Microsoft warns against Windows XP security update hack
Microsoft warns against Windows XP security update hack
Posted: 28 May 2014
Microsoft has warned against using a hack that allows Windows XP to continue to receive important security updates after Microsoft withdrew support in April.
The hack tricks Microsoft’s update servers into applying security patches to Microsoft’s 13-year-old Windows XP. A small change within Windows XP makes it appear as other versions of Windows that are still supported until 2019.
Microsoft warned that Windows XP customers may face problems if they install the updates. “The security updates that could be installed are intended for Windows Embedded and Windows Server 2003 customers and do not fully protect Windows XP customers,” Microsoft said in a statement released to ZDnet. “Windows XP customers also run a significant risk of functionality issues with their machines if they install these updates, as they are not tested against Windows XP.”
I am at no surprise at the warning not to apply anything new regarding any existing XP installs presently in use since MS is now finished with all support. Anything found now in regards to updates could easily be some form of malware!
Computer Type: PC/Desktop System Manufacturer/Model Number: Custom builds = 2 OS: W7 Ultimate x64/W10 Pro x64/W11 Pro Triple Boot - Main PC W7 Remote PC Micro ATX W7 Pro x64/W11 Pro CPU: AMD Phenom II X4 975 Deneb 3.6ghz - 965 2nd remote pc Motherboard: Gigabyte GA-790XTA-UD4-Gigabyte GA-880GM-D2H remote pc Memory: Kingston Hyper X DDR3 1600 1.5v 16gb - Hyper X Fury 8gb 2nd Graphics Card: MSI HD Radeon 5750 1gb - MSI HD Radeon 6450 on mini tower Sound Card: Creative Labs X-Fi Xtreme Audio P - Realtek onooard 2nd case Monitor(s) Displays: ASUS VW199T-P 19" HP 2082a Main-HP 2082a 20" remote pc Screen Resolution: Asus 1440x900 - HP 1600x900 Keyboard: AZIO L70 Backlit Letters Gaming - ONN Cordless/USB Mouse: MSI DS200 Programmable, Logitech Cordless PSU: Corsair 750TX - primary / Corsair CX600 - second Case: Antec 900-2 - SSD compatible / NZXT Vulcan mini tower Cooling: Zalman CNPS9900A Hard Drives: WD Black 1TB HD per OS W7, W10, and pending W11 presently on 500gb OS Drive - Pending Triple 1TB HDs for Spanned Storage/backup volume
Single 2TB external USB enclosure, single 1TB System 7 Host/Boot drive, Pending 8TB external HD for system image b Internet Speed: 30mbps upgrade - primary hard wired - mini tower usb WiFi Browser: Cyberfox, WaterFox 64bit FF variants, FireFox x64, Pale Moon Antivirus: GFI VIPRE Internet Security 2014 on W7 2016 beta on W10, Other Info: Accomdata fan cooled usb 2.0 PIDE/Sata II, III external enclosure.
Sambient usb/eSata PATA/Sata II, III external enclosure.
Computer Type: PC/Desktop System Manufacturer/Model Number: CUSTOM ASSEMBLY OS: W7 Pro x64/W11 Pro CPU: AMD Deneb 3.6ghz - 965 Motherboard: Gigabyte GA-880GM-D2H remote pc Memory: Kingston Hyper X Fury 8gb Graphics Card: MSI HD Radeon 6450 DVI Output Sound Card: Realtek onooard Creative or Other separate PENDING Monitor(s) Displays: VIZIO 32" LCD TV Separate LCD Pending Screen Resolution: 1600x1080 Keyboard: ONN Cordless/USB Logitech Cordless Mouse: ONN USB/Cordless - Logitech Cordless PSU: Corsair 600W - THERMALTAKE 600W spare case Case: NZXT Vulcan mini tower Cooling: Twin 120mm Top Fans - 240mm Side Cover Hard Drives: WD 500GB OS Host/Boot WD Green 1TB Storage/Backup Internet Speed: DSL 5G Browser: MS Edge, FireFox, WaterFox x64, FireFox Nightly Other Info: OS Testing-Remote Access to Main TeamViewer
I am at no surprise at the warning not to apply anything new regarding any existing XP installs presently in use since MS is now finished with all support. Anything found now in regards to updates could easily be some form of malware!
That's not how this works. It tricks Windows Updates into thinking the computer is running Windows Server 2003 or Windows Embedded, both of which are built on the same base kernel as Windows XP, but have different features and such. It's still not possible to install malware via windows updates without being previously infected.
Microsoft warns against Windows XP security update hack
This does not surprise me at all. By their very nature Windows updates are very OS specific. While closely related, XP Embedded and Server 2003 are not the same as XP. When an OS misrepresents itself to Windows Update you can expect that things will not work as designed. I expect that now that Microsoft knows about this hack they will modify Windows Update to prevent this from working.
I expect that now that Microsoft knows about this hack they will modify Windows Update to prevent this from working.
Of course it would enhance their reputation for being arrogant "scumbags" too.
Just like when MS discovered that people were eliminating Metro (from the W8 Previews) in favour of the traditional Start menu.
Instead of taking the hint, they went "all in" and ripped the Start menu code out.
It was a "great call" because it has lead to W8 becoming a runaway success ...
Computer Type: PC/Desktop System Manufacturer/Model Number: Custom Built OS: Windows 10 Pro CPU: AMD Ryzen 5 2400G Processor with Radeon RX Vega 11 Graphics Motherboard: ASRock X470 Master SLI/AC AM4 AMD Promontory X470 SATA 6Gb/s Memory: G.SKILL Ripjaws V Series 16GB (2 x 8GB) 288-Pin DDR4 SDRAM D Graphics Card: 2047MB NVIDIA GeForce GTX 1060 6GB (EVGA) Sound Card: Motherboard Built in Monitor(s) Displays: Acer R240HY bidx 23.8-Inch IPS HDMI DVI VGA (1920 x 1080) Wi Screen Resolution: 1920 x 1080 Keyboard: Wired Dell keyboard Mouse: Wireless Logitech mouse PSU: CORSAIR TX Series TX650M 650W 80+ Gold Modular Power Supply Case: CORSAIR CARBIDE SPEC-02 Mid-Tower Gaming Case, Red LED Fan Cooling: 220mm, two 120mm, and four 60mm fans Hard Drives: 1TB Sandisk SSD PLUS (Main drive)
500 GB Seagate 7200 RPM (Games)
500 GB Western Digital 7200 RPM (Virtual Machines) Internet Speed: 250mb down, 30mb up Browser: Chrome-ish x64 Antivirus: Panda Cloud Antivirus Other Info: Your awesome for reading this.
These update will sneak past any firewall no matter how 'maxxed' it is. Very strange, May be the work of many, Not necessarily Microsoft themselves. Like they would admit that there servers have been hacked tho
So today, I decided to patch up my Windows XP netbook and came across Microsoft Security Essentials in the Software section. I thought Windows XP End of Support (April 8) was the day that MS would stop providing downloads for MSE, so I wondered if it was just an installer, so I checked the update...
Hi forum,
I'm having some problem about a week ago with Microsoft security essentials bugging out on me and not opening or updating. Basically the message I got on opening MSE was windows cannot access specified path or file. You may not have the appropriate permission to access the file....