The Hackers Who Found The First Windows 8 Bug Have Put It Up For Sale

Julie Bort

Fri, Nov 2, 2012, 1:37 PM

That didn't take long. Windows 8 was officially released a week ago and hackers have already found a security flaw in it.

But that's not even the worst news. These guys have not told Microsoft about the flaw. Instead, they're selling it to others, reports Computerworld.

The flaw was found by the French company Vupen, which makes a living finding vulnerabilities in popular software from companies like Microsoft, Adobe, Apple and Oracle, and then selling those flaws. Its customers are governments, corporations, and other institutions it supposedly vets for legitimacy. (Some hackers sell vulnerabilities to spammers and virus writers, who exploit the security holes to steal data and scam users.)

Vupen is a controversial company because it ignores a professional standard other security researchers observe. They report flaws to the software maker first and then wait at least 30 days before disclosing the flaw to others.

The company has found a vulnerability with Windows 8 and Internet Explorer 10, but since it is selling the information, not disclosing it, there's not much known about these flaws yet except what Vupen said in a tweet posted a couple of days ago about the so-called "zero-day" vulnerability. (A "zero-day" vulnerability is a previously unknown one.)

Vupen claims to have bypassed Microsoft's "sandbox," a protective environment in which new Windows 8 software runs, isolated from other software components.

Our first 0day for Win8+IE10 with HiASLR/AntiROP/DEP & Prot Mode sandbox bypass (Flash not needed) is ready for customers. Welcome #Windows8

— VUPEN Security (@VUPEN) October 30, 2012

What this means for Windows users is that hackers have turned their attention onto Windows 8 and Internet Explorer 10. That's a bummer. Windows malware is a big headache for consumers and businesses alike.

However, Microsoft has made it tougher for hackers to use flaws they find in Windows 8.

So even if hackers like Vupen find holes in Windows 8, it's a lot harder for the bad guys to create attacks that would actually harm computers.

Don't miss: 10 Computer Crooks Who Have Secretly Made Your Life Miserable >

More From Business Insider

The Headache at the End of the Costco Gold Rush
Costco made buying a gold bar as simple as tossing it in a shopping cart. Adam Xi, 33 years old, called five different dealers to get a price he could accept for the gold bar he bought at Costco in October. Costco shoppers are spending as much as $200 million monthly on gold, according to a Wells Fargo estimate.
The Wall Street Journal•2h ago
Don't buy the dip in stocks just yet as a wave of selling is about to bring the market to a bottom, according to one of the biggest bulls on Wall Street
The S&P 500 could bottom out in the next month, according to Fundstrat's head of research Tom Lee.
Business Insider•13h ago
Time to Pounce: 2 Superb Utility Stocks That Haven't Been This Cheap in at Least 10 Years
One of the fastest-growing utility stocks, along with "Wall Street's Greatest Dividend Stock," make for phenomenal buys right now.
Motley Fool•5h ago
Prediction: This Artificial Intelligence (AI) Stock Could Be Worth More Than Microsoft 5 Years From Now
Microsoft has been one of the pioneers in the field of AI, but this tech giant is also set to win big time from the growing adoption of this technology.
Motley Fool•55m ago
Tesla's EV success made it 'Magnificent.' It could also be its downfall.
Tesla's growth story was about leading the paradigm shift to EVs, and an affordable car was a part of that story. Now without it, the narrative has changed.
Yahoo Finance•4h ago
Trump Media stock jumps for second day as company goes to battle with short sellers
Trump Media is advising investors on ways to prevent their shares from being loaned for a short-interest position.
Yahoo Finance•21h ago
Here's What the Average Senior Couple Collects in Social Security Today
The number may be smaller than expected.
Motley Fool•5h ago
2 Popular Artificial Intelligence (AI) Stocks to Sell Before They Drop 29% and 77%, According to Certain Wall Street Analysts
Certain Wall Street analysts see substantial downside for shareholders of Tesla and Palantir Technologies.
Motley Fool•6h ago
Jamie Dimon Knew Subprime 'Could Go Up In Smoke'; Now He's Worried About An Artificial Economy 'Fueled by Government Deficit Spending'
In the chaos of the 2008 recession, perhaps no bank stood more prepared than Jamie Dimon's J.P Morgan Chase & Co. (NYSE:JPM). In advance of the crisis, Jamie Dimon realized that "underwriting standards were deteriorating across the industry," with late payments on subprime loans rising. In late 2006, the bank led his firm to exit Wall Street's hot subprime business, starting with a frantic call made to J.P. Morgan's vacationing Chief of Securitized Products where he said, "I really want you to w
Benzinga•23h ago
This 6.4%-Yielding Dividend Stock Remains an Extremely Safe Option for Passive Income
Kinder Morgan generates very durable cash flow to support a steadily rising dividend.
Motley Fool•3h ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

Yahoo Finance

The Hackers Who Found The First Windows 8 Bug Have Put It Up For Sale

Recommended Stories

The Headache at the End of the Costco Gold Rush

Don't buy the dip in stocks just yet as a wave of selling is about to bring the market to a bottom, according to one of the biggest bulls on Wall Street

Time to Pounce: 2 Superb Utility Stocks That Haven't Been This Cheap in at Least 10 Years

Prediction: This Artificial Intelligence (AI) Stock Could Be Worth More Than Microsoft 5 Years From Now

Tesla's EV success made it 'Magnificent.' It could also be its downfall.

Trump Media stock jumps for second day as company goes to battle with short sellers

Here's What the Average Senior Couple Collects in Social Security Today

2 Popular Artificial Intelligence (AI) Stocks to Sell Before They Drop 29% and 77%, According to Certain Wall Street Analysts

Jamie Dimon Knew Subprime 'Could Go Up In Smoke'; Now He's Worried About An Artificial Economy 'Fueled by Government Deficit Spending'

This 6.4%-Yielding Dividend Stock Remains an Extremely Safe Option for Passive Income