Windows 8 Security Measures Broken?

By SongHyeonDeok
in Back Page News

 Share

Recommended Posts

Community Regular

SongHyeonDeok

Posted
Posted

Last week?s Windows 8 launch wasn?t just a major product release for Microsoft. It seems to have been a banner day for the government-funded hackers who take Microsoft?s software apart, too.

On Tuesday the French firm Vupen, whose researchers develop software hacking techniques and sell them to government agency customers, announced that it had already developed an exploit that could take over a Window 8 machine running Internet Explorer 10, in spite of the many significant security upgrades Microsoft built into the latest version of its operating system.

Source: Forbes

Really interesting read. It's also noted that it'll take other hackers a while before breaking into Windows 8 becomes more common.

Link to comment
https://www.neowin.net/forum/topic/1116295-windows-8-security-measures-broken/
Share on other sites
Grand Master

Noir Angel

Posted
Posted

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

  • f0rk_b0mb and Seahorsepip
  • Like 2
Grand Master

soldier1st

Posted
Posted

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

And that and other reasons are why it is advised to avoid IE.

Veteran

CentralDogma

Posted
Posted

so this was with the desktop version of IE? no surprise there

now if this was with the Metro IE and they had managed to break RTs sandbox THEN I'd be impressed

Well, that depends. A lot of Metro apps use WWAHost for execution, which is an IE renderer. If the bug is in that, then they could potentially breach the sandbox for Metro apps.

Veteran

Aethec

Posted
Posted

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

Actually, IE on Metro has a more restrictive sandbox than IE on desktop. I know you can enable the more secure sandboy in the "normal" desktop IE, but I don't know if you can do it in the ARM version.

But then what do you want to use? Firefox? I like Firefox, but it's nowhere near IE in terms of security.

Grand Master

Brandon H Supervisor

Posted
  • Supervisor
Posted

Actually, IE on Metro has a more restrictive sandbox than IE on desktop. I know you can enable the more secure sandboy in the "normal" desktop IE, but I don't know if you can do it in the ARM version.

But then what do you want to use? Firefox? I like Firefox, but it's nowhere near IE in terms of security.

yeah doesn't IE actually have the strongest sandbox between firefox(which doesn't even have a sandbox) and chrome now?
Grand Master

BajiRav

Posted
Posted

And this is why I will never buy an RT based tablet as long as the browser restrictions are in place. Even with Microsoft's security improvements IE still seems to be a portal for hackers.

the more reason to not use IE :p

what makes you think Firefox, Chrome or Opera on Windows 8 will be any better? :/

Grand Master

Seahorsepip Veteran

Posted
  • Veteran
Posted

what makes you think Firefox, Chrome or Opera on Windows 8 will be any better? :/

I think it's security wise better because of the way it's written and I'm always pro firefox since they're the only ones that keep themselves to the webstandards which is important to me as a webdesigner.

But yeah every software has/had its security holes except IE a few more :p

Grand Master

+Xinok Subscriber²

Posted
  • Subscriber²
Posted

You mean hackers have done the possible?! :huh:

All the additional layers of security in Windows 8 and RT make hacking more difficult but not impossible. With enough determination, a hacker can break into any system. Even Google Chrome has been exploited, bypassing the sandbox and all.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Windows 11's big performance boost is finally available for all

      By ikjadoon · Posted

      It is silly there is no simple way to check whether this profile has been activated. CFRs are normal, but trying to even hide the fact if it's on / off seems silly, especially for something so user-facing. Surely Microsoft is "proud" of their engineering efforts on this one and ought to display it somwhere in the GUI.
    • Windows 11's big performance boost is finally available for all

      By ikjadoon · Posted

      Many Linux distros are not known for excellent battery life, so I'm not sure that is the best example. A more apt example may be Apple, but Apple's CPUs are simply far more efficient than Intel & AMD at single-threaded tasks like these, so "boosting" is not as power-hungry and less heat-inducing. Not to mention Apple will hardly engage P-cores for basic UI tasks; they use a pretty complicated QoS scheme to only activate P-cores for more serious workloads like HTML / JS execution or decompression or application launch. Microsoft is (smartly) doing it for launch, but also for UI tasks, which is the more nonsensical part: why ... do Windows 11's UIs need modern CPUs to boost? It should load so quickly that there's not even time for the CPU to boost.
    • Windows 11's big performance boost is finally available for all

      By ikjadoon · Posted

      I've not seen any controlled testing and, judging by Microsoft's mentality, within a year, they'll have added so much more bloat, it'll undo any perceptible latency benefit and we'll have boosted the CPU clocks for nothing.
    • Windows 11's big performance boost is finally available for all

      By ikjadoon · Posted

      It depends: heat soak is a thing. Initially on cold boot-up, the heatsinks & heatpipes are at ambient temp. After heatsinks & heatpipes warm up (through normal usage), they don't immediately cool to ambient temp when the load goes away. So their baseline is higher and the trigger point for fans is much less stress. Add a few more CPU spikes → it's too hot to stay at the same fan RPM → fans get triggered to start up up much sooner / get triggered to ramp much more quickly.
    • Euro-Office must default to ODF to be considered "genuinely European", LibreOffice argues

      By Danielx64 · Posted

      Can LibreOffice just shut up and worry about themselves and stop comparing themselves? Do we see Microsoft complaining about euro office?

  • Recent Achievements

    • One Year In
      slackerzz earned a badge
      One Year In
    • One Year In
      highriskpaym earned a badge
      One Year In
    • One Month Later
      highriskpaym earned a badge
      One Month Later
    • Week One Done
      highriskpaym earned a badge
      Week One Done
    • Week One Done
      FBSPL earned a badge
      Week One Done

  • Popular Contributors

    1. 1
      +primortal
      501
    2. 2
      PsYcHoKiLLa
      198
    3. 3
      +Edouard
      157
    4. 4
      Steven P.
      84
    5. 5
      ATLien_0
      74
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!