Microsoft

A Windows Defender vulnerability lurked undetected for 12 years

EnlargeDrew Angerer | Getty Images reader comments 33 with 27 posters participating Share this story Share on Facebook Share on Twitter Share on Reddit Just because a vulnerability is old doesn’t mean it’s not useful. Whether it’s Adobe Flash hacking or the EternalBlue exploit for Windows, some methods are just too good for attackers to…

Published 3 years ago in
A Windows Defender vulnerability lurked undetected for 12 years
Shadowy figures stand beneath a Microsoft logo on a faux wood wall.
Enlarge
Drew Angerer | Getty Images

reader comments

33

Just because a vulnerability is old doesn’t mean it’s not useful. Whether it’s Adobe Flash hacking or the EternalBlue exploit for Windows, some methods are just too good for attackers to abandon, even if they’re years past their prime. But a critical 12-year-old bug in Microsoft’s ubiquitous Windows Defender antivirus was seemingly overlooked by attackers and defenders alike until recently. Now that Microsoft has finally patched it, the key is to make sure hackers don’t try to make up for lost time.

The flaw, discovered by researchers at the security firm SentinelOne, showed up in a driver that Windows Defender—renamed Microsoft Defender last year—uses to delete the invasive files and infrastructure that malware can create. When the driver removes a malicious file, it replaces it with a new, benign one as a sort of placeholder during remediation. But the researchers discovered that the system doesn’t specifically verify that new file. As a result, an attacker could insert strategic system links that direct the driver to overwrite the wrong file or even run malicious code.

Windows Defender would be endlessly useful to attackers for such a manipulation, because it ships with Windows by default and is therefore present in hundreds of millions of computers and servers around the world. The antivirus program is also highly trusted within the operating sy

!–>

Read More

Be the first to write a comment.

Leave a Reply

Microsoft

Microsoft fixes problem that let Edge replicate Chrome tabs without permission

Enlarge Microsoft reader comments 79 Microsoft has fixed a problem that resulted in tabs from Google Chrome being imported to Microsoft Edge without user consent, as spotted by The Verge. Microsoft has kept mum on the situation, making the issued update the first time Microsoft has identified this as a problem, rather than typical behavior

Published 2 days ago in
Microsoft fixes problem that let Edge replicate Chrome tabs without permission
Microsoft fixes problem that let Edge replicate Chrome tabs without permission
Enlarge
Microsoft

reader comments

79

Microsoft has fixed a problem that resulted in tabs from Google Chrome being imported to Microsoft Edge without user consent, as spotted by The Verge. Microsoft has kept mum on the situation, making the issued update the first time Microsoft has identified this as a problem, rather than typical behavior for the world’s third-most-popular browser.

In late January, The Verge Senior Editor Tom Warren reported experiencing the puzzling Edge issue. After updating his computer, Edge launched with the tabs that Warren most recently used in Chrome. He eventually realized that Edge has a feature you can toggle, reading: “Always have access to your recent browsing data each time you browse on Microsoft Edge.” The setting is reachable in Edge by typing “edge://settings/profiles/importBrowsingData.” Interestingly, it allows Edge to import browsing data from Chrome every time you open Edge, but data from Firefox can only be imported manually. However, Edge was seizing Chrome tabs without this setting enabled. Others reported having this problem via Microsoft’s support forum and social media, as well.

The Edge setting as seen on a Windows 11 23H2 system running Edge 122. You can have data continuously imported from Chrome or on demand from Firefox, but other browsers don't appear.
Enlarge / The Edge setting as seen on a Windows 11 23H2 system running Edge 122. You can have data continuously imported from Chrome or on demand from Firefox, but other browsers don’t appear.
Andrew Cunningham

Microsoft didn’t respond to The Verge’s initial request for comment, but this week it released an Edge update that seems to address matters. Microsoft’s release notes from February 15 say:

Edge has a feature that provides an option to import browser data on each launch from other browsers with user consent. This feature’s state might not have been syncing and displaying correctly across multiple devices. This is fixed.

