Discussion in 'malware problems & news' started by ronjor, Nov 13, 2012.
Perhaps a reason for MS not to hide extensions by default?
You are damn right!
File-Extensions should Not be Hidden.
More provisions should be taken by MS to ensure that
File-Extensions cannot easily Modified, become Hidden etc.
I've never understood the logic behind hiding extensions.
Hiding Extensions does Not facilitate Security...
I would be willing to bet that in the 7 years that I did IT before the MBAM project I un-hid and explained extensions at least 1000 times. People accepted the change and were happy to know that this removed an obvious way that they could be exploited.
IMO MS underestimated the user when it comes to understanding extensions and even though hiding them has presented a constant security issue for more than 10 years now admitting that they are wrong is still too much to ask of them.
Researching malware I cannot tell you how many thousands of samples I have seen like report.pdf.exe (with an acrobat icon), movie.mpg.exe (with a WMP icon) or music_folder.exe (with a folder icon). The bad guys are well aware how easy this is to exploit and MS simply does not care enough to stop them.
The delete command probably forced them to hide those files.
Separate names with a comma.