Windows Explorer, A Security Vulnerability in Windows 7 RC
Now that Microsoft has been kind enough to roll out Windows 7 Release Candidate (RC) and make it available for download to the general public (this is the last free version of Windows 7, so get it while it’s hot, because Windows 7 RTM will not come free of charge), let’s take a look at Windows Explorer and see if it is safer in this version of the Windows-based operating system.
“In Windows NT, 2000, XP and Vista, Explorer used to hide extensions for known file types. And virus writers used this "feature" to make people mistake executables for stuff such as document files. The trick was to rename VIRUS.EXE to VIRUS.TXT.EXE or VIRUS.JPG.EXE, and Windows would hide the .EXE part of the filename. Additionally, virus writers would change the icon inside the executable to look like the icon of a text file or an image, and everybody would be fooled,” explains F-Secure, company that specializes in providing security software solutions.
According to F-Secure, nothing has changed in Windows 7 RC, in regard to how Windows Explorer displays files. As you can see from the images below (courtesy of F-Secure, of course), the file “horrible_malware.txt.exe” is displayed as a .txt file (that’s Notepad for the less technically oriented).
On the upside, Windows 7 RC comes with one security setting that should prevent the spread of malware such as the Conficker worm . The setting I am talking about is related to how AutoRun is enabled by default in AutoPlay. A detailed article on the subject is available here, but if you don’t want to read it, here is what’s changed: AutoPlay will launch when you insert a CD/DVD, but not when you plug in an USB device. This change has been implemented in Windows 7 RC and will be a feature in the upcoming Windows 7 RTM; its implementation was needed in order to address the need to stop malware that was abusing AutoRun to propagate.
Tags: F-Secure, Microsoft, Windows 7, Windows Explorer
“In Windows NT, 2000, XP and Vista, Explorer used to hide extensions for known file types. And virus writers used this "feature" to make people mistake executables for stuff such as document files. The trick was to rename VIRUS.EXE to VIRUS.TXT.EXE or VIRUS.JPG.EXE, and Windows would hide the .EXE part of the filename. Additionally, virus writers would change the icon inside the executable to look like the icon of a text file or an image, and everybody would be fooled,” explains F-Secure, company that specializes in providing security software solutions.
Advertising
According to F-Secure, nothing has changed in Windows 7 RC, in regard to how Windows Explorer displays files. As you can see from the images below (courtesy of F-Secure, of course), the file “horrible_malware.txt.exe” is displayed as a .txt file (that’s Notepad for the less technically oriented).
On the upside, Windows 7 RC comes with one security setting that should prevent the spread of malware such as the Conficker worm . The setting I am talking about is related to how AutoRun is enabled by default in AutoPlay. A detailed article on the subject is available here, but if you don’t want to read it, here is what’s changed: AutoPlay will launch when you insert a CD/DVD, but not when you plug in an USB device. This change has been implemented in Windows 7 RC and will be a feature in the upcoming Windows 7 RTM; its implementation was needed in order to address the need to stop malware that was abusing AutoRun to propagate.
Tags: F-Secure, Microsoft, Windows 7, Windows Explorer
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 10 Feb 2012
With the release of Wolfram|Alpha Pro, the team behind the popular computational knowledge engine took a very big step forward
By George Norman on 10 Feb 2012
Microsoft has just announced that this February, as part of the Patch Tuesday program, it will roll out a grand total of 9 security bulletins to all customers all over the world.Related News
By George Norman on 27 Oct 2011
It is true that the mouse is one of the most used peripheral and it is just as true that if you want to get things done and get them done fast, using keyboard shortcuts is a lot more efficient than clicking.
By George Norman on 14 Nov 2011
Artists of all ages can now enjoy a digital palette and infinite canvas on the internet. Redmond-based software giant Microsoft has recently unveiled a new project called “The Art of Touch.” Inspired by the Microsoft Touch Mouse family of products, the project allows internet users to create, save and share digital art
By George Norman on 26 Oct 2011
I know it’s been a long time and I can understand if you forgot about it: the Windows XP operating system reached general availability on the 25th of October 2001. That means that Windows XP, as of this week, is ten years old.
By George Norman on 23 Nov 2011
With the huge success of Windows 7, all eyes are on the next big version of the Microsoft-developed operating system, Windows 8. We already know that the operating system (OS) will come with a fresh Advertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Windows Explorer, A Security Vulnerability in Windows 7 RC
HTML Linking Code
HTML Linking Code