Portions of the security community have been abuzz lately with talk of a
new rootkit technology dubbed “Blue Pill.”
The name is an obvious Matrix reference, especially given that the same
researcher named an earlier rootkit detector that she wrote “Red Pill.” The
latest buzz started with an
on her work.
My last column explained why Microsoft needs the free Windows Live Safety Center to keep antitrust lawyers off its butt.
A few days ago I tested Windows Live Safety Center on a real zero-day Excel exploit. Does it work? Or is Microsoft blowing smoke? Frankly, I was amazed.
I can’t remember a time when the newsletter has received more heartfelt tips
from readers than the controversy of the last two months over Microsoft’s
automatic downloading of Windows Genuine Advantage, which phoned home every 24
More than 300 well-thought-out comments streamed in. We’ll never be able to respond in full to everyone individually, but we hope
this section will serve to recognize everyone’s help while giving you the useful info you need.
If I were a gambler, there are two July 11 announcements (MS06-035 and MS06-036)
that I’d bet will bite people who fail to patch, generating headlines that you’ll
start seeing soon.
This month is also our last chance to say goodbye to Windows 98, 98SE, and Me. As of July 11, these Windows versions are no longer supported
With all of the Microsoft Office
vulnerabilities that have been popping up lately, I almost missed the discovery
of more holes in my favorite insecure browser.
With that in mind, let’s jump right in and get started. It looks like Internet
Explorer needs another good once-over.
In my last issue, I reported that Microsoft’s in-house Windows Update routine
is now likely to download marketing gimmicks such as Windows Genuine Advantage to your
PC. I advised all Windows users, other than novices, to turn off Automatic