New code makes Windows 7 vulnerable to hackers

Hackers will target new features in Windows 7 that are not present in Vista or XP, according to security researchers.

hacker

Windows 7 will open up more opportunities for malware authors as they target flaws from the new nature of the operating system.

This was one of the predictions of security company Websense, which expected criminals to target new code in Windows 7 that was not present in Vista or XP.

In fact, Microsoft released patches for Windows 7 before it was even released.

In an interview with IT PRO, Carl Leonard of Websense said that any new software brought opportunities to malware authors, who would target version specific vulnerabilities in the code.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"There might be features in version 7 that don't exist on Vista or XP," he said. "There could be new user interface traits that malware authors may like to take a look at."

"We're expecting exploit code to target some of the code in Windows 7. Whenever you introduce new code there's always the likelihood of malware authors capitalising on it as much as they can."

Microsoft also adjusted the way that User Access Control worked, avoiding the way Vista allowed pop-ups every time a change was made to the system, which users found frustrating.

There are now four levels of User Access Control, and users who did not understand the reasons for deploying them could find themselves vulnerable if these were disabled.

Of course, Windows 7 could also be vulnerable to browser and plugin attacks, which no security control in Windows 7 could do anything about.

Leonard said: "As new versions of very popular software are made available, malware authors focus their attentions on those in order to push out code that are essentially zero-day attacks."

Featured Resources

What you need to know about migrating to SAP S/4HANA

Factors to assess how and when to begin migration

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

Testing for compliance just became easier

How you can use technology to ensure compliance in your organisation

Download now

Best practices for implementing security awareness training

How to develop a security awareness programme that will actually change behaviour

Download now
Advertisement

Recommended

Visit/microsoft-windows/33280/windows-7-security-patches-officially-coming-to-an-end
Microsoft Windows

Windows 7 security patches officially coming to an end

21 Mar 2019
Visit/malware/33080/hackers-abuse-linkedin-dms-to-plant-malware
malware

Hackers abuse LinkedIn DMs to plant malware

25 Feb 2019
Visit/operating-systems/microsoft-windows/354563/the-it-pro-podcast-farewell-windows-7
Microsoft Windows

The IT Pro Podcast: Farewell Windows 7

17 Jan 2020
Visit/operating-systems/microsoft-windows/354455/windows-7-ends-what-do-you-do-next
Microsoft Windows

Windows 7 ends: what do you do next?

4 Jan 2020

Most Popular

Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/policy-legislation/data-governance/354496/brexit-security-talks-under-threat-after-uk-accused-of
data governance

Brexit security talks under threat after UK accused of illegally copying Schengen data

10 Jan 2020
Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/hardware/laptops/354533/dell-xps-13-new-9300-hands-on-review-chasing-perfection
Laptops

Dell XPS 13 (New 9300) hands-on review: Chasing perfection

14 Jan 2020