| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 7 Apr 2007 18:27:28 -0500
From: "Randall M" <randallm@...mail.com>
To: <funsec@...uxbox.org>,
<full-disclosure@...ts.grok.org.uk>
Subject: Vista Protected Processes Bypassed
___________________________
From: CowboyNeal
Posted At: Saturday, April 07, 2007 11:41 AM
Posted To: Technology
Conversation: Slashdot
Subject: Vista Protected Processes Bypassed
Anonymous Hero writes "Security Researcher Alex Ionescu strikes again, this
time with a proof of concept program that will arbitrarily enable and
foremost disable the protection of so-called 'protected processes' in
Windows Vista. Not only threatening Vista DRM and friends, it's also another
step towards hardened and even more annoying malware. Normally, only
specially signed processes made by special companies (decided by Microsoft)
can be protected, but now the bad guys can protect any evil process they
want, including the latest version of their own keylogger, spambot, or worm,
as well as unprotect any 'good' one."
http://rss.slashdot.org/~r/Slashdot/slashdot/~3/107345575/article.pl
_______________________________--
I am beginning to believe that Vista will be the avenue that catapults
malware writers way ahead of the rest of us. When you "wrestle" with a
better opponent you gain strength and ability.
Download attachment "slashdot_3fi_3dE3x2nu" of type "application/octet-stream" (10907 bytes)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists