On CHOW: 10 celebrity BOOZES
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack

By Tom Espiner ZDNet.co.uk, News.com
Posted on ZDNet News: May 16, 2008 7:17:56 AM

Microsoft has claimed user "complacency" is to blame for malware infections, and denied that its Vista operating system is less secure than Windows 2000.

The claim that Vista is less secure than Windows 2000 was made last week by security vendor PC Tools, which said that over the past six months Vista had suffered 639 unique threats, whereas Windows 2000 has suffered 586. PC Tools's research was conducted by collecting data from customers using its ThreatFire behavioral detection software.

"Ironically, the new operating system has been hailed by Microsoft as the most secure version of Windows to date," said Simon Clausen, the chief executive of PC Tools last week.

"However, recent research conducted with statistics from over 1.4 million computers within the ThreatFire community has shown that Windows Vista is more susceptible to malware than the eight-year-old Windows 2000 operating system, and only 37 percent more secure than Windows XP," Clausen said.

However, Microsoft strongly hit back at the claims, blaming users for executing malicious code on their machines. On Tuesday, Technet blogger and Microsoft evangelist Michael Kleef said the number of infections found by PC Tools was an indication of poor user behavior.

"The number of virus infections found by a virus vendor does not necessarily equal poor security," wrote Kleef in a blog post. "In many cases it equals poor user behavior. If I, despite all prompting and consent behavior, choose to go to a (probably dodgy) website, accept the ActiveX control prompts to download (probably dodgy) code and I actually choose to execute that code then I'm hosed."

Kleef claimed the number of infections was not purely the operating system's fault, but said that "in some cases it's the user and their lack of knowledge and their implicit 'it-won't-happen-to-me' complacency" that causes them to get infected.

Kleef's comments followed on from a blog post on Friday by Austin Wilson, the director of Windows Client Security Product Management, which also denied that Vista was less secure than Windows 2000. Wilson said results collected from over 450 million uses of Microsoft's Malicious Software Removal Tool (MSRT) and published in Microsoft's most recent Security Intelligence Report show Vista is more secure than Windows 2000.

"Our results published in the April 2008 version of the Security Intelligence Report show that Windows Vista is significantly less susceptible to malware than older operating systems," wrote Wilson in the blog post. "Using proportionate numbers, MSRT found and cleaned malware from 44 percent fewer Windows Vista-based computers than Windows 2000 SP4 computers and 77 percent fewer than from computers running Windows 2000 SP3."

  • Talkback
  • Most Recent of 207 Talkback(s)
Simple Rights
Re: It could have been much worse however, if the author so intended [after all, you don't need root but simple rights to trick a user into running rm -rf ~ and voila!].

