Author |
Topic |
|
Dave.
Senior Member
USA
1037 Posts |
Posted - 12 February 2004 : 22:34:28
|
quote: Originally posted by EvilSeph
Neowin.net is reporting that Windows 2000 and Windows NT source code has been leaked to the internet.
Quote from: Neowin.net "Neowin has learned of shocking and potentially devastating news. It would appear that two packages are circulating on the internet, one being the source code to Windows 2000, and the other being the source code to Windows NT. At this time, it is hard to establish whether or not full code has leaked, and this will undoubtedly remain the situation until an attempt is made to compile them. Microsoft are currently unavailable for comment surrounding this leak so we have no official response from them at the time of writing.
This leak is a shock not only to Neowin, but to the wider IT industry. The ramifications of this leak are far reaching and devastating. This reporter does not wish to be sensationalist, but the number of industries and critical systems that are based around these technologies that could be damaged by new exploits found in this source code is something that doesn't bare thinking about.
We ask that for the wider benefit of the IT community that members and readers support Microsoft by forwarding anything they know about the leak to the Microsoft's Anti-Piracy department."
View: Neowin.net Article
---------------------------------------------------
The world's biggest software company, Microsoft, says hackers have broken into its corporate computer network.
The hackers gained access to the source code, or blueprints, of Microsoft's Windows-based software, which is estimated to run on about 90% of the world's PCs.
But Microsoft's president and chief executive, Steve Ballmer, insisted they had not been able to tamper with any of the company's key programs.
He said: "It is clear that hackers did see some of our source code.
"I can assure you that we know there has been no compromise of the integrity of the source code; that it has not been modified or tampered with in any way."
Serious consequences
Microsoft's abuse of its near monopoly and refusal to share its source code have been at the centre of a long-running and bitter legal battle with the US authorities.
The security failure could create serious commercial problems for Microsoft if the hackers managed to download source code.
But more than this, if the hackers were able to tamper with the code, and Microsoft did not discover the changes, there could be problems for customers who might buy any affected products.
Earlier, Microsoft had been tight-lipped: "We recently became aware of a hack to our corporate network.
"Microsoft is moving aggressively to isolate the problem and ensure the security of our internal network."
Russian connection
While the firm's reluctance to say much is understandable, more details of the attack have been reported in New York's Wall Street Journal.
It says the security breach was discovered by staff on Wednesday. They detected internal passwords being sent remotely to an e-mail account in St Petersburg in Russia.
Electronic logs apparently showed that the passwords were being used to transfer source code.
Computer security experts say the hackers appear to have used a virus called Qaz to break into Microsoft's network.
They say Qaz first surfaced in China in July and is a "worm" virus, which makes copies of itself to spread throughout a network.
Secrets
Once installed, the Qaz program allows hackers unauthorised access to the network by, for example, relaying back to them passwords and other secret information.
It is also believed that the virus entered Microsoft's system within an inconspicuous-looking e-mail and, once inside, began replicating.
This kind of virus is known as a Trojan, after the Trojan Horse of Greek mythology, which was used to end the siege of Troy.
Astonishingly, the hackers are believed to have had access to Microsoft's network for three months before the breach was detected.
Microsoft says it has referred the attack to the US Federal Bureau of Investigation (FBI) and is working with the authorities to "protect its intellectual property".
View: BBC News Article
---------------------------------------------------
Microsoft tracks possible Windows code leak Microsoft is investigating the possibility that a file posted to several underground sites and chat rooms contains some protected source code to Windows 2000.
The 203MB file contains the code that appears to be from Microsoft's enterprise operating system, but the code is not complete, said Dragos Ruiu, a security consultant and the organizer of the CanSecWest security conference, who has examined the file listing.
"It was on the peer-to-peer networks and IRC (Internet relay chat) today," Ruiu said. "Everybody has got it; it's widespread now."
The 203MB file expands to just under 660MB, he said, noting that the final code size almost perfectly matches the capacity of a typical CD-ROM. The entire source code, he said, is believed to be about 40GB, meaning that the file circulating Thursday would be only a fraction of the full code base--if it is authentic.
Ruiu, who has seen the file, believes it to be authentic. "It looks real," he said. "You can't build Windows, however. It's just a bunch of chunks of the operating system."
Microsoft said it is looking into claims that file traders were swapping its proprietary source code.
"The rumor regarding the availability of Windows source code is based on the speculation of an individual who saw a small section of unidentified code and thought it looked like Windows code," Microsoft said in a statement provided to CNET News.com. "Microsoft is looking into this as a matter of due diligence."
Earlier Thursday, a source located a file purporting to be the code on a Web site, but the file was removed from the Internet before it could be completely downloaded.
The potential that the source code has been released has some security experts worried.
