>>106813584
Yea the only real world risk of being "hacked" as someone who browses the Internet and plays video games, is running unknown software on your PC, or plugging in your win7 computer to the coffeeshop. 99% of you who stay on 7 or 10, will be fine because you're behind a firewall. We still have windows XP machines at work, and we just put them on an isolated VLAN.

>>106813584
You can do what you want pham, but expect people to support your old ass OS is all we're sayin

>>106813584
>normalfag panic
they are microsoft shills

>>106813614
>but expect people to support your old ass OS
don't expect*


reeeee

>>106813613
>running unknown software on your PC, or plugging in your win7 computer to the coffeeshop
Even then you can just sandbox everything EZPZ.

>>106813584
it is literally pajeet shills from india working for microsoft. sometimes i copy and paste their text into a .txt file just to save it for references, and often it comes up as unsavable in the default ANSI encoded format because their 'english' letters are actually written with unicode from a hindi typeset.

>>106813614
but that isnt what you are saying you lying piece of shit.

>>106813584
Those claims are just propaganda, usually spread by h1b shitskins from microsoft or linux trannies. Those people either actually dont know how computers work or they pretend to do so. You are not going to get magic internet aids just because you use older windows version. Their end goal is to make you updoot to new, inferior windows versions or troonix (which is also user-hostile).

>>106813791
Just replace those letters with actual english ones before saving it

>>106813584
It's the same panic that scared normalfags away from Adobe Flash Player.

>>106813858
Flash in particular was frustrating. Just sandbox it and suddenly it's no longer a problem.

>>106813584
https://en.wikipedia.org/wiki/Spectre_(security_vulnerability)
>Microsoft is reported to have released an important Windows 10 (v1809) software mitigation to the Spectre v2 CPU vulnerability
>>Windows 10

>it can also be remotely exploited by code hosted on remote malicious web pages, for example interpreted languages like JavaScript, which run locally using a web browser

https://www.youtube.com/watch?v=V_9cQP60ZGI

https://nvd.nist.gov/vuln/search#/nvd/home?keyword=windows%207&resultType=records
>truckload of vulnerabilities, but year-to-year number of created CVEs mentioning windows 7 is going down simply because nobody cares; doesn't mean it's not there

https://nvd.nist.gov/vuln/detail/CVE-2023-2137
>vulnerability on Google Chrome prior to 112
>last supported Google Chrome for Windows 7 is version 109

https://nvd.nist.gov/vuln/detail/CVE-2022-48434
>using older video players to support windows 7 probably means using older, vulnerable, ffmpeg builds

etc.

The direction of Windows 10/11 isn't the best, but you're not cool for using unsafe software, you're just an idiot. If you don't like Windows use Linux instead.

>>106813956
So what? Windows 11 also has undiscovered zero days.
>BUT THEY'LL BE PATCHED
They're not patched now. OOOOOO, spooky, should you stop using 11 immediately because of it? No, that'd be retarded.
>BUT 7/10 VULNERABILITIES WILL NEVER BE PATCHED!
So use common sense and don't go on random sites without adblockers and other security measures. You should also do this while on 11, because again. Unpatched zero days are on 11 too.

>>106813956
>Spectre
Skill issue

>using unsupported software
Skill issue

Simply don't download malware outside your sandbox.

Simply don't use unsupported software.

I know it's hard but this is just good practice regardless of OS.

>>106813971
>>106813971
>don't go on random sites without adblockers and other security measures
Not only websites, but also don't open random videos, images, audio, games, PDFs, spreadsheets, documents, you name it. Maybe don't connect to a network also because there's a chance for vulnerability on NDIS drivers, Windows filesharing, Network Autodiscover, dhcp client, etc.

I agree with you!!! Don't do random stuff without security measures.
But security patches are security measures too, they increase security significantly and are automatically applied for your convenience.On supported software.

>zero days
Yeah sucks.

Hope this helps.

>>106814003
>Simply don't use unsupported software.
This! Don't use unsupported software, like the humoungus collection of unsupported software known as Windows 7

>>106813584
Simply connecting to the Internet can get you hacked. They will port scan every possible IP address, targeting yours by brute force.
7 will likely have a lot of entry points.

