HardwareHeaven.com

HardwareHeaven.com
Looking for the skin chooser?
 
 

  • Home

  • Hardware reviews

  • Articles

  • News

  • Tools

  • Gaming at HardwareHeaven

  • Forums
 

Go Back   HardwareHeaven.com > Forums > News > Other Tech News
Reload this Page

Hackers hijack Windows Update's downloader

Register FAQ Members List Social Groups Search Today's Posts Mark Forums Read


Other Tech News The latest community based technology news from across the globe. (If you aren't a community newsposter then use the "Submit News" section.)

Reply
 
Thread Tools
Old May 11, 2007, 06:18 PM   #1
DriverHeaven Extreme Member
 
Iria's Avatar
 
Join Date: Apr 2004
Posts: 7,275
Rep Power: 89
Iria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seenIria has a divinity and aura the likes we have never seen
Hackers hijack Windows Update's downloader
Source: ComputerWorld
_________
May 10, 2007 (Computerworld) -- Hackers are using the file transfer component used by Windows Update to sneak malware past firewalls, Symantec researchers said today.

The Background Intelligent Transfer Service (BITS) is used by Microsoft Corp.'s operating systems to deliver patches via Windows Update. BITS, which debuted in Windows XP and is baked into Windows Server 2003 and Windows Vista, is an asynchronous file transfer service with automatic throttling -- so downloads don't impact other network chores. It automatically resumes if the connection is broken.

"It's a very nice component, and if you consider that it supports HTTP and can be programmed via COM API, it's the perfect tool to make Windows download anything you want," said Elia Florio, a researcher with Symantec's security response team, on the group's blog. "Unfortunately, this can also include malicious files."
Iria is offline   Reply With Quote


Reply

« Previous Thread | Next Thread »
Thread Tools