Viruses already like Windows 7?

Several sources state that Windows 7 is programmed so that it is very easy to create an application that disables UAC without permission or user intervention.

 Vista and UAC

 As a reminder, the UAC (User Account Control) is a device that alerts the user when an operation in progress can potentially endanger the system.It is a means available to the user to stop the start of a virus before it is too late, for example.

 The Vista UAC was highly criticized because it was too present.  It launched too many warnings and ultimately the user unaware or disabling UAC altogether.We know that Microsoft has tried to remedy this problem with Windows 7 by offering a UAC which involves fewer users.  The problem is that the current configuration of UAC makes it likely to be disabled by a virus without the user is alerted.

 UAC vulnerable default!

 How is this possible?  By default, the UAC is configured to alert the user to change a third party attempts to change the computer settings, but gives no warning if the user only changes the settings of Windows.  Indeed, the modules are Windows certified and can therefore change the computer settings without causing the appearance of a warning message.  It is possible that an external program through a module of Windows to completely disable UAC.

 This failure is interesting, because Microsoft has recognized this problem on the platform gathering feedback on Windows 7.  The software vendor says, however, that this is not a bug, but that is part of the design of UAC 7.This means that this problem will not be corrected in principle on the final version of the system of exploitation.

 A warning to Microsoft

 It is worth noting one thing that seems important.  It is very common when operating system is about to leave, as antivirus vendors cry wolf in order to inflate their sales.  However, in this case, it is a particular case.  The author of the alert does not appear to be affiliated with a company selling a software / service for Windows and offers a file serving as a proof of concept; just disable UAC in Windows 7 without generating a message alert.

 Disable UAC would allow a malicious program to place a series of virus to the user, as shown in the demo file.  However, there is a parade where Microsoft would not want to change policy.  It is possible to force the UAC to issue a warning Secure Desktop mode.  It can also enhance the security of the UAC to notify the user of what is happening.  One can nevertheless wonder if the measure is actually safer.  Indeed, too many warnings kill the warning and the user tired of the warnings could click yes without realizing he is about to open Pandora’s box.