« Google: "Really, we are different" | Main | Voip providers compared »

The world's first Windows Vista virus… isn't a Vista virus

Security researchers should stick to what they are good at: talk about security. But when it comes to features for upcoming operating systems, they have just proven that they don't know what they are talking about.

F-Secure earlier today posted on its blog that the first 'viruses' for Windows Vista had surfaced. Minor detail: the virus exploits a technology that isn't even part of Vista.

The virus exploits Microsoft Command Shell (MSH) technology, codenamed Monad.

I'll assume that F-Secure is right about the proof of concept viruses. But they mess up when it comes to MSH.

MSH is a scripting technology that is similar to the command shell in Unix-like operating systems. It gives administrators a way to manage a system without using any third party tools. It also allows Microsoft to get rid of the last remnants of the DOS prompt in Windows such as the command.com.

Although MSH was originally scheduled to ship as part Windows Vista, Microsoft has since decided to have its release coincide with the launch of Exchange 12. It won't ship as part of Vista, although both applications have a projected release date in the second half of 2006. And MSH isn't limited to Vista, but supports Windows XP and Windows Server 2003 too.

F-Secure however doesn't know about the release plans for MSH. That's OK for a security company, but the company then shouldn't have said that "rumours" suggest that the application won't ship as part of Vista.

All this is important because now suddenly F-Secure's "Vista" virus is nothing more than a MSH-virus. That doesn’t make for sexy headlines, but it would be factually correct.

The story gets worse. Based on F-Secure's misinformation, and attracted by a catchy headline, several technology websites copied the misinformation in the blog posting.

And so another myth was born.

UPDATE 8/5/05 9:37 AM:
As expected, the misinformation is spreading. At least Microsoft watch's Mary Jo Foley has it right.

In this case, misinformation is the true virus.

Tags: windows, windows vista, microsoft, virus, security, f-secure

August 5, 2005 at 05:28 AM | Permalink

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/t/trackback/24766/2949814

Listed below are links to weblogs that reference The world's first Windows Vista virus… isn't a Vista virus:

Comments

So True. Agree with you 100% on this.

Looks like F-Secure just wanted some attention.

Posted-by: Nimrod | 5 Aug 2005 12:13:49

F-Secure might might just get F-ing Sued by Microsoft for this. ...Probably not but you never know.

Posted-by: Craig | 5 Aug 2005 16:07:10

F-Secure has seen all malware types and are experts in the security industry, and if they deem this new development as a virus, based on their previous and current knowledge, then M.H. is probably right in his statement.
We all know Microsoft's lack of security in mind in their software (as well as their prominent market share...) and I'm not surprised at this proof-of-concept virus surfacing. It's been done before, and lo-and-behold Microsoft was targeted. What a surprise.

Posted-by: Shoshy | 9 Aug 2005 13:48:36

Right on.

Posted-by: | 9 Aug 2005 22:42:43

F-Secure went bad when they called this a Vista virus. The company should have properly researched if the MSH technology was in fact part of Vista before slapping the "Vista virus" label on to the Danom virus.

Posted-by: SV Sleuth | 10 Aug 2005 18:55:05

Agreed. MSH virus it is.

Posted-by: AnySpyware | 19 Nov 2005 07:44:24

i had never seen any virus for which you are saying about.if there are any problems in windows vista the microsoft has toput vista back in there box

ramesh negi

Posted-by: ramesh negi | 8 May 2008 07:57:17

Post a comment