News Microsoft spills COFEE on your secrets

Yeah, those yaks look tasty.

But for every action is an equal and opposite reaction. MS creates COFEE, some hacker creates DECAFF (Data Evidence Collecting and Analysing Fiend F***er).

 

i want one of those....... now to see if i can fake a police ID n get into their online forensic team........

 

Good stuff! But it practically writes itself, right?

 

No one with a clever "Hot Coffee" comment?

(I have nothing to add that hasn't been said already. +1 on CS Lewis quote.)

 

LiveCD = 100% data recovery from a linux or windows OS -- boot it in a vm while not powering down the real PC = same thing. This is just a script that will pull data out of set areas, for linux it would be the same as copying /home/user etc

not a big deal at all.

 

i am thinking of a mix of encryption + virtual machines....

 

I wouldn't mind a copy of this. That way when I'm fixing peoples computers I can instantly get full access.

I see this getting out there and widespread quickly, nothing but bad in my mind.

 

Read this:
http://community.winsupersite.com/b...iracy-buffs-there-s-no-windows-back-door.aspx

Apparently it is just a conspiracy and does not exists.

 

There's quite a bit of over-reaction to this article. As already stated by Buzzons and Gareth Halfacree, you can get full access to windows user files just using any recent Linux live CD and this still doesn't break encryption.

 

Only difference i can see is that the live-cd would require a reboot, does this?

 

I would like to see a hacker get his hand on one of these and see what he has to say about it's capabilities...

 

Because "if you're not doing anything wrong then you've got nothing to hide" thinking is just what we need in today's society.

Except that we have plenty of corrupt police officers.
Except that this software WILL be leaked.
Except that the leaked software WILL be used by crackers, malware writers, botnet admins, etc.

Thurrott's article to which GoodBytes linked says that this article is completely wrong due to some severe misinterpretation of statements and facts. I have no idea which is true, and honestly don't care as I would never trust anything except open-source security apps like TrueCrypt for truly sensitive data (and I'd absolutely set it to automatically un-mount the device after a couple minutes of inactivity). If this software doesn't exist as described, good. If it does, it's just another reason that validates my having stopped using Windows for any personal activity. In either case, the above thinking is irrational and dangerous.

 

If this trend continues, their next operating system will be called Open Windows (pun intended).

 

Microsoft continues to be the best promoter linux ever had. Who needs to advertise when your competitioin actively drives customers to you?

 

Microsoft: "look how secure our OS is"
Government minister: "wow great, now I don't have to worry if I leave my laptop in the back of a taxi"
Microsoft: "look how easy our security is to break"
Government minister: "Wait... what?"

There is no chance of this staying out of evil hands, I give it a few weeks before it is leaked/duplicated

 

not sure if it has been posted but :: http://www.tgdaily.com/content/view/37201/108/ <-- a must read for this article

 

yah there's nothing on that usb tool that a highschool kid with google and bit-torrent could not also obtain. I mean to use a linux boot cd that had some cracking applications on it (not that I'm a hacker or anything at all). Very useful when people forgot passwords and the likes. It's naive to thinkt hat a stock box on any platform is "secure" in any fashion

 

I personally still prefer using the firewire DMA trick for system penetration.


and personally, I'm not worried.

I do daily backups, which cannot be read except after going through about 6 levels of various types of encryptions with failsafes, and if someone tried to use the USB stick for command access, my laptop would do a 7 pass wipe of the drive in about 12 seconds (its an ssd)

also, yes, everything on my computer is legal, but I like my privacy. =p

 

Bluephoenix are you trying to stop industrial espionage or just hiding extremely perverted porn collection.....

I think "the man" should search your computer if only because you think you have something worth hiding