Beware, malware. The Windows AutoRun updates for Vista and XP SP3 that Microsoft released in February have so far proven successful in thwarting your file corrupting ways. Although Windows 7 was updated to disable AutoPlay within AutoRun for USB drives — freezing the ability for a virus to exploit it — the aforementioned versions had remained vulnerable up until right after January. Fast-forward to the period between February and May of this year, and the updates have reduced the number of incidents by 1.3 million compared to the three months prior for the supported Vista and XP builds. Amazingly, when stacked against May of last year, there was also a 68 percent decline in the amount of incidents reported across all builds of Windows using Microsoft’s Malicious Software Remove Tool. There’s another fancy graph after the break to help illustrate, and you’ll find two more along with a full breakdown by hitting the source link down under.
Microsoft just earned itself a boatload of geek-cred and made Apple and Sony look pretty bad in the process. We knew the Windows Phone team was playing nice with the jailbreakers from ChevronWP7, but we didn’t realize just how cozy the two were going to get. Today the devs announced that ChevronWP7 Labs would open up soon, with the approval of Redmond, allowing users to load homebrew apps on their handsets. Unlike tools from the iPhone Dev Team, this service won’t be free. Instead, customers will have to cough up a small fee via PayPal — but we’re sure many of you are more than willing to pay a reasonable price to avoid the sort of cat and mouse game Apple has been playing with hackers since 2007.
Look out, world — Microsoft just crossed another hurdle in its bid to swallow Skype whole. Earlier today, US antitrust approval was given on Microsoft’s largest (proposed) acquisition, clearing the path for all sorts of Windows / Xbox / WP7-related VoIP shenanigans. While many are still questioning the logic here, Skype continually brought around 145 million users to the table per month even while it constantly bled money. Whatever the case, it looks as if the accountants in Redmond just got FTC permission to move $8.5b from one column to the next, and with an initial investment like that, we’re hoping for a number of updated features as the attack plan unfolds.
This article was written on April 02, 2007 by CyberNet.
Microsoft will be releasing a critical security update tomorrow (via Windows Update) to patch what is being referred to as the “Windows animated cursor” vulnerability. It almost sounds hard to believe that an exploit can occur from something as simple as a mouse cursor, but as CNet points out it is definitely possible:
There’s a new Microsoft Windows vulnerability caused by an unspecified error in the way Windows 2000, XP, and Vista handles animated cursors. Animated cursors allow a mouse pointer to appear animated on a Web site. The feature is often designated by the .ani suffix, but attacks for this vulnerability are not constrained by this file type so simply blocking .ani files won’t necessarily protect a PC. Successful exploitation can result in memory corruption when processing cursors, animated cursors, and icons.
Most of you probably won’t have to worry though, because a large percentage of our visitors are using either Opera or Firefox as their browser. This vulnerability only applies to Internet Explorer 6 or 7 on Windows 2000, XP, 2003, and Vista. However, if you’re using IE 7 on Vista and you have the User Account Control (UAC) enabled then you are also fine. When you have UAC enabled it will force IE 7 to run in “protected mode” which is helpful at preventing unwanted attacks such as this one.
This update was previously scheduled for release as part of the April monthly release on April 10, 2007. Due to the increased risk to customers from these latest attacks, we were able to expedite our testing to ensure an update is ready for broad distribution sooner than April 10.
While it is unfortunate that this vulnerability even exists, I guess it does demonstrate two things:
Internet Explorer should not be used by casual computer users because they are the ones who are most likely to get taken advantage of.
The User Account Control in Vista may actually be more beneficial than I thought. I used to keep it disabled, but as of about two-weeks ago I re-enabled it and I’m actually surprised that it hasn’t annoyed me. I’m confident that I can recognize a suspicious website or file when I see one, but the attacks are getting so advanced these days that I don’t want to take any chances.
This article was written on February 20, 2008 by CyberNet.
One of the things that I was pretty disappointed with at CES this year was Microsoft’s “future” segment. It’s where they often give us a glimpse of what to expect 10 or 15 years from now, and when watching it I normally find myself giggling like a little kid in a candy store. This year they really didn’t put much thought into it.
In the comments yesterday Bill pointed out a video that is brought to you by the same people that created the “what’s it like to work at Microsoft” video, who happen to be Microsoft employees themselves. The video I’m about to show you is more like what I expected to see come out of Gates’ CES presentation this year. It focuses on how everything will be seamlessly integrated in the future, and really sparked some excitement in the technology side of my brain (which occupies 95% of my brain).
Watch the three-minute video and let me know what you think:
Microsoft opened up the Kinect Software Developement Kit to coders everywhere Thursday. (Photo: Jon Snyder/Wired.com)
Microsoft on Thursday released a software development kit for its Kinect gaming system, and hackers are already testing the limits of what the device can do.
After the release of the SDK, Microsoft invited a group of developers to its headquarters in Redmond, Washington to see what kinds of applications they could come up with for the device. Dubbed “Code Camp,” the developers were given 24 hours to create programs that would interact with the Xbox-based motion-sensing device.
Initially released in November of 2010, the Kinect replaces the traditional Xbox controller with the movements of your actual hands, using a camera that translates motion into controlling the videogame you’re playing. The device was a hit for the company; Kinect sales surpassed10 million units in March.
