Microsoft tweaks Autoplay in Windows 7 to tighten security

Malware such as Conficker worms has had Microsoft reevaluating how Windows 7 addresses such security issues. To tighten security, Microsoft has made changes to the way Autoplay works in Windows 7.

Before the change, malware could easily trick users into installing it

The above image is an example of how Autorun can be exploited through AutoPlay to install malicious scripts. Even an experienced user may be easily fooled by the false “Open folder to view files” selection. According to Microsoft, AutoRun alone accounted for 17.7% of malware infections in second half 2008, and was actually the single largest category of malware infections.

As a result, removable devices will no longer be permitted to use AutoRun with the exception of “smart” USB drives such as those containing U3 software and can appear as DVD drives. Non-removable drives such as CD and DVD drives will still be able to use AutoRun.

After the fix, AutoRun options are no longer available for removable disks

The change is to be rolled out with Windows 7 RC. Microsoft says they will roll out the same changes through an update with Vista and XP soon.

Related posts:

1. Security research team find unfixable Windows 7 hack Security researches Vipin Kumar and Nitin Kumar announced at the Hack in the Box security…
2. First security patch comes out for Windows 7 Earlier today, Microsoft issued an out-of-cycle security patch for Windows affecting many operating systems including…

. Read the rest at windows7center.com.