A vulnerability in Windows that is known since September 7 is being taken advantage of by releasing the code in public. The code crashes a computer but Harmony Security Senior Researcher Stephen Fewer has developed a code that lets an attacker run a program on a user’s machine which is more dangerous than the other situation.
Windows Vista Service Pack 1 and 2 as well as Windows 2008 SP1 server are the operating systems that are vulnerable to the exploit according to Metasploit developer HD Moore.
An Immunity Senior Researcher said that the code only works on Vista.
Source: PC World
So far, most of the press for Windows 7 has been good. IT pros and consumer beta testers have, for the most part, praised the new operating system as faster, nicer looking and easier to use than Vista. Folks are finding that they can install it on less powerful hardware than Vista requires, including inexpensive netbooks, and get good performance. What’s not to like?
We need to remember, though, that all the reviews thus far have been based on the (free) public release candidate or the RTM that certain IT pros get as part of their MSDN/TechNet subscriptions, MVP status, their companies’ beta testing relationship with Microsoft, etc. Folks have a tendency to be less critical of a product that they don’t have to pay for. Will the user satisfaction factor hold up once people start paying for the OS?
Vista actually got many positive reviews, too, when it was in beta testing. It was after it was released to the general public that most of the complaints started coming in – including complaints from the same tech pundits who had good things to say about it before. I think we have the OEMs to thank for much of that. Too many of the hardware vendors installed it on machines that just weren’t up to the task, and frustrated computer buyers found themselves working on systems that operated at a slow crawl. Of course, Service Pack 1 helped a lot with those performance issues, but by the time it came out, the damage to Vista’s reputation was already done.
With Windows 7, Microsoft obviously made performance a priority, whereas in designing Vista, security seemed to be at the forefront (no pun intended). They quickly discovered that although most computer users will say they want their systems to be secure, many of them want that only as long as it doesn’t inconvenience them. Thus another thing that got Vista off on the wrong foot was User Account Control (UAC), which so many people saw as much too “in your face.” Win7 still has UAC, but its default behavior has been toned down to make it less annoying and users have been given more control over it. At the same time, new technologies in Windows 7 such as BitLocker to Go and AppLocker (in Enterprise and Ultimate), DirectAccess (in Pro, Enterprise and Ultimate), and improvements to smart card support, the Windows Firewall, and other existing security technologies make this the most secure version of Windows ever – without getting in your face.
Something that I’ve not yet been able to try out is Windows 7’s improvements to handwriting recognition. I thought the Tablet PC was a great idea, but unfortunately it didn’t catch on, and it’s you don’t see as many Tablets for sale as you did for a while. It would be great if Windows 7 changed that, but I don’t know whether it will happen. HP’s TouchSmart tx2z is one that looks interesting, with the ability to handle up to 8 GB of RAM. Fujitsu is still putting out a number of machines in the Tablet form factor, including the teeny tiny 5.6 inch LifeBook U820 that’s cute as can be, if not overly functional. Its slightly bigger brother, the LifeBook P1630 (8.9 inch screen) always catches my eye, but I’m not going to pay almost $2000 for a system that has only 1 GB of RAM and a 1.2 GHz processor. I think the biggest problem with the Tablets is that they have continued to be significantly more expensive than regular laptops/notebooks with comparable specs. That’s because of the expense of the touch screen, I suppose.
In fact, one new focus in Windows 7 that most beta testers didn’t get a chance to fully appreciate is its Touch capabilities. That’s because using it requires that you have the proper hardware – a touch screen monitor. There aren’t that many of those floating around out there yet, and they’re relatively expensive. I’m lucky to have an HP TouchSmart as our “kitchen computer” but it’s not the latest incarnation and doesn’t support all of the Windows 7 Touch goodness, such as multi-touch (ability to grab with two fingers, like you can do with the iPhone). To see a demo of Windows 7’s multi-touch, watch the video at
Speaking of the iPhone, the Windows 7 desktop operating system isn’t the only “7″ in Microsoft’s lineup. Those of us who haven’t fallen under Apple’s spell are looking forward to Windows Mobile 7, the next full version upgrade of Microsoft’s phone/handheld OS. An incremental upgrade, WM 6.5, will be out next month and it has some nice new features, but it’s WM 7 – especially running on high end phones like the Omnia II with its drop-dead-gorgeous AMOLED screen (coming soon to Verizon) – that we’re hoping will be the iPhone killer.
Although we don’t know much about it yet, I’m hoping that WM 7 will be a lot like a pared down version of Windows 7, made for the small screen. The problem with Windows Mobile in the past was that it was too stylus-centric; that is, you couldn’t easily navigate its interface with just your fingers, as you can do on the iPhone. Some of the phone vendors have addressed this with their own interface overlays. For instance, the Touchwiz 2.0 interface on the Omnia II brings the same type of touchability to that device that iPhone users enjoy. See it in action here:
WM 7 is expected to be released in 2010 and there are rumors that beta testing will begin before the end of this year. Microsoft has kept it under close wraps, but there have been leaks, and even suggestions that it’s already in the early phases of beta testing: http://www.win7news.net/AK8917/090917-Windows-Mobile-7
We have to say 7 hasn’t always been a lucky number for Microsoft, though. Internet Explorer 7, although it introduced tabbed browsing for the first time in IE and greatly improved browser security, was plagued with usability and reliability problems. I experienced frequent browser crashing or freezing with it – problems that I haven’t seen in IE 8.