That's where SELinux co... (Read the rest)
Posted by: SpatsnHats Posted on: 06/14/08 You are currently: Logged In | Log out
yes, yes. yes exxtraz   | 05/16/08
You are 100% right NonZealot   | 05/16/08
Mostly true but... gfeier   | 05/16/08
I've had the same experience with Windows and Linux NonZealot   | 05/16/08
I see that you , like L.D. have finally embraced LINUX ,,, AdventTech67   | 05/16/08
Not exactly... gfeier   | 05/18/08
Same here Your Mom 2.0   | 05/22/08
Sounds like my experience with Windows. ye   | 05/16/08
I assume it was not connected... Solid Water   | 05/16/08
Both examples are almost four years old and... ye   | 05/17/08
Better still, use Linux b8375629@...   | 05/20/08
since day one of Vista Khyron   | 05/19/08
Corporate America’s rejection of Vista Ole Man   | 05/19/08
Try this... Cayble   | 05/19/08
This Dude is a SERIOUS Windows Junkie swbobcat   | 05/19/08
This DUDE is a SERIOUS Apple Jack Cayble   | 05/22/08
And you're not... olePigeon   | 05/16/08
Don't give facts to the Zealot... Bruizer   | 05/17/08
Oh, don't worry about that.. msalzberg   | 05/18/08
Great Believer in "Truthiness", is Our MicroShaft Bigot Zealot! drprod@...   | 05/19/08
Two wrongs... mdsock@...   | 05/19/08
See how they pay you no mind? tikigawd   | 05/20/08
Pay you no mind Axsimulate   | 05/20/08
Message has been deleted. lbarker@...   | 05/19/08
We'll see LiquidLearner   | 05/16/08
sorry Khyron   | 05/19/08
No system is idiot-proof... jdickey   | 05/20/08
Apple takes the Zen approach to reliability issues jlafitte   | 05/19/08
So fire the network admin! winski   | 05/20/08
It's a cat and mouse game tikigawd   | 05/20/08
BLAME THE USERS? WATKINS12@...   | 05/19/08
Apple can't afford to blame users lbarker@...   | 05/19/08
"Not technically minded" tikigawd   | 05/20/08
Of course, is not MS fault pablo@...   | 05/16/08
Don't get too smug my friend klumper   | 05/16/08
May I ask you to enlight the community? Solid Water   | 05/16/08
Enlightened klumper   | 05/17/08
Just to enlighten me further.... TtfnJohn   | 05/19/08
Enlightened further klumper   | 05/20/08
Simple Rights SpatsnHats   | 06/14/08
I've got two of them in my basement... jlafitte   | 05/19/08
Looks like it's the other way around Ole Man   | 05/19/08
Vista Security Problems Due to Users gpronger   | 05/16/08
Not Lower - Just Different Dkunzma   | 05/16/08
can you tell... Khyron   | 05/19/08
Keeping secrets doesn't work masonwheeler   | 05/19/08
MS invented ActiveX and knew it was insecure ThePrairiePrankster   | 05/16/08
Back when ActiveX was created... DevGuy_z   | 05/16/08
Now, instead of running as admin, they disable UAC, which is the same thing CobraA1   | 05/16/08
ActiveX born 1996 (says wikipedia) rtfa   | 05/17/08
RE: Microsoft blames users for Vista infections computergeek289   | 05/16/08
Poor User Behavior? chuck@...   | 05/16/08
Factually incorrect NonZealot   | 05/16/08
A small problem with your logic bobd08   | 05/21/08
Please, please, please point out how Windows is inherently insecure! ye   | 05/16/08
ActiveX is inherently insecure by design ThePrairiePrankster   | 05/16/08
"Can be" and "inherently designed" to be are two different... ye   | 05/16/08
ActiveX was designed without security in mind rtfa   | 05/17/08
Can you expand upon this? ye   | 05/17/08
Yes he can Ole Man   | 05/17/08
All or nothing proposition davidsarmstrong   | 05/19/08
"ActiveX" isn't the problem. It's badly written controls that are. Larry Osterman   | 05/18/08
Where have you been? rtfa   | 05/17/08
I've been around. ye   | 05/17/08
You must not have been around that long. B.O.F.H.   | 05/17/08
Been around far longer than NT 3.51. ye   | 05/17/08
Ok, I'll bite. davidsarmstrong   | 05/19/08
Strawman... BFD   | 05/16/08