>>106814064
most retarded nigger award

>>106814051
Third party software supports Windows 7 though, and that's all that matters.

>>106813584
if you can be bothered, watch this:
>https://www.youtube.com/watch?v=6uSVVCmOH5w
the tl;dr is that once unpatched vulnerabilities have been discovered, you're eventually going to be infected no matter what you do
leave the machine idle if you want—if it's online, it's going to be infected within minutes
no 'best practices' are going to keep you safe on any EOL OS, save removing the network card and damaging the USB ports

this is not your area of expertise

>>106814024
>ANY FILE FORMAT COULD BE INFECTED, AND COULD INFECT ANY OS BECAUSE OF KNOWN AND UNKNOWN VULNURABILITIES, SO NEVER INTERACT WITH ANY FILE EVER
Moronic paranoia.

>>106814071
ChatGPT, cook his ass:

Yes — Windows 7 has multiple known vulnerabilities that allow remote code execution or compromise simply by connecting the machine to a network, even without user interaction. These are typically in network-facing services or protocol stacks that are enabled by default (or commonly left on), such as SMB, NDIS, RDP, and network discovery.

 Summary Table
Category    CVEs    Attack Vector    Interaction    Risk
SMBv1    CVE-2017-0144, -0145    TCP 445    None    Critical / Wormable
RDP    CVE-2019-0708, -1181    TCP 3389    None    Critical / Wormable
Network Discovery    LLMNR, NetBIOS    LAN broadcast    Passive    High (Relay / Cred Leak)
NDIS / TCP/IP    CVE-2010-3148, -1892    LAN / crafted packets    None    High (DoS / Potential RCE)
HTTP.sys    CVE-2015-1635    TCP 80/443    None    Critical (RCE)

 Important Note about Windows 7

Windows 7 is no longer supported since January 2020 (ESU ended January 2023).

Even with a firewall, certain vulnerabilities (like those in NDIS stack or HTTP.sys) can be exploited before the firewall or at kernel level.

>>106814088
>>106814105
I love how you dumb niggers outsource thinking reveal your niggerness.

>>106814097
Well no, any file format could be infected, and could infect *unsupported* software because of *known* vulnerabilities that are not fixed, as a result of the software being unsupported.

File: download (1).jpg (5 KB, 237x212)

5 KB JPG

>>106814105
While I think this is crazy to run. If you're behind NAT and you have a fully updated browser, what would be their vector of attack exactly?

Unless there's a way to exploit an already established TCP connection? Maybe if they connected to a rogue server that could exploit some kind of RCE this way.

Find me a bug like this then you will have a good point.

>>106814124
And it could also infect SUPPORTED software because patches are always behind vulnerability discoveries. Often several months behind, if the hacker maintains good opsec.
Again, retarded paranoia. Use common sense, make sure to use an adblocker, get an antivirus if you're super concerned.
>BUT UNSUPPORTED-
Moronic.
Paranoia.
Are you more vulnerable? Sure, maybe. But you are not magically a target because hackers don't actually care about some rando on 7 or 10, they care about businesses on 11.

>>106814124
Just sandbox.

File: stonedazusa.png (224 KB, 486x562)

224 KB PNG

>>106814088
This guy probably isn't behind NAT and is exposing the machine to the internet directly. See >>106814127


I sure as fuck wouldn't be running Windows 7, but unless there's something like I mentioned above I am not sure how they would get you.

Maybe if you were running a bittorrent client with an exposed port and there's some way to send a specially crafted packet that will exploit the TCP/IP stack? Usually though these would have to be a bug in whatever program is listening on the port, but I could imagine there might be some way to do an RCE via direct exploitation of the networking stack, but that would be very rare.

>>106814142
This is stupid logic, because if you're running an old BT client or something you could get yourself owned immiately.

>they care about businesses on 11.

Lol no, people are always looking to grow their DDoS botnets or find ways to steal people's money.