An Apple-specific DNS changer Trojan has been detected by Trend-Micro. It is named JAHLAV-K and it comes in a mountable Disk Image File (.dmg).
If users get infected with this file, their browsers would redirect to phishing sites and some of them would also redirect to sites that offer fake anti-virus programs.
Sophos warns that the pirated version of “Foxit Reader for Mac” comes with this trojan. “While imitation may be the sincerest form of flattery, we are not happy about the recent malware attacks masquerading as our Foxit Reader,” said the vice president of sales and marketing at Foxit Corporation.
• Windows 7 will be generally available to the public on October 22, 2009!!!
• The following SKUS will be available in the System Builder Channel:
• Windows® 7 Ultimate
• Windows® 7 Professional
• Windows® 7 Home Premium
• The Windows 7 Products and Key Features chart below provides a more detailed summary of the Windows 7 SKU strategy and a listing of key features by SKU.
Product Version Product Background Key Features Additional Product
Specific Details
Windows 7
Ultimate The no-compromise SKU for tech enthusiasts. • Windows® XP Mode
• New security and network access features in the Windows 7 Ultimate edition.
• Includes DirectAccess which connects users directly to their corporate network and access files securely from any PC, mobile phone or other internet connected device
• Includes BranchCache which makes it faster to open files and web pages from a branch office.
• Multilanguage language packs and language switching capability Windows 7 Ultimate will be available worldwide.
Windows 7
Professional The business-focused SKU for companies who have advanced networking, backup, and security needs • Windows XP Mode
• Ability to join a managed network with Domain Join
• Protect data with advanced network backup and Encrypted File System
• Print to the right printer at home or work with Location Aware Printing Windows 7 Professional will be available worldwide.
Windows 7
Home Premium The standard consumer SKU, providing full functionality on the latest hardware, easy ways to connect, and a visually rich environment. • Aero Glass and advanced windows navigation
• Easy networking and sharing across multiple PCs and devices
• Improved media format support, enhancements to Windows Media Center and media streaming, including Play To
• Multi-touch and improved handwriting recognition on systems with required hardware Windows 7 Home Premium will be available worldwide.
*Each Windows 7 product includes all features included in the lower versions, plus the additional “Key Features” listed for the version.
Some other important dates for Vista Upgrade to Win7 :
-06/19/09 Authorized Replicator start shipping Vista with Window 7 upgrade coupon
(New SKUs will be ready after June 15, 2009)
- 06/28/09 to 01/31/10 Eligible purchase period for Window 7 upgrade
- 02/28/10 Final Date to request Window 7upgrade
- 04/30/10 Final fulfillment date
Windows 7 Upgrades:
Consumer can only upgrade on eligible & “like” sku
Windows Home Basic and Windows XP are NOT eligible
Can upgrade to “like” SKU’s only:
• Windows Vista Business Window 7 Professional
• Windows Vista Home Premium Windows 7 Home Premium
• Windows Vista Ultimate Window 7 Ultimate
Here’s what you need to know:
This is pre-release software, so please read the following to get an idea of the risks and key things you need to know before you try the RC.
• You don’t need to rush to get Windows 7 RC. The RC release will be available at least through June 2009 and we’re not limiting the number of product keys, so you have plenty of time.
• Watch the calendar. The RC will expire on June 1, 2010. Starting on March 1, 2010, your PC will begin shutting down every two hours. Windows will notify you two weeks before the bi-hourly shutdowns start. To avoid interruption, you’ll need to install a non-expired version of Windows before March 1, 2010. You’ll also need to install the programs and data that you want to use. (Learn more about installing Windows).
• Protect your PC and data. Be sure to back up your data and please don’t test Windows 7 RC on your primary home or business PC.
• Technical details/updates: Before installing the RC please read the Release Notes, and Things to Know for important information about the release.
• Keep up with the news. You can keep up with general technical information and news by following the Springboard Series blog or Windows team blog. Want technical guidance, tips, and tools? Visit the Springboard Series on TechNet.
• Keep your PC updated: Be sure turn on automatic updates in Windows Update in case we publish updates for the RC.
• Microsoft Partners: Learn more about Windows 7 on the Microsoft Partner Portal.
Extra Info:
Q: When will Windows 7 officially launch?
A: Microsoft hasn’t officially announced a launch date, but all signs point to Windows 7 being released in time for the “holiday” season this year.
Q: Should I give it a try? Can I recommend it to my customers?