RE: Microsoft blames users for Vista infections Minh Tran   | 05/16/08
road analogy Hmmm. . .   | 05/16/08
Can you demonstrate the MS roads are any worse than the Apple or Linux... ye   | 05/16/08
Yes. nizuse   | 05/16/08
Yes Ye pablo@...   | 05/16/08
and yes again pablo@...   | 05/16/08
for now... tikigawd   | 05/20/08
I would.... bobd08   | 05/21/08
and again, Yes pablo@...   | 05/16/08
Nor is it on Windows. And since I am a Mac user... ye   | 05/16/08
Might want to pull back a bit klumper   | 05/16/08
RE: ...since I am a Mac user... n0neXn0ne   | 05/16/08
Go figure... ye   | 05/16/08
Can't resist davidsarmstrong   | 05/19/08
Great job proving the article's point Real World   | 05/16/08
RE: Microsoft blames users for Vista infections rag@...   | 05/16/08
Of course! Jeremy W   | 05/16/08
Yeah, I see a pattern.... John E Wahd   | 05/16/08
450 million uses of Microsoft's Malicious Software Removal Tool Jeremy W   | 05/16/08
re: 450 million uses Badgered   | 05/16/08
Shhhh. John E Wahd   | 05/16/08
Strawman... BFD   | 05/16/08
Who's Complacent? greg@...   | 05/16/08
To everyone frothing @ the mouth over this.... JoeMama_z   | 05/16/08
LOL John E Wahd   | 05/16/08
On Zdnet.. kaiwai   | 05/16/08
RE:On Zdnet.. n0neXn0ne   | 05/16/08
Who the hell claimed that kaiwai   | 05/16/08
RE: Who the hell claimed... n0neXn0ne   | 05/16/08
Your analogy is flawed Ole Man   | 05/17/08
Your understanding of the issue is flawed.... JoeMama_z   | 05/17/08
Let me make myself perfectly clear Ole Man   | 05/18/08
Let me make myself perfectly clear Gregory.J.Bradley@...   | 05/19/08
Is running a command (or whatever) in Wine Ole Man   | 05/19/08
I'm not sure you made yourself clear... *Gman*   | 05/19/08
I'm not sure you know the definition of clear Ole Man   | 05/19/08
RE: To everyone frothing ... n0neXn0ne   | 05/16/08
And how would any of those things JoeMama_z   | 05/16/08
Awfully quiet over here.... JoeMama_z   | 05/16/08
Most people don't like to argue with a stump Ole Man   | 05/17/08
Hence the reason I rarely respond to you. ye   | 05/17/08
What made you do it this time? Ole Man   | 05/17/08
Complex solutions to a complex problem. ye   | 05/16/08
@JoeMama_z n0neXn0ne   | 05/16/08
I'd pull back if I were you klumper   | 05/16/08
Linux protects dumb users Don Collins   | 05/16/08
... so does windows crazymollusc@...   | 05/19/08
Not according to Microsoft Ole Man   | 05/19/08
Tis true! Ole Man   | 05/19/08
Awfully quiet over here? JoeMama_z   | 05/16/08
Always is awfully quite Ole Man   | 05/17/08
Well, that's what happens when users disable UAC (nt) CobraA1   | 05/16/08
There is a saying: User07734   | 05/17/08
"Linux gets security black eye" ye   | 05/17/08
It's a Debian black eye... Henry Miller   | 05/17/08
LOL! Gotta love you Linux advocates! ye   | 05/17/08
It's nice to be appreciated, Henry Miller   | 05/17/08
To which OP are you referring? ye   | 05/18/08
I'm referring to your comment.. Henry Miller   | 05/18/08
@Henry Miller: What about my comment? ye   | 05/18/08
I'm a Debian user Ole Man   | 05/18/08
As it happens.... TtfnJohn   | 05/19/08
Yeah and take a look at who it effects.. bobd08   | 05/21/08
RE: Microsoft blames users for Vista infections richvball44   | 05/17/08
RE: Microsoft blames users for Vista infections Henry Miller   | 05/17/08
Drat... pushed the wrong button! (nt) Henry Miller   | 05/17/08
Who's jumping who's screaming.... JoeMama_z   | 05/17/08
The silence is all the answer you need :-) ye   | 05/18/08
Waste of Time X41   | 05/18/08
I'll take it under advisement. ye   | 05/18/08
So says tikigawd   | 05/20/08
Nobody is responding Ole Man   | 05/18/08
thats easy.... JoeMama_z   | 05/19/08
Are you actually saying? Ole Man   | 05/19/08
yes i am.... JoeMama_z   | 05/20/08
