Windows 10 S can be infected with malware

While Microsoft has claimed that Windows 10 S is not vulnerable to any currently known malware, a clever cybersecurity professional has found an exploit in Microsoft Word that can run malicious code in the operating system.

Sam Medley, Published 06/24/2017

Microsoft’s newest iteration of Windows, Windows 10 S, has been advertised as one of the safest and most secure versions of the world’s most popular operating system. Since the OS is highly restrictive in nature and it can only run software installed from the Windows Store, Microsoft has put quite a few checks into the system to keep malware and hackers out. Unfortunately, they didn’t plan on Matthew Hickey.

ZDNet reports that they asked Hickey, who is a co-founder of cybersecurity firm Hacker House, to take their new Surface Laptop and try to install malware on it. The Surface Laptop is being positioned as a notebook for students, as it natively runs Windows 10 S. ZDNet’s particular device also had the latest security patches from Microsoft installed on it earlier in the day. However, it took Hickey only about 3 hours to bypass the notebook’s security and get malicious code running.

Despite the absence of tools like the Command Prompt and PowerShell scripting (which can grant access to the underpinnings of standard Windows), Hickey was able to find an exploit in Microsoft Word. By writing specific macros into a Word document and opening the file with administrative privileges (which are set to the default user profile), Hickey carried out a “reflective DLL injection attack,” which allowed him to bypass the machine’s security and directly affect the libraries at the root of the operating system itself.

Normally, to open a Word document that executes macros, “Protected View” must be disabled. In Windows 10 S, this setting is turned on by default. Hickey downloaded the malicious Word document via a network share, which Windows considers a trusted source, and selected the option to enable macros. As such, it may not be hard for future hackers to socially engineer Windows 10 S users into downloading malicious files from a trusted source and choosing to run macros. Despite Microsoft’s claim that their new OS is “not vulnerable to any known ransomware,” it seems that where there’s a will, there’s a way.

Source(s)

ZDNet

The free Office Depot PC Health Check allegedly operated in a similar fashion to scareware. (Source: FTC)

PC Health Check scareware allegations cost Office Depot and Support.com US$35 million 03/28/2019

Microsoft rumored to introduce Windows 10 "S Mode" across all new PCs 02/04/2018

Google has pulled 63 apps found to serve up porn ads. (Source: PC World)

Google pulls 63 Android apps serving up porn ads 01/14/2018

The Archive Poster Chrome extension has been caught mining cryptocurrency. (Source: Google)

Pre-installed keylogger found in 460 HP laptop models in December 2017 (Source: Dash Force News)

More than 460 HP laptop models come with a pre-installed keylogger 12/11/2017

suhide-lite can bypass Google's SafetyNet, allowing rooted phones to run apps that would otherwise be restricted. (Source: XDA-Developers)

It's now easier to hide root on your Android phone with suhide-lite 08/11/2017

Windows 10 users will be prompted to update to the latest version of the OS. Additionally, users are encouraged to review their privacy settings. (Source: Microsoft)

Users still running the first version of Windows 10 are encouraged to update 07/03/2017

Windows Defender Exploit Guard in action. (Source: GHacks)

Microsoft reveals some of the upcoming enterprise security features in the Windows 10 Fall Creators Update 06/28/2017

Windows Task Manager with GPU load tracking shows up in Windows 10 Insider Preview build 16226

Windows Task Manager to get a GPU tab 06/23/2017

The Surface Laptop can now be restored to Windows 10 S from Windows 10 Pro (Source: Microsoft)

Recovery image for Windows 10 S now available for the Surface Laptop 06/21/2017

Reading between the lines, Windows 10 S stays fast because it's less susceptible to bloat. (Source: Windows Central)

Is Windows 10 S really faster? 06/17/2017

A visual simplification of the big.LITTLE platform delegating tasks to different cores. (Source: MS Power User)

Full Windows 10 on Snapdragon could mean big(.LITTLE) improvements 06/17/2017

Most apps send out some level of personal data to third parties. (Source: TechRadar)

Study reveals 70 percent of mobile app data is being shared with third parties 06/12/2017

Apple is on-track to open 40 Apple retail stores in China by this October. (Source: TechCrunch)

Chinese officials uncover massive data theft by local Apple employees 06/08/2017

The Malware, developed by a Chinese digital marketing company, hijacks the victim's browser and can then steal their private information or install additional malware. (Source: Check Point Threat Intelligence)

Chinese "Fireball" malware infects almost 250 million computers 06/04/2017

"Cloak and Dagger" vulnerability can leave your Android phone open to attack 05/27/2017

Microsoft Windows 10 China Government Edition launches in Shanghai next to Surface Pro

Microsoft intros Windows 10 China Government Edition 05/24/2017

Loading Comments

Comment on this article

Windows Task Manager to get a GPU tab

Next BlackBerry handset might have ...

Sam Medley - Senior Tech Writer - 1345 articles published on Notebookcheck since 2016

I've been a computer geek my entire life. After graduating college with a degree in Mathematics, I worked in finance and banking a few years before taking a job as a database administrator. I started working with Notebookcheck in October of 2016 and have enjoyed writing news and reviews. I've also written for other outlets including UltrabookReview and GeeksWorldWide, focusing on consumer guidance and video gaming. My areas of interest include the business side of technology, retro gaming, Linux, and innovative gadgets. When I'm not writing on electronics or tinkering with a device, I'm either outside with my family, enjoying a decade-old video game, or playing drums or piano.

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2017 06 > Windows 10 S can be infected with malware

Sam Medley, 2017-06-24 (Update: 2017-06-24)

Windows 10 S can be infected with malware

Source(s)

Related Articles