Microsoft’s coders have still a lot of space to improve their software. While Microsoft talked up Windows Vista security at Black Hat, a researcher in another room demonstrated how to hack the operating system: Joanna Rutkowska, a Polish researcher at Singapore-based Coseinc, showed that it is possible to bypass security measures in Vista that should prevent unsigned code from running. In the second part of her talk, Rutkowska explained how it is possible to use virtualisation technology to make malicious code undetectable, in the same way a rootkit does. She code-named this malicious software Blue Pill. Blue Pill could serve as a backdoor for attackers, Rutkowska said. While it was developed on Vista and AMD’s technology, it should also work on other operating systems and hardware platforms. “Some people suggested that my work is sponsored by Intel, as I focused on AMD virtualisation technology only,” she said, adding that is untrue. Do we need another proof that nothing can’t stop hackers from bypassing WGA, Microsoft Update and any other software protection? It’s all just the matter of time…
No comments:
Post a Comment