Windows 7 Hacked in Seconds with a 3KB File

By Angsuman Chakraborty, Gaea News Network
Friday, April 24, 2009

windows-7-hackWindows 7, despite all the sophistication and rich services that millions are wondering about already, has that old bone of contention that Microsoft, surprisingly never took care of. When after a sluggish Windows Vista, we thought that Windows 7 may be the saviour, it can come as an anticlimax for Microsoft fanboys that Windows 7 was hacked from the boot process with only a 3 KB file by two researchers. If you are surprised, perplexed, out of your mind and ridiculing the whole truth, here is the catch, according to them,

There’s no fix for this. It cannot be fixed. It’s a design problem,

Welcome to good ol’ Microsoft my friend.

Researchers Vipin Kumar and Nitin Kumar used proof-of-concept code they developed, called VBootkit 2.0, to take control of a Windows 7 virtual machine while it was booting up.

Though techradar suggest that,

While VBootkit 2.0 shows how an attacker can take control of a Windows 7 computer, it’s not necessarily a serious threat. For the attack to work, an attacker must have physical access to the victim’s computer. The attack can not be done remotely.

Does that assure you?How many people in the world run a desktop computer (supposing you will run Windows 7 in that) for a single user?

Vipin Kumar also said,

VBootkit 2.0, which is just 3KB in size, allows an attacker to take control of the computer by making changes to Windows 7 files that are loaded into the system memory during the boot process. Since no files are changed on the hard disk, VBootkit 2.0 is very difficult to detect, he said.

Kumar and Kumar demonstrated an earlier version of VBootkit for Windows Vista at the Black Hat Europe conference.

If you are wondering what this software can do, here are two cents for you.

  1. the software allows an attacker to increase their user privileges to system level, the highest possible level.
  2. You can delete and modify a user’s password from his account and give it to someone else and subsequently play with his personal settings.

This is how secure Windows 7 is. Good luck.

[Information source:]


April 25, 2010: 6:30 am

the trick is to hack remotely, since physical access to any box could be easily secured :D

July 4, 2009: 8:35 pm

“Some fresh perspective” is 100% correct; if you want access to a system, any system, all you need is a live CD/USB with any flavor of linux that you want.

A way to solve this “design problem”: Don’t let people you can’t trust with your stuff into your house, or on your computer.

If you’re really paranoid, lock your BIOS.

Some fresh perspective
May 24, 2009: 7:04 am

Actually, no operating system in existence is really that secure at all. If you want to get admin privileges on a PC running Windows XP/Vista/7 look for something called trinity rescue kit. Just boot from CD, type in “winpass -i”, and flow the on screen instructions. So, what if the target is a Linux distribution, like Ubuntu? It’s even easier than Windows:

1) Pause system in the Grub.
2) Press ‘e’
3) Then select the ‘kernel /vmlinuz-xxxx ……’ line in the list of three
lines listed there.
4) Again pres ‘e’
5) Now add a single space in the end of the line and add ‘1′
6) Press ENTER
7) Press ‘b’
6) after getting the shell
7) [shell]# passwd root


Macs are even easier to hack. No CD or third party software or long list of memorized commands required. Just restart. Hold down the apple key and press S. Type in:

/sbin/mount -uw /
/bin/rm /var/db/.AppleSetupDone
shutdown -r now

The computer will reboot and act like it just came out of the box. You will get full admin access (without messing up anything on the computer).

And you call Windows 7 unsecure? I’d say that’s pretty unfair…

April 24, 2009: 3:31 pm

[...] Excerpt from: Windows 7 Hacked in Seconds with a 3KB File [...]

will not be displayed