
Submission + - Vista Protected Processes Bypassed, Alex is Back
Anonymous Hero writes: Security Researcher Alex Ionescu strikes again, this time with a proof of concept program that will arbitrarily enable and foremost disable the protection of so-called "Protected Processes" in Windows Vista. Another step towards threatening Vista DRM and friends, not to mention towards hardened and even more annoying malware. Normally, only specially signed processes made by special companies (decided by Microsoft) can be protected, but now the bad guys can protect any evil process they want, including the latest version of their own keylogger, spambot or worm, and unprotect any "good" one.