"It's definitely not a good thing if black hats have the source code," said Oliver Friedrichs, senior manager with antivirus company Symantec's security response center. If the source code as been released, "the underground can look at the code without legitimate security researchers being able to find vulnerabilities first."
But Microsoft downplayed any security issue.
In its statement the company said the main concern is the potential theft of its handiwork rather than the possible security threat that such a leak might pose.
"If a small section of Windows source code were to be available, it would be a matter of intellectual property rights rather than security," Microsoft said.
Microsoft jealously guards the source code to the various versions of its Windows operating system, sharing it only with universities and government agencies that sign agreements not to release the code. While working versions of Microsoft's operating system have occasionally leaked to the Internet, actual source code leaks have been rare
Although Microsoft Chairman Bill Gates has publicly bragged about the security of Windows, even Microsoft fears the release of its code. In testimony during the Microsoft antitrust trial, Jim Allchin, the company's senior vice president for Windows, said opening up the company's source code could be devastating for the operating system's security.
"The more (that) creators of viruses know about how antivirus mechanisms in Windows operating systems work, the easier it will be to create viruses or disable or destroy those mechanisms," Allchin testified during a May 2002 antitrust trial.
Allchin made the statements while defending the company against legal remedies supported by nine states that would have compelled Microsoft to giveaway the source code to Internet Explorer.
Allchin's fears are not misplaced, said Thor Larholm, senior security researcher with security consultancy PiVX Solutions.
"Just look at the amount of vulnerabilities that are discovered without the source code," he said. "The majority of Windows servers are still running Windows 2000. Furthermore, Windows 2000 has a lot of shared code that is still being used by Windows XP and Windows Server 2003."
However, other security experts believe that fears about a leak leading to the widespread discovery of vulnerabilities in the code are misplaced.
"Theoretically, to a good reverse engineer, all code is open source," said a Microsoft security consultant who asked not to be identified. He added that the size of the compressed file that was being passed around the Internet sounded about right.
In the end, however, the mistake that made Microsoft's code public might result in benefits similar to open-source code, Ruiu said.
"Short term, there might be problem (as bugs are found), but long term it might be good for them," he said. "Their code might become more secure."
View: ZDNet News Article
---------------------------------------------------
This news surely is a shock to us. The majority of the world use Windows and this could pose a potential risk for all of us. However, further investigation has revealed otherwise.
Source: Mentioned sources and Digital-Fanatic.com
|
|
sr_erick
Senior Member
USA
1318 Posts |
|
Dave.
Senior Member
USA
1037 Posts |
Posted - 12 February 2004 : 22:49:51
|
MS better start releasing SPs with Firewalls for 2000 and XP, else....we may all be in danger. :( |
|
|
RichardKinser
Snitz Forums Admin
USA
16655 Posts |
Posted - 12 February 2004 : 23:15:59
|
I seriously doubt it. Danger? It's just a computer. If you are going to be paranoid, might as well just turn off your computer and never use it again. Or just unhook it from the Internet. |
|
|
Dave.
Senior Member
USA
1037 Posts |
Posted - 12 February 2004 : 23:21:23
|
quote: Originally posted by RichardKinser
I seriously doubt it. Danger? It's just a computer. If you are going to be paranoid, might as well just turn off your computer and never use it again. Or just unhook it from the Internet.
I'm not paranoid, but what about all the 'less-advanced' home users that don't use Windows Update?
A lot (or almost none ) of exploits could be made from this, who really knows... |
|
|
Steve D.
Average Member
USA
640 Posts |
|
Nathan
Help Moderator
USA
7664 Posts |
Posted - 16 February 2004 : 05:46:39
|
<sarcasm>I'm sure scared . . . a bunch of internet criminals now have access to the source code of MS Paint!
What are we going to do!</sarcasm> |
Nathan Bales CoreBoard | Active Users Download |
|
|
miperez
Junior Member
Spain
243 Posts |
Posted - 16 February 2004 : 10:39:23
|
Do you know what part of the code has been leaked?
AFAIK, Microsoft hasn't yet comfirmed the part of the OS that could be affected.
I hope it's MS Paint, I wouldn't like any crackers dmaging my Solitaire game |
Best Regards
Mikel Perez
"Hell is the place where everything test perfectly, and nothing works"
|
|
|
Nathan
Help Moderator
USA
7664 Posts |
|
miperez
Junior Member
Spain
243 Posts |
Posted - 18 February 2004 : 04:24:22
|
I have read some more information about this issue, if anyone is interested you can check this analysis
It doesn't quote any copyrighted code, so there are no legal issues in posting the link here or reading it, as the author himself states |
Best Regards
Mikel Perez
"Hell is the place where everything test perfectly, and nothing works"
|
|
|
|
Topic |
|
|
|