Running outdated vulnerable software that could be remotely exploited is indeed a real risk, but would there be anything that really refuses to run on 7 that is like this is the question?

>>106814165
It's not "stupid logic" to say that up to date software is currently vulnerable to X, Y, and Z zero days, because that's a statement of fact and worrying about it is insanity. Perfect security is impossible, and people running the latest patches get owned all the time. Does this mean you should throw your computer into a river and go live in a cave? No.

Who even gives a shit? Nobody uses windows 7. I'm sure there is big concern over the 5 or so Africans that still use it getting haxored.

File: gnu ad in china.jpg (134 KB, 700x467)

134 KB JPG

linux doesnt have tpm 2.0 requireement because it is a loser os that hackers easily jack

>>106814190
It's probably true that using an unsupported OS is overall less secure that using a supported OS.

But the OS should be your last line of defense. If everything is configured correct, you should never have to rely on your OS for security. This makes Windows 7 viable, but not equal to supported operating systems in term of security.

Where Windows 7 gets owned is due to user error and laziness.

>>106814207
I agree with this, but in reverse. Windows Defender is basically the first hurdle any hacker has to jump. So never rely on the OS by itself to protect you - no matter what you're on.

>>106814127
>and you have a fully updated browser
>Find me a bug like this then you will have a good point.

Spectre and Meltdown.

The newest spectre mitigations called User-Mode Shadow Stacks and enhanced site isolation are simply NOT available for Windows 7, no matter what.

Spectre v1 updates were not automatically delivered to Windows 7. Spectre v2 updates for Windows 7 were simply incomplete, and even require manual intervention.

Windows 10/11 has Kernel Page Table Isolation, Retpoline, IBRS and IBPB, for Spectre v2.

Windows 7 is UNABLE be safe against Spectre/Meltdown attacks.

This is just the biggest one I can think of.
There are countless CVEs that affect Windows 7, including ones where no user interaction is needed, as I said on the post before; but don't expect new ones to pop up, even for 3rd party software with a Windows 7-only vuln. Simply because nobody cares. But if not seeing CVEs for your software stack makes you feel safer, go at it.

>>106814229
Windows 7 is UNABLE be safe against Spectre/Meltdown attacks, even with a somehow "updated" browser**

File: stonedyui.jpg (23 KB, 500x499)

23 KB JPG

>>106814190
>up to date software
I never implied that. I said if theoretically software didn't support Windows 7 and newer patched versions refused to run on WIndows 7 wit would be an issue.

You were not clear in your original explanation. Although I think this is more a case of you moving the goalposts.

Also I did find some pretty nasty RCEs that would allow RCE via merely crafted packets on exposed ports ie in tcpip.sys, but those should be patched if you're running Win 7 with the latest updates available.

However if something new is discovered you're kinda fucked.

I would suggest *never* exposing any ports period. Also make sure upnp is off on your router and that it does not forward ICMP packets.

>>106814246
I'm not 'moving the goalposts', I'm calling you a paranoid retard for not adequately protecting yourself with some basic tools and then moving on with your life.
And stop avatarfagging, it's rude and adds nothing.

File: 1747554893073960.png (338 KB, 1398x683)

338 KB PNG

>>106813956
>fishing CVE for excuses
Hello updooter

File: Ca6OrECW0AAXsse.jpg (31 KB, 638x540)

31 KB JPG

>>106814255
And I'm calling you an idiot for using the software equivalent of a bulletproof vest that is vulnerable to bullets and thinking you're "protecting yourself with basic tools".

File: 1429213587193.gif (1.78 MB, 320x228)

1.78 MB GIF

>>106814279
>And I'm calling you an idiot for using the software equivalent of a bulletproof vest that is vulnerable to bullets and thinking you're "protecting yourself with basic tools".
I'm posting on 11, so I don't really know what you're talking about.
Your whole position is "BE PARANOID, ALWAYS UPDATE, NEVER USE ANYTHING NOT APPROVED BY THE UPDATE SECURITY COUNCIL", and I am telling you that is no way to live and no way to go about security either. You can use 11, the latest version of Chrome or Firefox or whatever, and still fail the common sense and 'oops I didn't use an adblocker, now I have malware from a random ad :(' test.
Your position is the one where you think you are free from harm by some magic "I updated, I'm a good boy" sticker.

