Is my surprised face:
French security researcher firm Vupen claim to have already developed a reliable windows 8 exploit, just days after the launch of latest edition of Microsoft's flagship operating system. The sometimes controversial firm, which sells the exploits it develops to Western government agencies and deliberately avoids sharing …
Is my surprised face:
No doubt that the French response will be to introduce a 75% fail tax on this product.
Are they a legitimate security firm? There's something crooked about finding exploits and then selling the details off to third parties rather than providing them to the software developer.
"Not as odious as MS making money from an intrinsically insecure operating system"
Now, now - you'll have RICHTO explaining that W8 is the most secure operating system in this quadrant of the galaxy.
I provided bugs to Microsoft, I sent them a Windows disc and said it was chocked full of them.
The problem that MS has, there are too many variants of Windows with different feature sets. Dump 32-bit, make one 64-bit version and call it a day. You don't need a "home", a "business" or an "ultimate" version either. Make one and call it a day. Development is less, QA, patching, etc is all all less resource intensive. Also they need to quit re-coding everything between major releases. Look at UNIX, BSD, Linus, etc. they don't re-do every package for every major release. If it is not broken, don't fix it. Microsoft tries to fix what they haven't broken.... yet.
The big problem is that MS lost track of their OS a while ago. Through the process you described there is no person in the whole wide world who can untangle it. So they are stuck with that mess and have no option but to just shoulder on. It'll get worse as they go along and try to take out aero and win32. That will give them a bucket full of regress bugs us endusers can beta test for them. After you paid the full price for the OS ofcourse.
the subtle thing would be to turn up at a government office, demonstrate the trick and say "how can I be of assistance?"
the subtle thing would be to turn up at a government office, demonstrate the trick and say "how can I be of assistance?" .... Anonymous Coward Posted Thursday 1st November 2012 18:07 GMT
Or.... do something simiilar to what dodgy, intellectually bankrupt governments do whenever they have to buy their own toxic gilts with magic QE funds because foreign markets don't want anything to do with failed policies .... set up a plausibly deniable clandestine and covert network with MIcrosoft to attack its own vulnerabilities, and make fortunes for the company in the process, to provide future security facilities to ensure vulnerabilities are not found and exploited remotely by rogue independent and rennaissant renegade parties
And what government office has migrated to Windows 8? Most are still on XP
Windows 8 is based on the same failed technologies as all the previous versions. Once again, they've just polished the same old turd - more shiny nonsense on top of the old brokenware.
What do they expect?
Of course it's already compromised!
Most installed desktop/server OS in the world?
I know I should feed the trolls, but really...
We can tell you hate Windows 8 with a passion because you use *any* bullshit story possible to have a go at it...
It's getting old though, very quickly. Get over it.
Blah blah blah. More moronic uninformed commenttard crap.
2 different frontends perhaps, but it's still the same underneath and the metro version runs in enhanced protected mode which makes it even more secure.
Nice try though.
Fail, Only one IE backend but to gui's /facepalm
Two IE frontends each one with its own set of bookmarks no less.
I, too, have developed a 0-day exploit against Windows 8 (and Server 2012).
I, too, will not be offering details to anyone who tries to verify my claim.
"And this is why I use Firefox...."
Professional security researchers do not speak like this. This so called security firm are obviously a bunch of children attempting to pose as adults.
or a bunch of adults acting like children...
Since the professional security researchers are French, it is entirely possible that they outsourced the task of tweeting to someone who knows more about twatspeak than English.
I thought English was twatspeak? wtf?