Tag Archives | Windows 10

Windows 10 flaw allowed attackers to open malicious websites… even if your PC was locked

Windows 10 flaw allowed attackers to open malicious websites… even if your PC was locked

You may think your Windows 10 computer is locked, but is it really?

Israeli researchers have discovered a way of just using voice commands to make locked Windows 10 computers visit a website under the control of malicious hackers… and potentially install malware.

Read more in my article on the Hot for Security blog.

Cluley 250 thumb

Microsoft rethinks Windows 10 upgrade push following complaints

Dave Lee at BBC News reports:

In recent months, in an apparent bid to accelerate adoption of Windows 10, Microsoft altered the way it asked users if they wanted to upgrade. It gave the Windows 10 update “recommended” status, normally reserved for critical security updates.

If when prompted to update to Windows 10 users clicked the red “X”, the upgrade would not immediately start. However, the update process would automatically be scheduled for a later time.

From this week, Microsoft said it would change that process, admitting that it was confusing.

The new experience has clearer options to upgrade now, choose a time, or decline the free offer,” said Terry Myerson, executive vice president, Windows and Devices Group, in an emailed statement.

If the red-x is selected on this new dialog, it will dismiss the dialog box and we will notify the device again in a few days.”

I’ve complained before about the “dirty trick” Microsoft pulled when it changed the behaviour of its update nag screen - duping users into believing that clicking “X” would simply make the pop-up disappear rather than scheduling an unwanted Windows 10 update.

I understand that Microsoft believes Windows 10 is great, and appreciate that it wants as many users as possible to update to it, but the way it has handled the process has pretty bloody awful.

News of the rethink comes as news emerges that Microsoft has agreed to pay a Californian woman $10,000 after an unwanted Windows 10 update caused her computer to crash.

Cluley 250 thumb

Unwanted Windows 10 update wins woman $10,000 from Microsoft

The Seattle Times reports:

A few days after Microsoft released Windows 10 to the public last year, Teri Goldstein’s computer started trying to download and install the new operating system.

The update, which she says she didn’t authorize, failed. Instead, the computer she uses to run her Sausalito, Calif., travel-agency business slowed to a crawl. It would crash, she says, and be unusable for days at a time.

I had never heard of Windows 10,” Goldstein said. “Nobody ever asked me if I wanted to update.”

When outreach to Microsoft’s customer support didn’t fix the issue, Goldstein took the software giant to court, seeking compensation for lost wages and the cost of a new computer.

She won. Last month, Microsoft dropped an appeal and Goldstein collected a $10,000 judgment from the company.

There is no doubt that Microsoft has taken its aggressive pushing of Windows 10 onto users’ computers too far, with many users claiming that it has been installed on their PCs without their explicit consent.

If a malicious hacker made unauthorised changes to your computer without your permission you would expect the police to take an interest.

So what makes it any different when it’s a company called Microsoft messing around with your computer?