>>106813675
You can't. If your system has exploits that allow you to escalate privileges, you can easily escape the sandbox. On top of that if your web browser is unpatched you can have zero click exploit that just runs when you open a website.

Of course it will not get hacked by its own only because it's old. But if what you are saying was true, why would we even care about software security? And yet...

>>106814329
Your read on me is completely wrong, and irrelevant.

I don't use any Windows version at all, I don't care that you're running Windows 11 as OP is explicitly talking about Windows 7. I don't live paranoid checking for updates, the default setting is fine. I don't think I'm immune to problems because my OS is updated; I just think that willfully using known vulnerable software is categorically bad!

Nice fanfic?

File: 1710472498701511.jpg (334 KB, 1024x1024)

334 KB JPG

>>106814255
Uh you did indeed move the goalposts, faggot.

First >Are you more vulnerable? Sure, maybe. But you are not magically a target because hackers don't actually care about some rando on 7 or 10, they care about businesses on 11.

Then you moved the goalposts like so >up to date software

So which is it? If you're running stuff that is remotely exploitable then even the dumbest script kiddie can get you. It has nothing to do with whether or not you're a high value target.

Now on the other hand if it would take extraordinary effort to hack you that your typical script kiddie can't handle. No one wants to waste their private tools and exploits getting discovered by a low value target.

These are two different problems, stop conflating them.

>>106814229
Spectre and meltdown are already not easily to exploit, and with a fully updated browser it is likely this would be very non-trivial to do. This isn't really a reasonable vector of attack.

>>106814329
See above faggot.

Only places running win7 are Indian and Filipino call centers.

>>106814363
>So which is it?
Both, faggot, because the main issue YOU are trying to make is that 7 can't support "I updooted" browsers and software. It's all one issue, and in either case it's mostly irrelevant. You shouldn't rely on the OS for security protections, and you shouldn't trust your browser as far as you can throw it either.

File: 1758045304626620.jpg (7 KB, 400x223)

7 KB JPG

>Using unmaintained proprietary software is le soul

>>106814207
Yeah noone ever really gets their computers "hacked" with brute for or anything like the 98 and xp and novell netware days.
But when you think about it, if you open an email, get fooled by the contents of it, call the bad number and let pajeet on your computer, id say you were "hacked" by definition.

File: windows7.png (3.1 MB, 2560x1440)

3.1 MB PNG

>>106813584
I use windows 7 as my daily driver. Windows 8/10/11 are horrible and god awful. I hate macos because it feels backwards. Linux is for trannies and other losers. I use my iphone for banking, shopping and everything else.

I just really like windows 7. It's the superior desktop operating system experience. No I dont play games. Modern games are microtransaction ridden trash. Even those that still work on 7. All my programs still work on 7 and are subscription free. Aka photoshop, word, etc. Yes I still watch youtube and shitpost on 4chan.

>>106814443
You'd probably like XP. It's lightning fast. Just prepare your anus for the internet but all other tasks are very intuitive.

File: 1711407393377592.jpg (262 KB, 960x720)

262 KB JPG

>>106814405
I never said that. You were the one who implied that it's not a problem to run outdated software. I never implied you couldn't run new browsers and bittorrent clients.

Just that if there was some reason you couldn't or didn't you would be in trouble.

Again though the threat of other unpatched issues such as RCEs in the TCP/IP stack are real threats. Especially if you have any ports exposed. If you're behind NAT though with zero ports exposed the threat is minimal though. That said though there may be some that an attacker could exploit by you making an outbound connection to them.

Like I said, I did find such exploits, but they were patched long before the latest Win 7 patches. That doesn't mean someone might find a new one though or that there aren't undisclosed ones. It's also possible I missed something.

Keep in mind I often don't bother updating just to update, because I prefer stability.

