AD (728x90)

Latest Technology News:

11.6.16

Microsoft Is Spying On Your Codes Through Visual Studio 2015 !!

By: Vaibhav On: 22:23:00  In:  No comments











Recently a Reddit user sammiesdog found that Visual Studio 2015 C++ compiler was inserting calls to a Microsoft telementry function into binaries.

The user said that  "I compiled a simple program with only main(). When looking at the compiled binary in IDA, I see a call for telemetry_main_invoke_trigger and telemetry_main_return_trigger. I cannot find documentation for these calls, either on the web or in the options page," 

Microsoft inserting telemetry_main_invoke_trigger and telemetry_main_return_trigger into binaries as they are compiled. They have been found in both debug and release versions of the software in Windows 7 and Windows 10. 

Telemetry data is a sensitive subject with Microsoft users, and at the start, most people thought this to be another method through which Microsoft adds telemetry calls to snoop on users and the way they use their software on Windows.

Microsoft also said that “Our intent was benign – our desire was to build a framework that will help investigate performance problems and improve the quality of our optimizer should we get any reports of slowdowns or endemic perf problems in the field.

“We apologize for raising the suspicion levels even further by not including the CRT source, this was just an oversight on our part. Despite that, some of you already investigated how this mechanism works in nice detail. As you have already called out, what the code does is trigger an ETW event which, when it’s turned on, will emit timestamps and module loads events. The event data can only be interpreted if a customer gives us symbol information (i.e. PDBs) so this data is only applicable to customers that are actively seeking help from us and are willing to share these PDBs as part of their investigation. We haven’t actually gone through this full exercise with any customers to date though, and we are so far relying on our established approaches to investigate and address potential problems instead.”

Also Read :- IRCTC WEBSITE HACKED 

http://rareitnews.blogspot.in/2016/05/irctc-website-hacked-data-of-more-then.html

Written by

Vaibhav Dhiman is a student,learner and freelance developer.

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

 

Developed by: Vaibhav and Karan

  • Google+
  • YouTube