LG Ultrawide screens leaves Windows PC open to malware

[GoodBytes]

If you have LG ultrawide monitor, and you used the setup program that comes with it for the monitor utility which allows you to create virtual screens, then your system is exposed to malware.

Lazy developer at work here. The developers could not understand how to develop under Windows environment, so instead of reading documentation on understanding how to make a software, LG decided to disable Windows User Account Control protection system as valid solution, in their eyes, and not informing the user about it.

 

The problem surrounds the Windows utility UAC, which is short for User Account Control. The feature is designed to defend your PC against hackers and malware by asking you for permission when your software makes a change. That way, only programs that you're actually installing can be added to the system.

LG Spokesperson said that they are aware of the issue, and are looking into it.

"We are aware of the problem that Mr. Bachner wrote about and will look into this immediately. We appreciate Mr. Bachner bringing this to our attention and expect to have a response shortly. We apologize for any inconvenience this may have caused."

Source: http://www.engadget.com/2015/04/09/lg-screen-software-may-be-malware-risk

This post has been promoted to an article

[ShadowCaptain]

3 words spring to mind

"what"

"the"

and 

"fuck"

[othertomperson]

Disabling UAC is step one in using Windows anyway tbf

[terrytek]

Good think i don't have an ultrawide monitor, though i kinda want one.

[RH00D]

Wow LG. That is just plain negligence. Completely unacceptable.

[Nexxus]

UAC is lucky if it lasts an hour on my machines anyways lol

[terrytek]

UAC is lucky if it lasts an hour on my machines anyways lol

I turned mine off a long time ago since its been pissing me off lately lol

[Notional]

Wow, that sucks a lot. One tip for AMD users, is to use Hydravision instead, which can do the same (and much much more): http://support.amd.com/en-us/kb-articles/Pages/HYDRAVISION-ForRADEONandMobileATIProducts.aspx

[Timopomer]

are you guys kidding me?

 

any program can turn itself into a program which is with admin privileges in seconds. ive done it before.

 

no it does NOT open your pc to infections any more than it was before because any mallicious program could do anything it wants even tho UAC or whatever is enabled.

 

the fact the had to change the setting to install drivers is sad but no reason to bitch so hard about it. just change it back

[SIGSEGV]

How do I programming?

[RH00D]

Disabling UAC is step one in using Windows anyway tbf

 

 

UAC is lucky if it lasts an hour on my machines anyways lol

 

 

I turned mine off a long time ago since its been pissing me off lately lol

 

 

are you guys kidding me?

 

any program can turn itself into a program which is with admin privileges in seconds. ive done it before.

 

no it does NOT open your pc to infections any more than it was before because any mallicious program could do anything it wants even tho UAC or whatever is enabled.

 

the fact the had to change the setting to install drivers is sad but no reason to bitch so hard about it. just change it back

 

Jesus Christ these posts make me cringe.

 

Running Windows as admin without UAC is as naive as running Linux as the root account by default.

 

You folks probably would run Linux as root too though since Linux is even more inconvenient in that it requires you to enter your password and not just click "Yes" every time an admin task is initiated. There is no such thing as convenient security. You folks are a hackers wet dream.

[othertomperson]

Jesus Christ these posts make me cringe.

 

Running Windows as admin without UAC is as naive as running Linux as the root account by default.

 

You folks probably would run Linux as root too though since Linux is even more inconvenient in that it requires you to enter your password and not just click "Yes" every time an admin task is initiated. There is no such thing as convenient security. You folks are a hackers wet dream.

 

Linux was designed from the off to handle multi users of differing privilege. Windows wasn't. Therefore what Linux and Windows consider admin tasks are fundamentally different. You can use Linux in everyday life without needing admin privilege constantly. Windows is another story since it was designed to always have admin privilege anyway.

[deviant88]

No one uses UAC...

[zonahbear]

Jesus Christ these posts make me cringe.

 

Running Windows as admin without UAC is as naive as running Linux as the root account by default.

 

You folks probably would run Linux as root too though since Linux is even more inconvenient in that it requires you to enter your password and not just click "Yes" every time an admin task is initiated. There is no such thing as convenient security. You folks are a hackers wet dream.

I turned down UAC until my PC got infected

never turning it off again

[RH00D]

Linux was designed from the off to handle multi users of differing privilege. Windows wasn't. Therefore what Linux and Windows consider admin tasks are fundamentally different. You can use Linux in everyday life without needing admin privilege constantly. Windows is another story since it was designed to always have admin privilege anyway.

 

Still doesn't change the fact that running Windows without UAC is phenomenally ignorant and asking to get your system compromised.

