Catch up on stories from the past week (and beyond) at the Slashdot story archive

 


Forgot your password?
Close
typodupeerror
×
Internet Explorer Security Google IT

Code Used To Attack Google Now Public 128

Posted by timothy from the clever-scoundrels-still-scoundrels dept.
itwbennett writes "The IE attack code used in last month's attack on Google and 33 other companies was submitted for analysis Thursday on the Wepawet malware analysis Web site. One day after being made publicly available, it had been included in at least one hacking tool and could be seen in online attacks, according to Dave Marcus, director of security research and communications at McAfee. Marcus noted that the attack is very reliable on IE 6 running on Windows XP, and could possibly be modified to work on newer versions of IE."
This discussion has been archived. No new comments can be posted.

Code Used To Attack Google Now Public More

Code Used To Attack Google Now Public

Comments Filter:

  • Re:This is shocking! (Score:1, Interesting)

    by Anonymous Coward on Saturday January 16, 2010 @12:04AM (#30787572)

    I suggest you check your websites on firefox 2.xx. I was at a business this morning that still runs Windows 98 and firefox 2.xx. Their core application won't run on XP, OSX or Linux.

    Digg and Slashdot won't display correctly in that version of firefox (so much for web standards). There are people out there who can't change for good reasons.

  • Internet Explorer 6 is older than the Euro (Score:1, Interesting)

    by Anonymous Coward on Saturday January 16, 2010 @12:17AM (#30787626)

    Next time somebody tells you that their organisation can't switch from Internet Explorer 6 because of legacy intranet applications, point out that virtually all of Europe switched from their own centuries-old currency to the Euro in less time than it's taking to get rid of Internet Explorer 6.

  • Re:It doesn't matter which browser. (Score:3, Interesting)

    by dotwhynot ( 938895 ) on Saturday January 16, 2010 @04:31AM (#30788660)

    It doesn't matter which browser you're using ...

    If you're logged in as Administrator or a user with administrative user rights/access, while surfing the web, checking your email, etc. --> you're vulnerable.

    I don't disagree with it being better not running as admin, but a lot of malware will live quite happily in your userspace. And if a user privileged account is compromised there are privilege escalation exploits to get admin level, for fx rootkit if that is what they are after. MS is on to something with the IE8 protected mode sandbox in Vista/W7, running with lover privileges than even normal user. But it's just one part of this puzzle.

  • Re:This is shocking! (Score:2, Interesting)

    by Anonymous Coward on Saturday January 16, 2010 @04:50AM (#30788704)

    This is exactly the reaason having kids, family, lights and such other things is EVIL.
    Having them forces people to do evil things just to mantain them.

  • Re:Internet Explorer 6 is older than the Euro (Score:3, Interesting)

    by Grygus ( 1143095 ) on Saturday January 16, 2010 @11:53AM (#30790668)
    To be fair, the case we make for IE8/FF3/Win 7/whatever is the same spiel we gave them to get them to switch to IE6/FF2/Win 98. It's a never-ending treadmill, it's not surprising that they'd see the entire enterprise as a bottomless money pit and want to get off at some point.

Slashdot Top Deals

I've noticed several design suggestions in your code.

Close