Hickey was able to exploit how Microsoft Word, available to download from the Windows app store, handles and processes macros. Bottom line: If it's not in the app store, it won't run.Ĭracking Windows 10 S was a tougher task than we expected.īut one common attack point exists. If a user tries to open a forbidden app, Windows promptly tells the user that it's off-limits. That means there's no command prompt, no access to scripting tools, and no access to PowerShell, a powerful tool often used (and abused) by hackers. Not only is it limited to store-only apps, but it doesn't allow the user to run anything that isn't necessary. I would've wanted more restrictions on trying to run privileged processes instead of it being such a short process."īut Windows 10 S presents a few hurdles. "When I looked at the branding and the marketing for the new operating system, I thought they had further enhanced it. "I'm honestly surprised it was this easy," he said in a call after his attack. It took him a little over three hours to bust the operating system's various layers of security, but he got there.
We booted it up, went through the setup process, created an offline account, and installed a slew of outstanding security patches - like any other ordinary user would (hopefully) do.Īnd that's when we asked Matthew Hickey, a security researcher and co-founder of cybersecurity firm Hacker House, a simple enough question: Will ransomware install on this operating system? Last week, on its debut day, we got our hands on a new Surface Laptop, the first device of its kind to run Windows 10 S. We wanted to see if such a bold claim could hold up. That's one of several mitigations that helps to protect the operating system to known file-encrypting malware. In order to get an app approved, it has to go through rigorous testing to ensure its integrity. Microsoft touted the operating system as being less susceptible to ransomware because of its locked-down configuration - to the point where you can't run any apps outside the protective walled garden of its app store. The software giant announced the version of Windows earlier this year as the flagship student-focused operating system to ship with its newest Surface Laptop. Simple steps can make the difference between losing your online accounts or maintaining what is now a precious commodity: Your privacy.
Cyber security 101: Protect your privacy from hackers, spies, and the government
0 kommentar(er)