[Nexxus]

snip

Been doing it for 6/7 years now without problem. im hardly concerned. 

[Scheer]

Jesus Christ these posts make me cringe.

 

Running Windows as admin without UAC is as naive as running Linux as the root account by default.

 

You folks probably would run Linux as root too though since Linux is even more inconvenient in that it requires you to enter your password and not just click "Yes" every time an admin task is initiated. There is no such thing as convenient security. You folks are a hackers wet dream.

 

The way I look at it, is there is absolutely no way to be 100% safe, if someone wants your stuff, they can get your stuff. Don't think for a second you are safe.

 

So I run pfSense for security from all the random port open attacks, anti-virus, etc., and if anyone is good enough to get past that, then I'm pretty sure UAC isn't going to stop them so why make it a hassle for myself?

 

I haven't used UAC since a few days after Vista was released and I figured out how to turn it off. Never get viruses and if someone is stealing my information without me knowing they haven't been doing a good job with the info.

[othertomperson]

Still doesn't change the fact that running Windows without UAC is phenomenally ignorant and asking to get your system compromised.

 

It makes the comparison with Linux invalid though. Linux is just a much better operating system in general.

[DeViLzzz]

LG was planning to use this to their advantage and gather/harvest data with other software too but are now like oops we have been caught.

[RH00D]

The way I look at it, is there is absolutely no way to be 100% safe, if someone wants your stuff, they can get your stuff. Don't think for a second you are safe.

 

So I run pfSense for security from all the random port open attacks, anti-virus, etc., and if anyone is good enough to get past that, then I'm pretty sure UAC isn't going to stop them so why make it a hassle for myself?

 

I haven't used UAC since a few days after Vista was released and I figured out how to turn it off. Never get viruses and if someone is stealing my information without me knowing they haven't been doing a good job with the info.

 

Do you also leave all the doors on your house unlocked because if someone wants to get in they will?

 

It makes the comparison with Linux invalid though. Linux is just a much better operating system in general.

 

So disregard the comparison then. This discussion isn't about how good Linux is or isn't. Running Windows with UAC off is incredibly naive and ignorant.

[The Benjamins]

isn't the title wrong, its not the monitors but the software that is the issue?

[Scheer]

Do you also leave all the doors on your house unlocked because if someone wants to get in they will?

 

Funnily enough, I honestly do leave the house unlocked at all times, I actually don't even know if I have keys for the front door. Never been robbed either.

 

I do, however, keep my detached garage locked.

 

 

 

Running a normal firewall is like locking your doors, it keeps the honest people honest, but a thief is still going to break a window or something and get in.

 

Running UAC is like having a $50/month subscription alarm system. The damn thing goes off all the time when you don't want it to, you're always clicking buttons to enter/leave, and you still get all your crap stolen when some guy back at ADT or whatever messes up and doesn't call the cops.

[othertomperson]

So disregard the comparison then. This discussion isn't about how good Linux is or isn't. Running Windows with UAC off is incredibly naive and ignorant.

 

And completely predictable. I consider the frustration introduced by UAC (coupled with the fact that software can just opt to remove it without the user's consent!? lmfao cool security bro) a failing of Windows, and so Microsoft's fault.

 

This reminds me of the time when I was setting up alternative "My Documents" folders on a family PC and so that only one user could view the contents of each (their own folder). I cocked it up and locked everyone (myself included) out of one of them. I didn't have privilege to access the folder, but I did have privilege to change the privilege settings of the folder so that I could. Windows is hilarious like that.

[GoodBytes]

Linux was designed from the off to handle multi users of differing privilege. Windows wasn't. Therefore what Linux and Windows consider admin tasks are fundamentally different. You can use Linux in everyday life without needing admin privilege constantly. Windows is another story since it was designed to always have admin privilege anyway.

You cannot be more wrong. Windows NT 3 (1 and 2 didn't exist) was designed for accounts since day 1.

You can perfectly use Windows without admin privileges constantly.

[GoodBytes]

And completely predictable. I consider the frustration introduced by UAC (coupled with the fact that software can just opt to remove it without the user's consent!? lmfao cool security bro) a failing of Windows, and so Microsoft's fault.

 

This reminds me of the time when I was setting up alternative "My Documents" folders on a family PC and so that only one user could view the contents of each (their own folder). I cocked it up and locked everyone (myself included) out of one of them. I didn't have privilege to access the folder, but I did have privilege to change the privilege settings of the folder so that I could. Windows is hilarious like that.

Linux based software can do the same. Give it root, and watch it at work.

Your point is invalid