Home - Critical Computer Company Limited

XHTML 1.0 Transitional
[Valid RSS]

Search:    Start Date:    Detail:           Sources

Show Items:     Beginning 
09/07/2020 16:25:19  

Microsoft today published technical details about a new security feature that will soon be part of Windows 10. From a report: Named Kernel Data Protection (KDP), Microsoft says this feature will block malware or malicious threat actors from modifying (corrupting) the operating system's memory. According to Microsoft, KDP works by giving developers access to programmatic APIs that will allow them to designate parts of the Windows kernel as read-only sections. "For example, we've seen attackers use signed but vulnerable drivers to attack policy data structures and install a malicious, unsigned driver," Microsoft's Base Kernel Team said today. "KDP mitigates such attacks by ensuring that policy data structures cannot be tampered with." Microsoft says this new technology was developed with security in mind but that it also has other applications, such as anti-cheat and digital rights management (DRM) software.

Read more of this story at Slashdot.

23/06/2020 08:21:44  

The other kind of DRM strikes: Bod baffled after attempt to raise alarm over vulnerabilities is ignored

IBM is under fire for refusing to patch critical vulnerabilities in its Data Risk Manager product until exploit code was publicly disclosed.…

13/06/2020 12:20:06  

Water filter system requires RFID-chipped part

Fed up with the DRM in a General Electric refrigerator that pushed the owner to buy expensive manufacturer-approved replacement water filters, an anonymous hacker went to the trouble of buying a domain name and setting up a website at gefiltergate.com to pen a screed about appliance digital rights restriction management (DRM) and how to bypass it.…

12/06/2020 23:19:20  

An anonymous reader quotes a report from Motherboard: Earlier this year, we brought you the sordid tale of the GE refrigerator that won't dispense filtered water unless consumers pay extra for "official" filters from the company. This sort of digital rights management and artificial, software-enforced monopoly is a scourge on consumer rights. Now, finally, a fed up customer has found a way to bypass GE's refrigerator DRM, and has posted instructions online. The anonymous person registered a website called gefiltergate.com, and explained that by swapping the RFID tag from an official GE refrigerator to a third-party filter they bought on Amazon, they can get the refrigerator to continue filtering water as normal. For reference, third-party filters cost as little as $13; GE filters cost $55. I'm gonna go ahead and call this a "hack," because they're bypassing an artificial software lock to circumvent DRM, which is, at least in spirit, a hack, and a cool one at that. The hack was also done by Jack Busch over at GroovyPost last month. To make your fridge use "unauthorized" filters, you need to take the old filter out, flip it over, and carefully remove the RFID chip. This chip tells the fridge that it's a "real" filter. This chip is glued down, and the person on gefiltergate suggested that rather than try to pry it up, you can simply cut around it with a Dremel or a saw. They then taped the RFID chip to the circuit board that checks whether a filter is authorized. This then allows them to use third-party filters, no problem. As Busch explains in his blog post, the refrigerator will say "not filtering," but it will dispense water that goes through the new filter, so it does indeed work.

Read more of this story at Slashdot.