“After suffering embarrassing security exploits over the past several years, Microsoft Corp. is trying a new tactic: inviting some of the world’s best-known computer experts to try to poke holes in Vista, the next generation of its Windows operating system,” The Associated Press reports.
“Microsoft made a test version of Vista available to about 3,000 security professionals Thursday as it detailed the steps it has taken to fortify the product against attacks that can compromise bank account numbers and other sensitive information,” AP reports.
“Microsoft has faced blistering criticism for security holes that have led to network outages and business disruptions for its customers. After being accused for not putting enough resources into shoring up its products, the software maker is trying to convince outsiders that it has changed,” AP reports.
Full article here.
MacDailyNews Take: That’s a great idea! Give hackers a head start on Vista. As if they need it.
Related MacDailyNews articles:
Symantec details more security holes in Microsoft’s Windows Vista – July 26, 2006
Symantec: Microsoft’s ‘improvements’ to Vista could cause instability, new security flaws – July 18, 2006
New invisible rootkit hits Windows including Vista – July 17, 2006
Sophos: Apple Mac OS X’s security record unscathed; Windows Vista malware just a matter of time – July 07, 2006
Computerworld: Microsoft Windows Vista a distant second-best to Apple Mac OS X – June 02, 2006
Thurrott: Microsoft collapsing under its own weight, Gates has driven Windows Vista into the ground – April 20, 2006
What’s the difference between Mac OS X and Vista? Microsoft employees are excited about Mac OS X – March 22, 2006
Hackers already targeting viruses for Microsoft’s Windows Vista – August 04, 2005
uhhh, here, do our work for us…tell us what to fix.
…how much are they paying these guys????
More delays ahead.
LAUGHING MY ASS OFF
Let’s see here…say I’m a hacker..I can either (1) hack Vista pre-release and have Microsoft try to fix the hole or (2) find a hack, not tell Microsoft, and use it as soon as Vista hits the market.
I think most hackers would opt for #2.
Udpate:
Windows Vista found face down in a ditch outside of Redmond. Local police say it looks “Like a really bad scene, man.”
Film at 11.
That’s a great idea! Give hackers a head start on Vista. As if they need it.
Me thinks MDN is suffering from a big case of hubris. These aren’t ‘hackers’. They are industry security professionals, and Microsoft’s “invitation” most likely came with a hefty paycheck and an NDA regarding anything they found.
Microsoft fixes discovered security holes BEFORE Vista goes to market. The impression that Vista is different is re-inforced by the fact that security holes are more difficult to find and less plentiful than XP or earlier versions.
Microsoft is doing absolutely the right thing. It looks like ‘retiring’ Gates is going to start paying dividends for Microsoft. Now, if the Board ‘retires’ Ballmer Microsoft can become a legitimate competitor again.
Microsoft has faced blistering criticism for security holes that have led to network outages and business disruptions for its customers”
U r joking right? Forgot to mention the catastrophic assault that is occuring daily on the Internet, due to seveal MILLION compromized zombie PCs running WINDBLOWS out their ass, flooding the internet with millions of spam emails and allowing gangsters to DDoS web sites…..
costing billions of dollars to all internet users.
Outlaw Micro$hit software today!
What’s different about this version and the beta out there? If these guys were interested in Vista security, they’d already be poking at it. Maybe MS is offering incentives, like bounty for holes, free xbox, etc.
This is a smart thing to do of course. You might say it is a bold and wise and super-innovative.
Hackers, Please don’t do it wait until Microsoft releases the product. Then go for it, we know you can do it.
‘Microsoft publicity stunt asks trained monkeys to attack Windows Vista’
Alternate headline:
“Microsoft Asks Security Professionals To Do Their Jobs; Plans To Take Credit For Results”
It should be called Windows SC…. as in Swiss Cheese.
Maybe if they paid say 50 bucks per found exploit (don’t think they could afford more ” width=”19″ height=”19″ alt=”wink” style=”border:0;” />). Right now, why bother reporting a flaw when you can write a nice virus and get your leet-nick known over the internet? (yeah that is pretty lame but so are the guys and gals writing viruses)
Microsoft fixed the security bugs and holes so well that users can’t even start up.
An Intel Mac is secure running OS X, but is just another Microsoft Virus Magnet when Windoze is applied. Windoze SP3 (aka Longhorn/VISTA) will be a marginal improvement. The whore will now just be an easy slut.
M$ should have done this a long time ago. It’s too late to make Vista safe for early next year. It takes them forever to do anything. When it’s finally released, there will still be dozens of flaws to exploit. This may just reveal the most obvious.
Done! We’re done.
Looks like shooting at fishes in a barrel.
In fairness to Microsoft this is a good thing to do. And very low cost if they’re not paying for it.
On the other hand fixing things now will largely require patches as the underlying code case surely cannot be rewritten in time for an early 2007 release. Thus Vista will probably be a patchwork quilt straight out of the box. Woohoo. Sign me up now.
Microsoft, what would you like to do today that you should have been doing a long time ago?®
Does M$ not understand the definition of the term “Black Hat” ??
Let’s see I am a hacker asked to find security flaws in software that will be used to keep bank account numbers secure, web transactions secure, and personal information secure…
My Report regardless of my findings:
Great job guys. Couldn’t get in. Don’t change a solitary thing!
Y’all do understand that this is M$ basically admitting that security-wise Vista is DOA and they do not know how to fix it.
As secure as our Macs are – if we shop or bank online we’re still gonna get screwed by any Windows e-biz servers that can be hacked.
Hmmm…..
If I’m a “security professional” and I realize that MS is going to cut into my business by offering their own “security” software for $50 a year, how motivated am I to help troubleshoot their OS for them?
MDN word: foot
I think someone may have shot themselves in the foot.
Poor Vista. Such an easy target. Here’s a better challenge. Who can spot Bill in disguise at the WWDC keynote? Hint: It will be the guy trying to take notes on a failing Tablet PC.