Your Antivirus May Cut Off Microsoft Security Patches - TechAmok
Your Antivirus May Cut Off Microsoft Security Patches - [briefly]
11:00 AM EST - Jan,09 2018 - post a comment
It seems as though a lot of antivirus packages have been causing a lot of headaches for Microsoft Windows users and Microsoft support lately, in that with the Spectre and Meltdown being pushed out, some of those antivirus packages put the OS into a BSOD reboot state. Kevin Beaumont explained the issue
There is a problem where some anti-virus vendors are using techniques to bypass Kernel Patch Protection by injecting a hypervisor which they use to intercept syscalls and make assumptions about memory locations — memory locations which are now changing with the Meltdown fixes. To be honest, some of the techniques are similar to ones used by rootkits - Kernel Patch Protection was introduced by Microsoft a decade ago to combat rootkits, in fact. Because some anti-virus vendors are using very questionable techniques they end up cause systems to BSOD aka get into reboot loops.
You can read exactly what Microsoft has to say about this over on it support pages.
Microsoft has identified a compatibility issue with a small number of antivirus software products.
If you have run into this issue and can get back into the OS, a little RegEdit wizardry can help you out so that you can move forward and get those security updates.
The compatibility issue arises when antivirus applications make unsupported calls into Windows kernel memory. These calls may cause stop errors (also known as blue screen errors) that make the device unable to boot. To help prevent stop errors that are caused by incompatible antivirus applications, Microsoft is only offering the Windows security updates that were released on January 3, 2018, to devices that are running antivirus software that is from partners who have confirmed that their software is compatible with the January 2018 Windows operating system security update.
If you have not been offered the security update, you may be running incompatible antivirus software, and you should consult the software vendor.
Customers will not receive the January 2018 security updates (or any subsequent security updates) and will not be protected from security vulnerabilities unless their antivirus software vendor sets the following registry key:
Key="HKEY_LOCAL_MACHINE" Subkey="SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat" Value="cadca5fe-87d3-4b96-b7fb-a231484277cc" Type="REG_DWORD" - Data="0x00000000"
Add your comment (free registrationrequired)
Jun,19 2018 iOS 12 to Give 911 Precise iPhone Location During Emergencies Jun,19 2018 Google Says Android Messages Now Fully Available On the Web Jun,18 2018 NVIDIA SLowMo Even Better than Real SloMo Jun,18 2018 Cryptocurrencies: looking beyond the hype Jun,17 2018 BODY COUNT - Institutionalized (Official Music Video Jun,16 2018 The best pics on the Internet #257 Jun,15 2018 NVIDIA - Anti-Competitive, Anti-Consumer, Anti-Technology Jun,15 2018 Windows 10 Build 17692 Improvements Jun,14 2018 Intel Readying 22-core LGA2066 and 8-core LGA1151 Processors Jun,14 2018 Intel CPUs have another bug that can leak sensitive information Jun,14 2018 Synology Releases Active Backup for Office 365 and Business Jun,14 2018 AMD Radeon Adrenalin 18.6.1 Jun,13 2018 Microsoft HoloLens 2 Tipped For Q1 2019 Launch Jun,13 2018 Google Brings Offline Neural Machine Translations to Mobile Jun,13 2018 Apple Will Lock iPhone Lightning Port to Protect Users from Law Jun,13 2018 Layers of Fear is available for free Jun,12 2018 This Woman Is Exceedingly Good At Making Bubbles Jun,12 2018 Tesla Updates Autopilot Nag - Whiners Start Whining