Jump to content



Photo

Windows 8 Security Measures Broken?

news

  • Please log in to reply
14 replies to this topic

#1 SongHyeonDeok

SongHyeonDeok

    Lightning in a bottle.

  • 353 posts
  • Joined: 17-October 11

Posted 31 October 2012 - 16:56

Last week’s Windows 8 launch wasn’t just a major product release for Microsoft. It seems to have been a banner day for the government-funded hackers who take Microsoft’s software apart, too.

On Tuesday the French firm Vupen, whose researchers develop software hacking techniques and sell them to government agency customers, announced that it had already developed an exploit that could take over a Window 8 machine running Internet Explorer 10, in spite of the many significant security upgrades Microsoft built into the latest version of its operating system.


Source: Forbes

Really interesting read. It's also noted that it'll take other hackers a while before breaking into Windows 8 becomes more common.


#2 +Brando212

Brando212

    Neowinian Senior

  • 6,646 posts
  • Joined: 15-April 10
  • Location: Omaha, NE
  • OS: Windows 8.1
  • Phone: Sony Xperia ZL, Nokia Lumia 925

Posted 31 October 2012 - 17:29

so this was with the desktop version of IE? no surprise there

now if this was with the Metro IE and they had managed to break RTs sandbox THEN I'd be impressed

#3 +Seahorsepip

Seahorsepip

    http://seapip.com

  • 1,560 posts
  • Joined: 23-January 11
  • Location: Netherlands
  • OS: Windows 8.1 Pro
  • Phone: Nexus 5

Posted 31 October 2012 - 17:38

the more reason to not use IE :p

#4 Jose_49

Jose_49

    Neowinian Senior

  • 3,701 posts
  • Joined: 30-July 09

Posted 31 October 2012 - 17:40

If it's from Forbes.... I just don't know...

Edit: My bad, seems it is not about predictions...

#5 Javik

Javik

    Beware the tyrrany of those that wield power

  • 5,934 posts
  • Joined: 21-May 12

Posted 31 October 2012 - 17:41

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

#6 soldier1st

soldier1st

    Software Tester/Tech/Linux Lover

  • 5,305 posts
  • Joined: 21-December 03
  • Location: Guess Where
  • OS: Windows 7,Android,Linux Mint
  • Phone: HTC Incredible S

Posted 31 October 2012 - 17:47

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

And that and other reasons are why it is advised to avoid IE.

#7 CentralDogma

CentralDogma

    Neowinian Senior

  • 2,150 posts
  • Joined: 29-February 08

Posted 31 October 2012 - 17:49

so this was with the desktop version of IE? no surprise there

now if this was with the Metro IE and they had managed to break RTs sandbox THEN I'd be impressed


Well, that depends. A lot of Metro apps use WWAHost for execution, which is an IE renderer. If the bug is in that, then they could potentially breach the sandbox for Metro apps.

#8 Growled

Growled

    Neowinian Senior

  • 41,508 posts
  • Joined: 17-December 08
  • Location: USA

Posted 31 October 2012 - 23:26

That look longer than I expected.

#9 Aethec

Aethec

    Neowinian Senior

  • 2,218 posts
  • Joined: 02-May 10

Posted 31 October 2012 - 23:33

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

Actually, IE on Metro has a more restrictive sandbox than IE on desktop. I know you can enable the more secure sandboy in the "normal" desktop IE, but I don't know if you can do it in the ARM version.
But then what do you want to use? Firefox? I like Firefox, but it's nowhere near IE in terms of security.

#10 syobon999

syobon999

    Neowinian

  • 373 posts
  • Joined: 22-December 09

Posted 01 November 2012 - 00:56

never rely only on microsoft for security, use sandboxie and be safe lol

#11 +Brando212

Brando212

    Neowinian Senior

  • 6,646 posts
  • Joined: 15-April 10
  • Location: Omaha, NE
  • OS: Windows 8.1
  • Phone: Sony Xperia ZL, Nokia Lumia 925

Posted 01 November 2012 - 04:58

Actually, IE on Metro has a more restrictive sandbox than IE on desktop. I know you can enable the more secure sandboy in the "normal" desktop IE, but I don't know if you can do it in the ARM version.
But then what do you want to use? Firefox? I like Firefox, but it's nowhere near IE in terms of security.

yeah doesn't IE actually have the strongest sandbox between firefox(which doesn't even have a sandbox) and chrome now?

#12 BajiRav

BajiRav

    Neowinian Senior

  • 10,604 posts
  • Joined: 15-July 04
  • Location: Xbox, where am I?
  • OS: Windows 8.1, Windows 8
  • Phone: Lumia 920

Posted 01 November 2012 - 05:20

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

the more reason to not use IE :p

what makes you think Firefox, Chrome or Opera on Windows 8 will be any better? :/

#13 +Seahorsepip

Seahorsepip

    http://seapip.com

  • 1,560 posts
  • Joined: 23-January 11
  • Location: Netherlands
  • OS: Windows 8.1 Pro
  • Phone: Nexus 5

Posted 01 November 2012 - 08:19

what makes you think Firefox, Chrome or Opera on Windows 8 will be any better? :/

I think it's security wise better because of the way it's written and I'm always pro firefox since they're the only ones that keep themselves to the webstandards which is important to me as a webdesigner.
But yeah every software has/had its security holes except IE a few more :p

#14 +Xinok

Xinok

    Resident Reresident

  • 3,493 posts
  • Joined: 28-May 04
  • Location: Shikaka
  • OS: Windows 7 x64
  • Phone: Galaxy S3 (Wicked)

Posted 01 November 2012 - 17:24

You mean hackers have done the possible?! :huh:

All the additional layers of security in Windows 8 and RT make hacking more difficult but not impossible. With enough determination, a hacker can break into any system. Even Google Chrome has been exploited, bypassing the sandbox and all.

#15 Growled

Growled

    Neowinian Senior

  • 41,508 posts
  • Joined: 17-December 08
  • Location: USA

Posted 02 November 2012 - 00:55

never rely only on microsoft for security, use sandboxie and be safe lol


Does sandboxie work in Windows 8? I read somewhere that it didn't.