of all statistics are made-up.
Windows ? Secure ? lol.
Windows 10 ? Secure ? no way.
aaaaaaa
In short: Your insurance agency had long-running interactive processes because use of volatile memory was a legal requirement and overnight storage was a marketing requirement. How big was your insurance agency? Was it large enough for use of Windows Enterprise to make sense?
World's fastest Geo.
Most water resistant screen door.
When every version has been a sieve before, even blocking one hole in the sieve makes it the most secure version. Totally insecure, but not technically lying.
God spoke to me
People in this industry never seem to learn any lessons from previous failures. It is always double down and throw resources at unwinnable problems until your blue in the face.
Hey look this ransomware iterates sequentially through all directories reads files and writes encrypted versions of the files all we need to do is check for that heuristic and we win...
Next week ransomware iterates randomly through all directories and overwrites portions of files randomly at a time.
Time well spent?
What if instead they spent this time working versioned filesystems, better application jails and systematically addressing privilege escalation?
Detecting evil bits is a fools errand.
Sorry, but if the latest patch of your most recent operating system ISN'T supposedly more secure than its predecessors, then that's a pretty bad thing.
That said, they can claim whatever they want, but it could all be shown useless if some hacker finds a nice juicy exploits or buffer overflow, a day, hour, or even minute from now.
When IT is malware itself?
Given their past security issues, Windows 10 might be insecure. It's all relative.
"I believe in Karma. That means I can do bad things to people all day long and I assume they deserve it." : Dogbert
Be careful, what you say.
MS said XP is the best windows ever. Then nobody wanted any further windows, because everyone already had the best windows ever.
When this win 10 build is the most secure ever, you should never upgrade after you got it, if you want to be secure.
see above.
That's because most of the time you will be stuck in the updating loading screen.
.
.
.
well...At least users get to see spinning dots on a 4K monitor.
when one of their untested updates breaks the installation so it no longer boots up, the computer cant connect to the internet or even boot up, so is super safe
most secure system ever, after templeOS of course: you cant beat god
My Windows 10 was very secure because it was constantly disconnecting from the internet, forgetting DNS and gateway settings, and various other stuffups. Buying a new hard drive and Windows 7 solved all of the problems I was having.