A: Absolutely. I’m already running it on two of my own systems and it’s working MUCH better than Vista However, always backup your data just in case!
Q: I’ve heard about Windows XP Mode as a feature of Windows 7, is that included with this download?
A: No, it’s an additional download. Go here to download the Windows XP Mode image: http://www.microsoft.com/windows/virtual-pc/download.aspx
Q: Who should I give feedback to?
A: Microsoft includes a tool in Windows 7 to report feedback. Run this command in the Run menu (Keyboard shortcut: Windows key + R)
rundll32.exe FeedbackTool.dll,ShowWizard
Or, you can always provide feedback to me and I’ll pass it along to the right people within Microsoft. If you run into any problems, NOW is the time to complain
Microsoft will deliver ten patches next tuesday. Six of them are rated as critical.
One of the most serious flaws affects Internet Explorer 8.
Updated versions of Malicious Software Removal Tool and Windows Mail Junk Filter will also be released.
The article at Information Week also mentions that Adobe will release updates for Reader and Acrobat during the same day. These updates are for versions 7.x, 8.x, and 9.x. Adobe promised to release quarterly security updates and this batch will be the first.
Source: Information Week
Sophos has posted a blog article about a malware that tries to stop piracy by destroying all mp3 files on an infected computer.
If the computer is infected, a message box will show before users can log on which says “Stop piracy Musician Affairs, Do not Use MP3 again (quasi quasi-an) huahahahahaha!” which is loosely translated from an Indonesian language. The message appears because the malware modifies some registry entries related to WinLogon.
The file comes with a Winamp icon which looks like a regular mp3 file notes Prashant Kumar, the author of the article.
Source: www.Sophos.com
Kinda Scary.. Hope we dont see much of this one. Besure to run your windows and anti virus software updates
Your laptop is great for portability, but what if your battery won’t hold a charge? There are ways you can extend untethered time on your laptop. And if you follow these tips, you can get the most out of your battery life.
Buy an energy-efficient laptop. The size and type of portable computer have a big effect on your battery life; opting for a smaller screen and a solid-state drive will save power. Check out the power ratings when buying a new machine; and if you can get an upgrade on your battery, it’s worth the splurge.
Use your computer’s power-saving settings. Whether you’re on a PC or a Mac, your computer should come with energy-saving settings that will dim your screen after a certain period of inactivity and turn off your screen and hard drives after a longer period. You can make the length of time your computer stays on while inactive even shorter to conserve more power, too.
Shut off devices and programs you don’t need. The more your computer is doing, the more power it uses. Shut down any programs that you aren’t actively using or that aren’t absolutely essential, and try using only one application at a time. This also goes for wireless, Bluetooth, speakers, and any USB devices; even that USB mouse draws power. CD/DVD drives also use a lot of juice, so try to run all programs off your hard drive, and don’t keep a disc in the drive because your computer will try to read it every time it starts up.
Go easy on your display. A big, bright, crisp display isn’t always a necessity. If you can, dim your screen and lower its resolution to save power. And don’t use a graphic screen saver; just let it go dark.
Turn off scheduled tasks. Unless you’re working on something you’re very worried about losing, turn off autosave functions. Also, stop any programs from automatically opening, such as autoupdate and virus-scanning programs, and close any nonessential programs you may have open on startup.
Keep your computer at a comfortable temperature. Extreme heat and cold will affect your battery’s performance. When it’s above 80 degrees, your battery will discharge more quickly, and when it’s cold your battery won’t charge well. It’s best to work at room temperature. Also, make sure your computer doesn’t overheat (the fan uses a lot of power) by using a cooling mat, keeping vents clean, and avoiding leaving it on soft surfaces.
Take care of your battery. Though most newer laptops run on lithium-ion batteries, which don’t suffer the “memory effect” that older nickel-based batteries did, you should still fully charge it before your first nonsocket use, and you should let it discharge nearly completely every once in a while so your computer can recalibrate its minutes-left-for-computing clock. You should also make sure the battery contacts are clean; if they’re not, clean them with some rubbing alcohol on a cloth.
Use sleep and hibernate modes. Don’t just leave your computer idle when it’s not plugged in. If you’re stepping away for a short time, use your PC’s sleep mode; if you’ll be away for a longer time, use hibernate, which draws even less power, though your computer will take a little longer to wake up. Some laptops, such as Macs, will automatically enter sleep mode when you close the lid.
Any thoughts or ideas? Leave a comment!
There are an increasing number of reports regarding the swine flu and email scams. Unsolicited email messages are being sent with subject lines related to swine flu so recipients will open and click on harmful links or malicious attachments aimed at infecting PCs. To be safe, please ensure you take the following measures of protection:
• Beware of swine flu related emails and subject lines
• Do not follow unsolicited web links or attachments in email messages
• Maintain up-to-date antivirus software
Lets face it criminals love to take advantage of news headlines to try to dupe people into getting there credit cards or other personal information.
Be Smart when your online.
However, always backup your data just in case!