Microsoft Buys Tools Vendor Winternals

Updated: Microsoft snaps up a highly-rated security and data recovery tools vendor, and adds a Windows kernel guru-who exposed Sony's rootkit debacle-to its roster of technical fellows.

Microsoft on July 18 announced that it has acquired Winternals Software, which provides security, recovery and management tools for enterprises as well as a respected collection of free Windows tools on the Sysinternals site.

The privately held, Austin-based company makes tools that assist in the recovery of damaged systems and lost data. Its new Protection Manager products provide greater control over privileges for users and applications than is standard in Windows.

Winternals founders Mark Russinovich and Bryce Cogswell have been well-known authors and commentators on Windows issues for many years. Russinovich will join Microsoft as a Technical Fellow in the Platforms and Services Division. Cogswell will join the Windows Component Platform Team as a Software Architect. The two will work from Microsoft headquarters in Redmond, Wash.

"The work [Russinovich] and Bryce have completed in system recovery and data protection illustrates the depth of thinking and skill they will bring to future versions of Windows. The addition of their deep kernel-level expertise to our existing strong talent will help provide us with the edge we need to continue to raise the quality and functionality bar for Windows on both the client and the server," said Jim Allchin, co-president of the Platforms & Services Division at Microsoft, in a statement.

Russinovich told eWEEK.com that the fate of specific Winternals products is still being explored, but he said that Microsoft is definitely interested in a number of products and technologies Winternals sells. The Winternals Administrators Pack, a suite of tools for recovery and repair of damaged and otherwise inaccessible systems, is most likely to live on as a separate product, Russinovich said. Other products and technologies are likely to be integrated into other Microsoft offerings, he said.

For the time being, the free Sysinternals tools and site will remain online. Microsoft is investigating whether and how to continue development and maintenance of the tools, Russinovich said. It may integrate the site into a different Microsoft community site, such as Technet.

Russinovich late last year discovered the presence of a rootkit in digital rights management software installed on Sony BMG music CDs while testing a new version of the Sysinternals RootkitRevealer tool.

Editors Note: This story was updated to include comments from Russinovich.

28571.gif

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.