But the Kinect’s release proved to be bigger than just a hands-free videogame controller. The device’s motion controller opens doors to application across all sorts of fields, from major advances in robotics to medical research. Until now, sensors and cameras used for capturing the motion of 3-D objects were either cumbersome and expensive, or cheap and unreliable. At $150, the lightweight, compact Kinect is capable of capturing real-time 3-D motion at the perfect price.
Initial Kinect application ideas ranged from the bland — such as a human-controlled version of Atari’s Pong — to the nerdy — like the augmented-reality program that drops a lightsaber in your left hand.
The coolest by far, however, was the “Quadracopter” hack, which lets you move a four-propeller-powered helicopter through the air with a mere flick of your wrists, seen below:
Coders can access the Kinect’s video, microphone and depth sensors to build on the low-level data streams taken in by the hardware. They can also access some of the more high-level capabilities like noise and echo cancellation, and skeletal tracking makes gesture-navigation in applications possible.
For major platforms, launching a software development kit is a big deal. When launching a new piece of hardware like the Kinect, building a robust ecosystem of applications is important to attract potential buyers. In order for that to happen, hardware companies need to court the developer community, enticing coders to build different programs for the new device. Recently, Apple has seen the most success in this realm, as its iOS platform contains over 500,000 applications available for download in its App Store. Similarly, Android is catching up with over 200,000 in the Android Market.
What’s difficult to imagine, however, is how Microsoft can build its developer base of Kinect coders when there seems to be little financial incentive for them to join. As Make points out, Microsoft’s developer agreement terms essentially state “you can’t start a business, make money, sell services or consulting” using the SDK.
“Under the terms of the license for this SDK Beta, you cannot deploy applications created with the SDK Beta for use in your business operations,” according to the noncommercial-use terms Microsoft makes developers agree to. “Even if no fee is charged or received in connection with such use, such use in a business is still a commercial use and is not permitted under the SDK Beta license.”
This is arguably one of the biggest stumbling blocks for Android, which is being beaten out by iOS in terms of making developers more money.
Still, the impetus for Microsoft’s SDK release began with amateur coders creating homebrewed hacks with the Kinect for the fun of it. If opening up the SDK leads to more of this, Kinect’s platform could grow much larger.
Of course, Microsoft’s SDK release is initially available to Windows 7 developers only.
Nokia VP Victor Saeijs has this week disclosed the six launch markets for the vanguard devices born out of the Microsoft-Nokia partnership. France, Germany, Italy, Spain, the Netherlands, and the UK will all count themselves as hosts to Nokia’s Windows Phone debut, but the company’s mother nation of Finland has strangely been left out in the cold. Knowing Nokia, there’s no doubt that once the WP7 handsets are ready they’ll find themselves swiftly available worldwide, but if you care to be among the very first to own one, you’ll be wanting to visit Europe’s western shores — preferably some time before the year’s through, as Mr. Saeijs also reaffirmed that there will indeed be a Nokia Windows Phone coming out in 2011.
Well, it looks like Microsoft is taking those warnings about WebGL pretty seriously. The company has decided not to support the web-based 3D standard because it wouldn’t be able to pass security muster. Highest on the list of concerns is that WebGL opens up a direct line from the internet to a system’s GPU. To make matters worse, holes and bugs may crop up that are platform or video card specific, turning attempts to plug holes in its defense into a game of whack-a-mole — with many players of varying reliability. Lastly Microsoft, like security firm Context, has found current solutions for protecting against DoS attacks rather unsatisfying. Lack of support in Internet Explorer won’t necessarily kill WebGL and, as it matures, Microsoft may change its tune — but it’s still a pretty big blow for all us of hoping the next edition of Crysis would be browser-based.
Update: As is usually the case Apple and the Windows folks are on opposite sides of this one. In fact, the Cupertino crew plans to bring WebGL to iOS 5 with one very strange restriction — it will only be available to iAd developers. Now, chances are it will eventually be opened up in mobile Safari for everyone, but for the moment it seems browser-based 3D graphics will be limited to advertisements on the iPhone. Still, that’s another big name throwing its support behind the burgeoning standard.
We’ve been waiting for confirmation on yesterday’s rumor, about Microsoft’s motion-sensing Xbox 360 peripheral coming to PCs, and now we have it. MS has just now released a software development kit (SDK) for Windows that will allow .Net developers to write Kinecting apps in C++, C#, or VB. We spoke with some developer representatives from the company to get the full details, including just what you can and can’t do with this big bundle of libraries. Follow us after the break for all the info.
Microsoft’s been talking up its forthcoming Kinect for Windows SDK for quite a while now, and it looks like developers might soon finally be able to get their hands on it. According to WinRumors, Microsoft will roll out the beta version of the SDK during a special event on Channel 9 at 9:30 AM Pacific time (12:30 Eastern) tomorrow — something that’s now been backed up somewhat by the Channel 9 website itself, which is simply promising a “special Kinect focused event tomorrow.” WinRumors is also reporting that the President of Microsoft Spain said during an appearance at a conference today that the beta SDK would be available “this week.” So, it certainly seems like things are lining up for a release — it’s just a shame that “Kinect applications” doesn’t have the same ring as Kinect hacks.
This is site is run by Sascha Endlicher, M.A., during ungodly late night hours. Wanna know more about him? Connect via Social Media by jumping to about.me/sascha.endlicher.
CNET | 
Microsoft | Email this | Comments
Microsoft will be releasing a critical security update tomorrow (via Windows Update) to patch what is being referred to as the “Windows animated cursor” vulnerability. It almost sounds hard to believe that an exploit can occur from something as simple as a mouse cursor, but as 
