PC Gamers warned on codes that disable Windows Firewall

We all know most homebrew developers mean no harm and just want to contribute on the gaming front. While they are considered to be good hackers, there are still a few misguided ones who are fond of wearing the black hat. Just two days ago, these good-for-nothing scums have published a code that allows attackers to disable the Windows Firewall on certain XP machines.

While Microsoft reports that they are still to receive word regarding any attacks or customer impact, the company admits and knows well an attack is highly imminent. nCircle Network Security Research Engineer Tyler Reguly agreed but added that that scenario is a bit unlikely for now. “For example, the attacker would have to be within the LAN in order to make the attack work, and, of course, it would only work on systems using ICS (Internet Connection Service), which is disabled by default,” said Reguly.

Accordingly, the code is an instrument to disable the Windows Firewall of a fully patched Windows XP unit. Any attacker then could send in a harmful data packet to another PC using ICS. This then would cause the defense service to bog down.

Secure Network SRL Chief Technology Officer Stefano Zanero suggests an easy solution may be for ICS users to simply move their networks onto a router. Otherwise known as Network Address Translation, Zanero adds these offer better protection and are relatively cheap.

Via PCWorld

We all know most homebrew developers mean no harm and just want to contribute on the gaming front. While they are considered to be good hackers, there are still a few misguided ones who are fond of wearing the black hat. Just two days ago, these good-for-nothing scums have published a code that allows attackers to disable the Windows Firewall on certain XP machines.

While Microsoft reports that they are still to receive word regarding any attacks or customer impact, the company admits and knows well an attack is highly imminent. nCircle Network Security Research Engineer Tyler Reguly agreed but added that that scenario is a bit unlikely for now. “For example, the attacker would have to be within the LAN in order to make the attack work, and, of course, it would only work on systems using ICS (Internet Connection Service), which is disabled by default,” said Reguly.

Accordingly, the code is an instrument to disable the Windows Firewall of a fully patched Windows XP unit. Any attacker then could send in a harmful data packet to another PC using ICS. This then would cause the defense service to bog down.

Secure Network SRL Chief Technology Officer Stefano Zanero suggests an easy solution may be for ICS users to simply move their networks onto a router. Otherwise known as Network Address Translation, Zanero adds these offer better protection and are relatively cheap.

Via PCWorld