Instead I read each CVE and see if my configuration actually leaves me vulnerable or not.

>nevermind an entire supported software stack: drivers, services, applications, kernel, antivirus, advanced mitigations and attack protections; what you ACTUALLY need is just an AD BLOCKER

>>106814595
It's kind of true. Grandma can do more damage to a computer without ad-block and those clickbait articles then you ever could with your gay ass virus.

>>106813584
They're retarded and don't realise malware usually isn't even compiled for Windows 7 anymore.

File: 1756960738527764.png (884 KB, 1809x5077)

884 KB PNG

>>106813584
Man, this glavset prostitute really, really needs to convince you to run an unpatched, abandoned OS with no working antivirus. He's been foaming at the mouth about this for months, like his job depends on it.

What a dumb, cheap whore.

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=Windows+7&field_date_added_wrapper=all&field_cve=&sort_by=field_date_added&items_per_page=20&url=

https://www.cve.org/CVERecord/SearchResults?query=windows+7

>>106814117
I love how the only thing you have to defend your rabid negrosity is babyrage and denial.

>>106814698
>no working antivirus
You use an antivirus? On a PC where you decide what you run?

>>106814257
>using kindergarten-level shame tactics to add retards to your botnet
How has that been going so far, Marina? Get many epic pwns yet, you retarded cocksucker? These little babyrage threads of yours are a joke, you're a waste.

>>106814722
Hilarious, how you think you can just ask people to open up their computers for you. You're dumber than anyone could have ever thought.
You're the equivalent of some Indian scammer screaming "DO NOT REDEEM" at people.

File: 1714572113752005.png (775 KB, 900x1611)

775 KB PNG

>>106814698
While OP is retarded you have no clue how to read a CVE. Many of these in the screenshot almost certainly do not affect him and the rest aren't as big of a deal as you might think.

They would require him to run software he likely isn't. What the fuck does PDF shaper have to do with WIndows 7? Factory talk? He's not running that shit.

Oh noes permissions are weak in some installer!

System recovery bootloader for Lenovo? Even if he was running a Lenovo this isn't something that could easily be exploited without physical access and with physical access you're already fucked!

Qlik sense? So what?

No on the other hand CVE-2023-34367 might actually be something to be concerned about. Although it doesn't sound like someone can do RCE through it, just fuck around with the person's TCP connections which is meh. It also would require the attacker to have access to the network somewhere between the user and the serve they are connecting to. It isn't really that big of a deal.

The privilege escalation vulnerabilities are meh, but I guess kind of a concern. I mean if someone can already execute code on your machine they probably can find many different ways to get higher privs. That said better to patch these if you can. Although, if someone can even get to the point of using one of these exploits you've probably already lost the game.

Reading this thread is painful from all fronts.

>>106814739
>i run viruses out of stupidity
Ftfy

File: 1752007514675544.gif (894 KB, 498x498)

894 KB GIF

>>106814726
Got any other schizoid rants to throw at me? I find them amusing.

File: Hobbies.jpg (11 KB, 480x360)

11 KB JPG

>All this fighting in my thread
Give a factual answer with proof or GTFO

>>106814862
Vista > 7

>>106813584
>ctrl-f 2026 ESU
>0 results

Retard board.

>>106814884
There are plenty. Address the retorts or stop spamming the board with your embarrassing attempts at getting zombies onto your botnet.

>>106814849
>I run even more viruses out of misplaced confidence.
couldn't be me.

>>106814940
it's funny how very few people seem to know about it

>>106814862
>omg u schizoid here smug animu
You ran out of fuel, try again later.

>>106814940
Maybe because it's not relevant to morons suggesting to run windows 7, you sound viciously retarded.

>>106814227
>Windows Defender is basically the first hurdle any hacker has to jump.
I strongly doubt that you connect directly to the internet with your balls out, unfiltered. If you have so much faith in your raw OS security then share your IP.

>>106814334
>your system has exploits that allow you to escalate privileges
Which specific W7 exploit did you have in mind?

>your web browser is unpatched
Simply use an updooted browser?

