Jump to content

Microsoft contains Flame with Windows Update revamp


Recommended Posts



Microsoft contains Flame with Windows Update revamp

Changes are designed to prevent hijacking of the system used to deliver updates.

by Dan Goodin - Jun 8, 2012 9:20 pm UTC

Following a groundbreaking cryptographic attack that hijacked the platform Microsoft uses to deliver updates to millions of large customers, the company has issued changes designed to prevent similar exploits from working again.

The company's Windows Server Update Services, which businesses and organizations use to deliver patches to large fleets of PCs, will no longer work through network proxies that use SSL deep packet content inspection, Microsoft representatives said in an advisory published Friday afternoon. Such proxies act as man-in-the-middle devices that can peek inside encrypted traffic as it travels from a local network onto the Internet. Enterprises that have inspection servers in place will have to create exception rules so all Windows Update traffic is bypassed.

The changes are designed to blunt the kind of attacks carried out by Flame, the sophisticated espionage software that infected PCs in Iran and other Middle Eastern countries. As revealed earlier this week, the malware hijacked the Windows Update process to spread from machine to machine within a local network. By hacking a Microsoft licensing service to sign malware stored on one infected computer, Flame could disguise the malicious payload as a Windows update that should be installed by other computers on the same network.

Microsoft has also provided cryptographic hashes that will accompany all future Windows Updates. It is signed with a private key that only Microsoft possesses, making it infeasible for attackers to include the same certification.

Additional Flame Articles:

SOURCE: http://arstechnica.c...-contains-flame


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.