Remember when you could insert a USB key into a Windows machine and have it auto-run any application stored on the device? Of course you do, it was only patched out for non-Windows 7 users yesterday! It’s hard to believe that such an obvious vector for possible infection has been left open for so long, but Redmond has finally rolled out an update to prevent this from happening in the future.
We suspect Microsoft finally took a hard look at auto-run over the past several months as they seek new and interesting ways to prevent another Conficker style worm from emerging ever again. Now before you get to excited and remind us the ability to disable this feature has been around for over a year now, we know that. The difference now is that this feature will be off by default, protecting the unwashed mass’s from future exploitation.
Microsoft still refuses to call Auto Run a “vulnerability” since it was “by design”, but let’s just admit this was a bad idea and move on shall we?
SUBSCRIBE TO BLOG BY: EMAIL
:
">FEED
No comments:
Post a Comment