Lavasoft News - March 2007

Vista Vulnerabilities

Vista, pegged by Windows as their most secure operating system yet, has been under the scrutiny of many in the security industry even before it hit the market.

Only a month after its commercial release, researchers are raising specific concerns about the new operating system's security.

On the heels of Microsoft's latest Patch Tuesday, which included the first fix that will involve Vista (a critical flaw in the Microsoft Malware Protection Engine that affects the Windows Defender security package), new security holes are now being questioned.

According to reports, Security Researcher Joanna Rutkowska claims to have found a "gaping hole" in Vista's User Account Control (UAC) security functionality.

As one of its security features, Vista runs in a normal user account by default and pops-up dialogue boxes before it performs administrative functions, like modifying system files. The concern raised is over the Vista assumption that all application installers should be run with administrative privileges.

When users attempt to install a new program, they must choose to give the installer complete system privileges or not run the program; when an installer is run as administrator, it has access to the file system and registry. Rutkowska has pointed out several security problems this opens up.

A blog response from a Microsoft security manager stated that accommodations had been made to consider both security and usability in Vista, and that it was not a matter of "security bugs."

Rutkowska does not seem to believe that explanation answers the security questions that have been brought up. "If Microsoft won't change their attitude soon, then in a couple of months the security of Vista (from the typical malware's point of view) will be equal to the security of current XP systems (which means, not too impressive)," a statement on her blog said.

The trend of malware writers to target widely used Microsoft applications and services could mean more threats are in store in Vista's future as more and more users switch to the operating system.

"Malware authors continue to find unknown or unpatched vulnerabilities in popular applications and services which are then used in zero-day attacks," Dave Marcus, security researcher and communications manager at McAfee, told

This tendency highlights the need to use third party software as an additional security measure in place to protect yourself from malware. In order to support your need to control what products secure your computer and protect your privacy, Lavasoft has made sure that Ad-Aware 2007 will be Vista compatible and Vista certified.

Home   arrow

Ad-Aware SE + Firewall - 30% off! Buy Ad-Aware SE + Lavasoft Personal Firewall bundle today and get up to 30% off! *Offers ends March 15th, 2007. All purchases will be eligible for a free update to Ad-Aware 2007
One of the so-called "fathers of the Internet" claims 100-150 million of the 600 million online computers are virus-infected components in botnet networks of PCs under control of hackers. Read who said it and what other predictions he makes in our story, "Battling the Botnet Pandemic."
Term of the Month
Botnet, shortened from roBOT NETwork, is a network of compromised PCs. It is a type of Remote Control Software, specifically a collection of software robots, or 'bots', which run autonomously. Botnets have been used for sending spam remotely, installing more spyware without consent, and for other illicit purposes.

Educate yourself by reading more terms in our Spyware Glossary.
Tech Tips
Having up-to-date firewall, anti-virus and anti-spyware programs is key in keeping your computer safe, but be prepared in the event of a system crash. Back up your files! Along with confidential documents, think of all those personal photos you may have stored on your PC. Don't lose them! Copy them onto a removable disc and store them in a safe place. It may seem like simple advice, but many computer users don't have any back ups at all.
Letters to the Editor
Many of you who wrote to us feel the so-called "spyware" teacher shouldn't be put behind bars and that malware is the real criminal in this case. Stay tuned to this story as sentencing is handed down March 2. In the meantime, read a few of your letters here (some have been shortened due to space limitations).
Lavasoft AB
Lilla Bommen 1
411 04 Gothenburg
Page footer