Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Malware Analysis
Random Musing
Message
<blockquote data-quote="Andy Ful" data-source="post: 942067" data-attributes="member: 32260"><p>The funny thing about Windows is that one can say contradictory sentences about it and these sentences can be true in some way. For example:</p><ol> <li data-xf-list-type="ol">Windows is not especially secure.</li> <li data-xf-list-type="ol">Windows is pretty much secure.</li> </ol><p>There are some arguments that could support point 1.</p><ul> <li data-xf-list-type="ul">Windows and applications are mostly written in programming languages that are vulnerable to memory corruption. So there are countless possibilities for exploits.</li> <li data-xf-list-type="ul">The default admin account is vulnerable by design to privilege escalation.</li> <li data-xf-list-type="ul">Windows was developed for a long time for the convenience of Administrators. That is why it is hard to protect it against the attacks that use Administrators' actions (like was noticed in this thread).</li> <li data-xf-list-type="ul">Windows is the most popular OS and it is profitable to attack it.</li> <li data-xf-list-type="ul">Windows uses many legacy features that are vulnerable by design. It is like a ship built from several shipwrecks and by several constructors.</li> <li data-xf-list-type="ul">The new Windows versions always silently introduce new vulnerabilities.</li> <li data-xf-list-type="ul">etc.</li> </ul><p>There are some arguments that could support point 2.</p><ul> <li data-xf-list-type="ul">Windows 10 is not an easy target when it is well updated. It is similar to a tough boxer who can take many punches without a knockout.</li> <li data-xf-list-type="ul">Windows is more secure than our life - many daily activities are not as secure (swimming, walking down the stairs, crossing the road, driving a car, smoking cigarettes, using a debit card, using closed doors to prevent theft, etc.).</li> <li data-xf-list-type="ul">Microsoft and some other vendors actively participate in a Bug Bounty Program (they pay hackers and researchers for finding vulnerabilities). These vulnerabilities are usually closed before using them in the wild (like in the famous WannaCry attacks).</li> <li data-xf-list-type="ul">There are many security software for Windows that can make it much more secure. The problem is that people do not want to use Windows in a limited way of Linux.</li> <li data-xf-list-type="ul">One can be much more secure when using above-average security. You do not have to be faster than the angry bear, but only faster than the guy running behind you.</li> <li data-xf-list-type="ul">Many computer infections are related to social engineering tricks and not to Windows security flaws.</li> <li data-xf-list-type="ul">Many computer infections follow from wishful thinking, like for example "I know that this file is shady, but I am eager to run it. Computer security will probably save me anyway".</li> </ul><p>So, many people can probably have a very different view of Windows security (including Windows Firewall, Defender, etc.). It would be hard to be sure who is right and who is wrong about it.<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /><img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite130" alt="(y)" title="Thumbs up (y)" loading="lazy" data-shortname="(y)" /></p><p></p><p>Sorry if my post is slightly off-topic.</p></blockquote><p></p>
[QUOTE="Andy Ful, post: 942067, member: 32260"] The funny thing about Windows is that one can say contradictory sentences about it and these sentences can be true in some way. For example: [LIST=1] [*]Windows is not especially secure. [*]Windows is pretty much secure. [/LIST] There are some arguments that could support point 1. [LIST] [*]Windows and applications are mostly written in programming languages that are vulnerable to memory corruption. So there are countless possibilities for exploits. [*]The default admin account is vulnerable by design to privilege escalation. [*]Windows was developed for a long time for the convenience of Administrators. That is why it is hard to protect it against the attacks that use Administrators' actions (like was noticed in this thread). [*]Windows is the most popular OS and it is profitable to attack it. [*]Windows uses many legacy features that are vulnerable by design. It is like a ship built from several shipwrecks and by several constructors. [*]The new Windows versions always silently introduce new vulnerabilities. [*]etc. [/LIST] There are some arguments that could support point 2. [LIST] [*]Windows 10 is not an easy target when it is well updated. It is similar to a tough boxer who can take many punches without a knockout. [*]Windows is more secure than our life - many daily activities are not as secure (swimming, walking down the stairs, crossing the road, driving a car, smoking cigarettes, using a debit card, using closed doors to prevent theft, etc.). [*]Microsoft and some other vendors actively participate in a Bug Bounty Program (they pay hackers and researchers for finding vulnerabilities). These vulnerabilities are usually closed before using them in the wild (like in the famous WannaCry attacks). [*]There are many security software for Windows that can make it much more secure. The problem is that people do not want to use Windows in a limited way of Linux. [*]One can be much more secure when using above-average security. You do not have to be faster than the angry bear, but only faster than the guy running behind you. [*]Many computer infections are related to social engineering tricks and not to Windows security flaws. [*]Many computer infections follow from wishful thinking, like for example "I know that this file is shady, but I am eager to run it. Computer security will probably save me anyway". [/LIST] So, many people can probably have a very different view of Windows security (including Windows Firewall, Defender, etc.). It would be hard to be sure who is right and who is wrong about it.:)(y) Sorry if my post is slightly off-topic. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