Microsoft seems to be saying that the status (enabled or disabled) of Edge’s importing data ability wasn’t syncing correctly across people’s Microsoft devices. However,

!–>
Read More

Continue Reading
Microsoft

Microsoft sure seems to be thinking about some sort of portable Xbox

Enlarge / A demo of “Project Xcloud” streaming running on a mobile device, circa 2019. reader comments 117 Further ReadingAfter weeks of rumors, Microsoft says four games are going to “other consoles” Yesterday’s news that four unnamed Microsoft games are coming to “the other consoles” was a bit anticlimactic after weeks of now-refuted rumors about

Published 5 days ago in
Microsoft sure seems to be thinking about some sort of portable Xbox
A demo of "Project Xcloud" streaming running on a mobile device, circa 2src19.
Enlarge / A demo of “Project Xcloud” streaming running on a mobile device, circa 2019.

reader comments

117

Further Reading

After weeks of rumors, Microsoft says four games are going to “other consoles”

Yesterday’s news that four unnamed Microsoft games are coming to “the other consoles” was a bit anticlimactic after weeks of now-refuted rumors about games like Starfield and Indiana Jones and the Great Circle going to the PlayStation 5. Yet even as those rumors die, Microsoft seems to be actively feeding new rumors regarding plans for some sort of portable gaming device.

In an interview with the Verge accompanying yesterday’s “multi-platform” business announcement, Microsoft Xbox CEO Phil Spencer was asked directly about any handheld hardware plans, including his recent penchant for liking some social media posts discussing handheld game consoles. While Spencer said he had “nothing to announce,” he talked up a lot of other handheld gaming hardware when talking about how Xbox could capture more “player hours.”

So, okay, what keeps people from playing certain hours? Well there’s some sleep, school, and kind of normal life, but some of it is just access. Do I have access to the games that I want to play right now? Obviously we’re kind of learning from what Nintendo has done over the years with Switch, they’ve been fantastic with that. So when I look at Steam Deck and the ROG and my Legion Go, I’m a big fan of that space.

Spencer went on to say that “real work” still needs to be done to get Windows to work better with controller input and on smaller 7- to 8-inch screens. That’s the kind of OS work we’d note would be very useful if Microsoft is planning to release a Windows-based gaming portable of its own (we’re assuming Microsoft would not want to ditch Windows in favor of SteamOS). “That’s a real design point that our platform team is working with Windows to make sure that the experience is even better,” he said.

Advertisement

Spencer gave even more direct hints along the same lines in an interview with Bloomberg, where he

!–>
Read More

Continue Reading
Microsoft

Diablo 4 will make a hellish addition to Xbox Game Pass this March

Diablo 4 is coming to Game Pass this March. Xbox’s Sarah Bond made the announcement this evening, as part of the company’s business update podcast. In a follow up post on social media, Xbox said Diablo 4’s upcoming Game Pass debut is part of Microsoft’s “promise to offer Activision Blizzard games” on the subscription service…

Published 1 week ago in
Diablo 4 will make a hellish addition to Xbox Game Pass this March

Diablo 4 is coming to Game Pass this March.

Xbox’s Sarah Bond made the announcement this evening, as part of the company’s business update podcast. In a follow up post on social media, Xbox said Diablo 4’s upcoming Game Pass debut is part of Microsoft’s “promise to offer Activision Blizzard games” on the subscription service…
Read More

Continue Reading
Microsoft

How to get antivirus software for cheap

Plenty of folks use Microsoft Windows’ built-in antivirus protection, but sometimes you need more than what it offers. Security suites from independent companies like Bitdefender, Norton, and AVG can make it easier to stay on top of online security, by providing expanded and additional features that shield you more thoroughly…

Published 2 weeks ago in
How to get antivirus software for cheap

Plenty of folks use Microsoft Windows’ built-in antivirus protection, but sometimes you need more than what it offers. Security suites from independent companies like Bitdefender, Norton, and AVG can make it easier to stay on top of online security, by providing expanded and additional features that shield you more thoroughly…
Read More

Continue Reading