I relent to you lack of coherence Ole Man   | 05/20/08
keep dancing around the questions.... JoeMama_z   | 05/20/08
I'll let you have this one Ole Man   | 05/23/08
So says tikigawd   | 05/20/08
Are you a question? Ole Man   | 05/20/08
Users Blame Microsoft For Vista chessmen   | 05/18/08
User blame snake oil salesmen for Boot_Agnostic   | 05/19/08
RE: Microsoft blames users for Vista infections darkmoonman   | 05/19/08
RE: Microsoft blames users for Vista infections sborsher   | 05/19/08
RE: Microsoft blames users for Vista infections skiextreme2   | 05/19/08
RE: Microsoft blames users for Vista infections casachs   | 05/19/08
Straight up! mikeholli   | 05/19/08
RE: Microsoft blames users for Vista infections bearlyworking   | 05/19/08
RE: Microsoft blames users for Vista infections pdwarren   | 05/19/08
Is Vista unreliability really just the sound of one hand typing? :-) jlafitte   | 05/19/08
RE: Microsoft blames users for Vista infections Windowns   | 05/19/08
Microsoft evangelist? bsaunders43   | 05/19/08
Microsoft is right! lukbut_1   | 05/19/08
RE: Microsoft blames users for Vista infections toddah   | 05/19/08
Ah, yes let's kill the messenger... mikifinaz1@...   | 05/19/08
good quote reclaim25   | 05/19/08
"thats why it has the largest Market Share" Ole Man   | 05/19/08
waaaaa waaaaaaaa JoeMama_z   | 05/20/08
Don't cry, little one Ole Man   | 05/23/08
RE: Microsoft blames users for Vista infections reclaim25   | 05/19/08
RE: Microsoft blames users for Vista infections reclaim25   | 05/19/08
RE: Microsoft blames users for Vista infections C. A. Clark   | 05/19/08
RE: Microsoft blames users for Vista infections drprod@...   | 05/19/08
RE: Microsoft blames users for Vista infections stanj.miranda@...   | 05/19/08
RE: Microsoft blames users for Vista infections rgmorris@...   | 05/19/08
RE: Microsoft blames the victim tpatriarche@...   | 05/19/08
Here's an idea bobd08   | 05/19/08
That was just a marketing ploy Ole Man   | 05/19/08
Yeah... tikigawd   | 05/20/08
Surely you can do better than that? Ole Man   | 05/20/08
RE: Microsoft blames users for Vista infections atari8bit@...   | 05/19/08
Wow! 164 posts and nobody gets it! kingmph@...   | 05/19/08
Oh my! tikigawd   | 05/20/08
It's oh so easy to see Ole Man   | 05/20/08
No Problems Here CharlesEtheridge@...   | 05/19/08
Do the math drutledge@...   | 05/19/08
RE: Microsoft blames users for Vista infections muffzima@...   | 05/19/08
RE: Microsoft blames users for Vista infections crazymollusc@...   | 05/19/08
"how do you get any software to run?" Ole Man   | 05/19/08
User Error is the Biggest Factor mrdood_99205@...   | 05/19/08
RE: Microsoft blames users for Vista infections crazymollusc@...   | 05/19/08
Wow! You mean it's finally sinking in? Ole Man   | 05/19/08
Adult Web sites Warez sites = you deserve infection pcguy777   | 05/19/08
face it.it is users fault billw1234   | 05/19/08
Microsoft is dead WRONG and dishonest estonijaan   | 05/19/08
Blame the USERS!!!! swbobcat   | 05/19/08
RE: Microsoft blames users for Vista infections lukbut_1   | 05/19/08
RE: Microsoft blames users for Vista infections swbobcat   | 05/19/08
Did you make this up? tomaras@...   | 05/20/08
... Linux User 147560   | 05/20/08
This is NOT made up Ole Man   | 05/20/08
RE: Microsoft blames users for Vista infections sboyce@...   | 05/20/08
RE: Microsoft blames users for Vista infections oldsteamer   | 05/20/08
RE: Microsoft blames users for Vista infections winski   | 05/20/08
RE: Microsoft blames users for Vista infections as901   | 05/20/08
RE: Microsoft blames users for Vista infections rdhalsteatzd   | 05/20/08
RE: Microsoft blames users for Vista infections d.s.williams   | 05/21/08
RE: Microsoft blames users for Vista infections corbinsdad@...   | 05/21/08