Windows 7
Several malicious applications have exploited the autorun component in Windows

Microsoft to switch off AutoPlay in Windows 7

Autorun tweak closes off popular attack method

Shaun Nichols in San Francisco

vnunet.com, 29 Apr 2009

Microsoft has announced that it will close off a component in Windows which is notorious for allowing covert malware attacks.

The company will modify the AutoPlay feature in Windows 7 to prevent external components such as USB drives automatically executing code when plugged into a PC.

The new operating system will no longer present the option to install or run programs installed on the drive, instead allowing the user to open them within Windows Explorer.

Microsoft's decision follows a string of malicious applications that exploited the component to install malware automatically.

The malware was disguised with a common name and icon option, such as 'Open folder to view files', which could then be selected by the user to run as AutoPlay, thereby launching the malware attacks.

Microsoft said that several malicious applications, including Conficker, had been exploiting the component. The attacks stem from similar techniques used by some of the earliest computer viruses to infect floppy disks.

The AutoPlay change will only apply to removable drives. Optical media, such as CDs and DVDs, will still be able to access the feature for operations such as launching game files.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Do you agree?

Have your say on this article

Further reading

Windows 7

Windows 7 to get XP Mode for compatibility

Virtualisation tool will help small firms migrate to next-gen Microsoft OS

RSA 2009

Top 10 themes from RSA

The best of this year's security show

Windows 7 release candidate date confirmed

Latest software will become available on 30 April

US DOJ extends cut-off date for Microsoft oversight

Anti-trust provisions could ease after Windows 7

Related white papers

Related jobs

Most watched

Black Hat: Speaking with Cisco CSO John Stewart

Security chief reflects on changes to the industry

Nuance Dragon 11

Nuance Dragon 11 video demo

We get a look at the speech recognition software in action

More video

Analysis and Reports

MessageLabs intelligence report June 2010
In June, MessageLabs identified an average of 1,598 websites each day harbouring malware and other potentially harmful programs.

Six steps to data protection for SMEs
Today's data protection challenges pose substantial risks to companies of all sizes, but they pose the greatest risk to small and midsize businesses.

Poll

Gary McKinnon poll

Gary McKinnon poll

Should Gary McKinnon serve a prison sentence in the UK?

View poll results

White paper library

Attachmate

Smartstream

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you thousands of white papers, case studies and analyst reports.

Newsletter signup

Sign up for our range of FREE newsletters:

  • More available - 'submit' to view

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Spotlight

Steve Ballmer

Ballmer confirms Microsoft working on iPad rival

Windows 7-based slate device is top priority, says chief exec

Black Hat: Speaking with Cisco CSO John Stewart

Security chief reflects on changes to the industry

Facebook

Top 10 articles: Facebook pros and cons, and IPv4 warnings

V3.co.uk readers' most popular stories this week

Motorola Flipout hands on

The Motorola Flipout looks like a strange device with its...

Primary Navigation