AV Firms Say Windows Vista Security Claims are Bullsh*t

Keep on Guard!


It seems the faith in Microsoft from the security industry is at an all time low, not surprising really with the amount of flaws that have been coming out in both the OS and the crapware forced upon its users like Internet Explorer Exploder.

Anti-virus firms at Infosec say they expect Vista and IE7 to change nothing for the industry. Microsoft used its presence at the show to laud the security features they’ve been busy building in the the upcoming software.

In particular, Microsoft was eager to talk about how Vista will finally jettison the need to run Windows as an administrator most of the time.

Basically what they are saying is, your mom, your gran and anyone else technically unsavvy is still going to be subjected to huge risks, even if they upgrade to Vista. Nothing is going to change in essence.

Eugene Kaspersky, founder of the eponymous Russian AV outfit said he expects the new privilege regime to have little effect. He said: “Of course they [virus writers] will find a way round it. Within a year there will be something like a rootkit for Vista.”

John Kay, Chief Technical Officer at Blackspider reckons on a “bug per line of code”. With the traditionally Heath-Robinsonian construction of MS browsers he’s not hopeful for IE7. He said: “I dread to think how many lines of code there are in there.”

1 bug per line of code? Amazingly bad, but I don’t think it would be quite so terrible. Even so, the people in the know say Windows is the worst hodge podge of spaghetti coding they’ve ever seen. It was pretty much confirmed when the Win2k & NT4 source code leaked out.

Let’s all stick to *nix & Open Source hey, but then that’s not perfect either. At least it’s improving at a rate of knots…I’m just waiting for Firefox to have a decent Bookmark manager ;)

Source: The Register

Posted in: Malware, Windows Hacking

, , , , , , ,


Latest Posts:


OWASP ZSC - Obfuscated Code Generator Tool OWASP ZSC – Obfuscated Code Generator Tool
OWASP ZSC is an open source obfuscated code generator tool in Python which lets you generate customized shellcodes and convert scripts to an obfuscated script.
A Look Back At 2017 – Tools & News Highlights A Look Back At 2017 – Tools & News Highlights
So here we are in 2018, taking a look back at 2017, quite a year it was. Here is a quick rundown of some of the best hacking/security tools released in 2017, the biggest news stories and the 10 most viewed posts on Darknet as a bonus.
Spectre & Meltdown Checker - Vulnerability Mitigation Tool For Linux Spectre & Meltdown Checker – Vulnerability Mitigation Tool For Linux
Spectre & Meltdown Checker is a simple shell script to tell if your Linux installation is vulnerable against the 3 "speculative execution" CVEs that were made public early 2018.
Hijacker - Reaver For Android Wifi Hacker App Hijacker – Reaver For Android Wifi Hacker App
Hijacker is a native GUI which provides Reaver for Android along with Aircrack-ng, Airodump-ng and MDK3 making it a powerful Wifi hacker app.
Sublist3r - Fast Python Subdomain Enumeration Tool Sublist3r – Fast Python Subdomain Enumeration Tool
Sublist3r is a Python-based tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collect and gather subdomains for the domain they are targeting.
coWPAtty Download - Audit Pre-shared WPA Keys coWPAtty Download – Audit Pre-shared WPA Keys
coWPAtty is a C-based tool for running a brute-force dictionary attack against WPA-PSK and audit pre-shared WPA keys.


3 Responses to AV Firms Say Windows Vista Security Claims are Bullsh*t

  1. Siddharth May 4, 2006 at 8:03 am #

    There could be a reason why AV firms like Kaspersky are crying hoarse about “privilege regime not being effective enough”. With the security components in Vista like MS Antispyware/MS defender, I think these guys are simply running scared.

    It may not be a valid reason, but MS entering into AV arena would surely become a reason of worry for ALL the AV companies. Irrespective of how bad (or good) they would develop the “acquisition”.

    And lets face it, AV companies thrive on the premise of windows not being secure enuff. Adding a bit of FUD to it helps sales charts too.

  2. Andrew May 4, 2006 at 1:00 pm #

    It is probably a little of both. Vista will be (hopefully) more secure than XP/2000, but of course there will be viruses. Worst case, virus writers will just say that you need admin rights to install this software, people will not know what is going on, log in as admin and just like that a virus is on your computer. People will probably always need an antivirus program. So I don’t think that the Symantecs/McAfees/Kaperskys of the world should be worried about not being able to sell their products because a user has Windows Vista.

  3. Darknet May 5, 2006 at 3:44 am #

    Yeah it’s definately to the advantage of the AV firms to spread some good FUD about Vista before it’s release so everyone runs to get the next generation super cool antivirus programs for Vista..

    MS definately is starting to develop its own Security products with its whater Microsoft Security Center…so the AV/Firewall/Spyware firms are getting a little worried.