A researcher at Sophos reports putting Windows 7's User Account Control feature to the test and finding the technology failed to block numerous pieces of malware. Microsoft, however, stresses that UAC is only one part of Windows 7's security.A researcher at Sophos called the UAC feature in Windows 7 ineffective after numerous pieces of malware snuck by the technology in a test.
Microsoft first introduced User Account Control in Windows Vista to improve security. After some users complained the number of alerts it generated were annoying, the company pledged to cut down on the number of prompts in Windows 7. The move however has raised concerns in the security community, and Sophos Senior Security Adviser Chester Wisniewski said his test proves Microsoft took it a step too far.
Wisniewski wrote on his blog Nov. 3 that seven of the 10 pieces of malware he tested ran with the default UAC enabled in Windows 7 without generating any prompts. As part of the test, no antivirus software was installed on the system. Two of the malware samples did not work in Windows 7; of the remaining eight, only one generated a prompt, and that one still would have been installed had the user clicked yes, Wisniewski told eWEEK.
When asked about the test, Microsoft officials pointed to the other features of Windows 7 that have improved security.
"Windows 7 is built upon the security platform of Windows Vista, which included a defense-in-depth approach to help protect customers from malware; this includes features like Security Development Lifecycle (SDL), User Account Control (UAC), Kernel Patch Protection, Windows Service Hardening, Address Space Layout Randomization (ASLR) and Data Execution Prevention (DEP)," a spokesperson said.
"Windows 7 retains all of the development processes, including going through the Security Development Lifecycle, and technologies that made Windows Vista the most secure Windows operating system ever released," the spokesperson added. "Coupled with Internet Explorer 8—which includes added malware protection with its SmartScreen Filter—and Microsoft Security Essentials, Windows 7 provides flexible security protection against malware and intrusions."
Still, Wisniewski noted on his blog that UAC's failure to truly block more than one sample reinforced his warning prior to the Windows 7 launch that the feature's default configuration does not ensure protection from malware.
"Lesson learned? You still need to run antivirus [protection] on Windows 7," he blogged.
| | Reader Comments: Windows 7 UAC Ineffective Security Solution for Malware, Sophos Says | | >>> Post your comment now!
| | Here here!He has a financial interest, but also need more hits on his blog, so now he got them.
Next someone from a fire extinguisher company will set a... Posted At: 11-10-09
By: Dimitri of Course | | | | | | A user comment on this articleWas the test performed under the recommended standard user account or on the less secure administrator account. In my work I have seen Vista with a... Posted At: 11-07-09
By: Anonymous | | | | | | A user comment on this articleThe main purpose of the UAC is not to block malware, but to shift responsibility for malware infiltration away from Microsoft to the end user. The... Posted At: 11-06-09
By: Anonymous | | | | | | A user comment on this articleThe person cited in the article has a financial interest in generating FUD among Windows 7 users to get more people to purchase his product instead... Posted At: 11-05-09
By: Fred Morrison | | | | | | A user comment on this article"UAC deal with APPLICATIONS, not malwareIdiots"
I bet you don't understand the definition of application and malware and the link between each... Posted At: 11-05-09
By: Guard-A | | | | | | UACObviously, Sophos, Julie nor thousands of other 'literates' understand the mission of UAC. Better read the White Paper/documentation from MSFT before... Posted At: 11-04-09
By: Dave | | | | | | A user comment on this articleYou mean Sophos , the British anti-virus with its pathetic user interface ?
Sophos produces many false-positive and its comments on Win& UAC is... Posted At: 11-04-09
By: Carol | | | | | | >>> Post your comment now! | | | | | |
|
 |
(Sponsor)
(Sponsor)
(Sponsor)
Security Hardware & IT Security Software 