>>106814983
>If I keep repeating the same debunked shit over and over, everyone is going to join my botnet ))))))
Fucking moskals, man. The krokodil destroyed their vestigial brain.

>>106814907
That's not a rant, that's the truth. Shame MS abandoned it so quickly.

>>106814949
Not everyone who makes fun of you is the same person.

>>106814943
There are none. Stop scaring people with baseless nonsense, also botnet today are majorly running on linux machine.

https://youtu.be/HpAIOcYPYgo

>>106815005
If anyone has been specific in this thread about relevant exploits then please repeat them.

>>106815093
>There are none. Stop scaring people with baseless nonsense,
Stop trying to shame people into opening up their shitboxes for your botnet. It's that simple.
If you need to fish for retards, do this over at /pol/, you'll get nothing but hits.
Denial isn't helping your case any, read the fucking thread and stop embarrassing yourself.

>>106815118
>read the thread for me
You have entire lists of unpatched Windows 7 vulnerabilities right there for your perusal, stop foaming at the mouth. Ignoring reality isn't going to get you what you want.

>>106815238
Which ones most relevant do you think?

>>106815249
Why would it matter? They're not going to be patched and you're still just trying to get people to vulnerate their computers.
In fact, you already know, which is why you keep making these threads. You know exactly what exploits you need to run.

The only reason to stop using Windows 7 from what I've seen is the lack of complete support from Chromium. That shit engine is everywhere. Things like Steam (gaming) or NodeJS (programming) will refuse to work just because of that browser dropping their compatibility with older Window systems. If you don't require anything relying on Chromium you are fine to stay there, it's pretty much safe online if you aren't a complete moron and if you are stuck on older hardware, then it's a decent option too.

PS: modern Linux desktop solves both the Chromium and older hardware problems if you aren't afraid to try it at some point.

>>106815265
>You know exactly what exploits you need to run.
Actually I was hoping someone here could, because going through these exploits and none of them seem to be very actionable.

File: GyrHzu9bIAAjY-E.jpg (294 KB, 1838x2005)

294 KB JPG

>>106813584
It's amazing and long and hard the poor, stupid and baby-ducked seethe when a new version of Windows comes out - or an old version is EOL'd.

>>106815285
>The only reason to stop using Windows 7 from what I've seen is the lack of complete support from Chromium.
This is an idiotic take. In fact, there are almost zero reasons to continue using Windows 7.

>>106815298
Oh you poor thing, can't even scroll up, it's too hawd. I imagine you take the same approach with security on your computer.

>>106815316
That's not even the point here, the point is to get morons to switch to an unpatched version of windows using whatever tactic works. Russia needs DDoS vectors, you see, and hardware is becoming scarce in their hellhole.

What's the use case for Windows 7 in 2025?

>>106814983
>Simply use an updooted browser?
You cannot. No one is supporting W7. You really seem to not understand the problem.

>>106815285
>The only reason to stop using Windows 7 from what I've seen is the lack of complete support from Chromium.
VxKex.

>>106815510
>No one is supporting W7
Firefox still is lol

>>106815322
>>The only reason to stop using Windows 7 from what I've seen is the lack of complete support from Chromium.
>This is an idiotic take. In fact, there are almost zero reasons to continue using Windows 7.
I literally don't understand those users who want to keep using Windows 7. I can understand switching to Linux or anything, but why keep using obsolete Windows? Games doesn't support it, applications doesn't support it. What is the point?

Sure, if you have old PC/laptop with win7 there is no need to update. I have laptops with XP installed in closet, but it's not like it make sense to use it as daily driver.

>>106815510
>he doesn't know

>>106813584
idk and idc
win7 is king and my software / games run perfectly, unlike on w10

File: 1594966175303.jpg (1000 KB, 1536x2560)

1000 KB JPG

>talking about windows 7 causes a mountain of seethe from shills
really makes you think

Love me Winny 7

What's with the autistic retard that thinks every person who uses an older OS is trying to build a botnet? I've posted screenshots of my XP and 98 machines before and he's accused me of it too. Is there a backstory or is he just autistic?