Windows copy protection defeated

Hackers have found a way to circumvent a check in Windows that aimed to prevent users of pirated copies from accessing software updates.

By pasting a special JavaScript command in the address bar of the browser, users can disable the Windows Genuine Advantage 1.0 check that Microsoft took live last week.

The Microsoft technology uses an ActiveX tool to force users to go through an authentication check before they are allowed to access certain download sections on the Microsoft.com website. The JavaScript command simply instructs the computer to disable the WGA check and take the user straight to the downloads.

Users of pirated Windows copies still get access to security updates without passing the WGA check.

In addition to blocking users of pirated copies, the WGA check also unlocks access to a set of free software applications that Microsoft values at $450. Another part of the programme gives qualifying users of pirated copies the chance to buy a legal licence and swap in their software CD for a genuine one.

A spokesman for Microsoft acknowledged the hack to vnunet.com.

"Because of the high value that we provide to Windows Genuine Advantage users, we're not surprised that hackers try to circumvent the safeguards," he said.

Microsoft is investigating the hack and will take action to disable it.

The spokesman further pointed out that this is not a security vulnerability and that users are not put at risk.

Last May an Indian security consultant published another workaround that allows users to circumvent the WGA check by entering the validation key that the software provides on multiple machines. 

Click here for further information on how the JavaScript hack works.