Microsoft Yanks Fake Security Software

Microsoft said that the anti-malware tool it pushes to Windows users as part of Patch Tuesday removed fake security software from nearly a million PCs during nine days this month.

In a post to the company's malware protection center blog on Wednesday, three of Microsoft's security researchers spelled out the impact this month's edition of the Malicious Software Removal Tool (MSRT) has had on phony security software. In the period from Nov. 11 to Nov. 19, said Scott Wu, Scott Molenkamp and Hamish O'Dea, MSRT purged more than 994,000 machines of what the tool recognizes as "W32/FakeSecSen," the malware label for a broad range of bogus security program with names such as "Advanced Antivirus," "Spyware Preventer," "Ultimate Antivirus 2008" and "XPert Antivirus."

Windows users have been plagued with a flood of worthless security software in recent months as criminals have discovered that they're money-makers. According to one researcher, cyber-crooks can pull in as much as US$5 million a year by installing the rogue programs on PCs, then dunning users with made-up claims that the machine is infected. Unless consumers fork over a payment -- usually $40 to $50 -- the constant stream of pop-up messages continue, making the machine hard to use.

Read More from PC World

Kernel vulnerability found in Vista

A flaw in Vista's networking has been found that can crash the system, but no fix is expected until the next service pack

A flaw has been found in Windows Vista that could allow rootkits to be hidden or denial-of-service attacks to be executed on computers using the operating system.

The vulnerability was found by Thomas Unterleitner of Austrian security company Phion and was announced Friday. Unterleitner told ZDNet UK on Friday that Phion told Microsoft about the flaw in October but that he understood a fix would only be issued in the next Vista service pack.

According to Unterleitner's disclosure of the flaw, the issue lies in the network input/output subsystem of Vista. Certain requests sent to the iphlpapi.dll API can cause a buffer overflow that corrupts the Vista kernel memory, resulting in a blue-screen-of-death crash.

Ray Ozzie Wants to Push Microsoft Back Into Startup Mode

The keynote speaker at this past summer's TechReady conference—a gathering of 6,000 or so Microsoft engineers from around the world—was the company's chief software architect, Ray Ozzie. This was not a routine appearance. Ozzie arrived at Microsoft in 2005, and the following year he inherited the title of CSA directly from Bill Gates. He was now the microprocessor of the Microsoft machine. But he had never addressed the semiannual conclave. His explanation? He wanted to wait until he had something big to show the troops.


But there's something else: Ozzie hates speaking in public. His idea of paradise is pitching his vision around a table near a whiteboard, where he can proceed conversationally and draw on his marketplace savvy, quiet confidence, and ability to scrawl out XML code on the fly. Auditoriums are something else. "I have high anxiety—massive, huge, tremendous anxiety," he says. "It's not a natural act for me." The infrequency of his public appearances has triggered murmurs that the guy in Gates' chair is afraid to face his public, like some sort of software Greta Garbo. "Where's Ray?" Microsoft observers have been asking, as Google grabs more headlines and Apple relentlessly mocks the company's shortcomings.

Read More from Wired

How Windows 7 shames Vista on battery life

If a notebook runs Windows Vista, it will run Windows 7 and it will get better battery life, promises Gabriel Aul of the Windows Performance team. But PC manufacturers and device suppliers are also going to have to do their part to make a big difference to power consumption on new notebooks.

What Microsoft can do is make it easier for components in the system to go into low power mode when the system is idle. Some of that is 'managing' components: Windows 7 'parks' CPU cores that aren't needed, finally implements the 'slumber' feature on SATA drives, powers down USB ports and controllers more aggressively and even puts your Wi-Fi card to sleep if it's turned on but not connected to a network.

Read More from Tech Radar