Major Windows Security Compromise going virtually unnoticed?

We here at the UW, and many other major research universities I know of, have been spending massive amounts of time and energy this week dealing with the latest exploits of security holes in Microsoft’s Windows operating systems. There have been many computers compromised, and many many more that are still vulnerable. We have been … Continue reading “Major Windows Security Compromise going virtually unnoticed?”

We here at the UW, and many other major research universities I know of, have been spending massive amounts of time and energy this week dealing with the latest exploits of security holes in Microsoft’s Windows operating systems. There have been many computers compromised, and many many more that are still vulnerable. We have been forced to block access to some services at the border of the insititution, breaking access to popular services such as Microsoft Exchange email and calendaring from off campus.

Yet this event has gone virtually unnoticed in the popular press, which has in the past made much bigger deals about much smaller events. Ironically, this is one instance where the press could really help, because the best solution to this problem is for individual computer owners to keep current with the updates and patches coming from Microsoft. If everybody did keep up to date, the magnitude of security problems would be much smaller.

My colleague Dave Dittrich has pointed out that there is finally an AP story on this vulnerability that shows up on the CNN web site.

5 thoughts on “Major Windows Security Compromise going virtually unnoticed?”

  1. While virus fighting is nothing new, it seems that the required responses are more systemic and swift than ever before. Perhaps this is because the damages are just data loss anymore, but the potential sharing of our most confidential data. Good ethics require that we keep private data private, of course, but the changing legal environment regarding privacy of data is a factor now as well. Your comment that this is a much bigger deal is on target, and I think that the consequences are a much bigger deal, too.

    Like

  2. I think the reason is that “MS OS” or “IE” is a synonym for “OS or browser with security considered after design and QA”. I think the world has become desensitized to the fact that MS has crap security.

    Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s