Beware of Vista drivers bearing a purple pill, says this story on [H]ard|OCP.  AMD/ATI’s drivers open up a vulnerability in Vista which could allow unsigned programs to be installed silently if they are piggybacked into the installation program.  The creator of the tool that allows this posted it to his site for just over an hour, under the assumption that the vulnerability had been patched.  When he discovered it wasn’t, he pulled it.
“Apparently an unpatched flaw in an ATI driver allows hackers to load unsigned drivers onto Vista. The flaw was at the center of the Purple Pill proof-of-concept tool that exposed a way to tamper with the Windows Vista kernel.

Purple Pill, a utility released by Alex Ionescu and yanked an hour later after the kernel developer realized that the ATI driver flaw was not yet patched, provided an easy way to load unsigned drivers onto Vista — effectively defeating the new anti-rootkit/anti-DRM mechanism built into Microsoft’s newest operating system. ”

Here is some more Tech News from around the web:

Tech Talk