Windows 7 default user account control worries experts


Essential Member
Windows 7 default user account control worries experts. Corporate IT departments should be pleased with new security measures in Windows 7, but consumers are still at risk of getting hit by malware despite changes in the User Account Control (UAC) feature designed to help people be smarter when using applications, security experts say. Probably the most talked about security change in Windows 7, scheduled for public release on Thursday, are modifications to the UAC, which was introduced in Vista. The UAC was designed to prevent unauthorizedexecution of code by displaying a pop-up warning every time a change was being made to the system, whether by the operating system or a third-party application. Vista users complained that they were bombarded with the warnings and security experts speculated that as a result, many people were just ignoring them or turning them off.

With Windows 7, users can choose how often they want to be notified and the default is set to notify only when a third-party application is making a change, as well as when a change is being made to the UAC itself. However, an attacker could use code injection and exploit several components in Windows 7 that auto-elevate to bypass UAC and get
full access to the machine, experts have warned. A Sophos white paper from September says: “Another issue with thesedefault (UAC) settings is that malware could bypass the system by injecting itself into a trusted application and running from there. Indeed, some malware has been observed spoofing UAC-style prompts to obtain user permission to operate unimpeded.â€Â￾

Tepid will like that 2nd part;)

More............Windows 7 default user account control worries experts | InSecurity Complex - CNET News


Extraordinary Member
Premium Supporter
Interesting little tidbit of information you have provided for us. I had a similar issue with UAC where spyware infected a trusted application on my PC (Adobe Reader) and bypass UAC all together. This is definitely an issue and should be resolved with some sort of patch.

This website is not affiliated, owned, or endorsed by Microsoft Corporation. It is a member of the Microsoft Partner Program.