Your Antivirus May Cut Off Microsoft Security Patches - TechAmok
Your Antivirus May Cut Off Microsoft Security Patches - [briefly]
11:00 AM EST - Jan,09 2018 - post a comment
It seems as though a lot of antivirus packages have been causing a lot of headaches for Microsoft Windows users and Microsoft support lately, in that with the Spectre and Meltdown being pushed out, some of those antivirus packages put the OS into a BSOD reboot state. Kevin Beaumont explained the issue
There is a problem where some anti-virus vendors are using techniques to bypass Kernel Patch Protection by injecting a hypervisor which they use to intercept syscalls and make assumptions about memory locations — memory locations which are now changing with the Meltdown fixes. To be honest, some of the techniques are similar to ones used by rootkits - Kernel Patch Protection was introduced by Microsoft a decade ago to combat rootkits, in fact. Because some anti-virus vendors are using very questionable techniques they end up cause systems to BSOD aka get into reboot loops.
You can read exactly what Microsoft has to say about this over on it support pages.
Microsoft has identified a compatibility issue with a small number of antivirus software products.
If you have run into this issue and can get back into the OS, a little RegEdit wizardry can help you out so that you can move forward and get those security updates.
The compatibility issue arises when antivirus applications make unsupported calls into Windows kernel memory. These calls may cause stop errors (also known as blue screen errors) that make the device unable to boot. To help prevent stop errors that are caused by incompatible antivirus applications, Microsoft is only offering the Windows security updates that were released on January 3, 2018, to devices that are running antivirus software that is from partners who have confirmed that their software is compatible with the January 2018 Windows operating system security update.
If you have not been offered the security update, you may be running incompatible antivirus software, and you should consult the software vendor.
Customers will not receive the January 2018 security updates (or any subsequent security updates) and will not be protected from security vulnerabilities unless their antivirus software vendor sets the following registry key:
Key="HKEY_LOCAL_MACHINE" Subkey="SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat" Value="cadca5fe-87d3-4b96-b7fb-a231484277cc" Type="REG_DWORD" - Data="0x00000000"
Add your comment (free registrationrequired)
Sep,20 2018 World's First Teardown of the Apple iPhone XS Sep,20 2018 iOS 12 is now available Sep,20 2018 Samsung Intros the Galaxy A7 with 3 Rear Cameras Sep,19 2018 Twitter Adds Ability to Send Replies While Watching Videos Sep,19 2018 NVIDIA GeForce 411.63 Game Ready Driver Sep,19 2018 How someone stole $200,000 from me Sep,19 2018 Mozilla Launches a VR Browser Sep,18 2018 How To Make a Bulletproof iPhone Case Sep,18 2018 Apple Turns the Page On iBooks, Now Apple Books In iTunes App Store Sep,18 2018 Congress Wants to Drop the Hammer on ZTE Should It Mess Up Sep,17 2018 CAPTAIN MARVEL - Teaser Trailer (2019) Sep,17 2018 Crash your iPhone with just a few lines of CSS Sep,17 2018 Google Adds a Dash of AI to Its Sound Search Song Seeker Sep,17 2018 RTX 2080 TI vs GTX 1080 TI Benchmark Sep,15 2018 NVIDIA GeForce RTX 2080Ti & RTX 2080 Benchmarks Sep,14 2018 Everything You Need to Know about the iPhone XS in 1 Minute Sep,14 2018 10 Things You Might Not have Noticed in Fortnite Sep,13 2018 Apple's new iPhones are priced absurdly high in Europe