On BNET: Online porn struggles for profits
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 39 of 143:
Next »
« Previous
so even the MS PR sites are admitting MS has no security!
The researchers believe that online organized crime groups are breaking into Web servers, surreptitiously inserting code that takes advantage of two flaws in Internet Explorer that Microsoft has not yet fixed. Those flaws allow the Web server to install a program that takes control of the user's computer.

Nice, weld in a back door!

The extent of the attacks is unknown, but the security community has seen numerous cases of personal computers infected when the user merely visits a Web site.

How careless, they used that tremendous value we often hear about. And if you don't want this attack vector on your machine, say you manage 20,000 boxes in a major corporation, you have one option, abandon MS. And that was MS's design intent, to force you to accept the cruft or move along to an alternate OS.

The tactic is not new. Earlier this month, an independent security researcher found an aggressive advertising program, known as adware, that installed itself onto a victim's computer via the same two flaws in Internet Explorer. A large financial client called in Symantec in late April after an employee's system had been infected when he used Internet Explorer to browse an infected Web site. Last fall, a similar may attack have been facilitated through a mass intrusion at Interland, said sources familiar with that case.

How many "patches does it take to break the OSes back?

This time, however, the flaws affect every user of Internet Explorer, because Microsoft has not yet released a patch. Moreover, the infectious Web sites are not just those of minor companies inhabiting the backwaters of the Web, but major firms, including some banks, said Brent Houlahan, chief technology officer of NetSec.

Nice, attach your Windows computer to the internet and enable the "Ownz" feature!

The group also pointed out that the malicious program uploaded to a victim's computer is not currently detected as a virus by most antivirus software. With no patch from Microsoft, that leaves Internet Explorer users vulnerable. A representative of the software giant was not immediately available for comment on when a patch might be available.

Well, WHOAH! Now that's one hell of a useful freebie. We all asked for this, temember? The "benefit" test just keeps reaping its rewards!

Researchers believe that attackers seed the Web sites with malicious code by breaking into unsecured servers or by using a previously unknown vulnerability in Microsoft's Web software, Internet Information Server (IIS). When a victim browses the site, the code redirects them to one of two sites, most often to another server in Russia. That server uses the pair of Microsoft Internet Explorer vulnerabilities to upload and execute a remote access Trojan horse, RAT, to the victim's PC. The software records the victim's keystrokes and opens a backdoor in the system's security to allow the attacker to access the computer.

Well, ain't that funny, use the bundled IIS web server, to attack the bundled IE web client, and its all undetectable and unpatchable!

Wonder why?

BECAUSE ITS DESIGN INTENT. ITS MS's VISION ON WORKFLOW AUTOMATION THEY HAVE BEEN CROWING ABOUT FOR YEARS NOW!

"It's a group of people that have resources to bring to play," he said, adding that the attack programs were not amateur material. "The code wasn't pulled off a Web site; it was custom."

Remember when MS was invaded for atleast six monthes before they detected the breaking to the code vault? This is simply folks with inside knowlege using the features MS has always used, its security through obsucity proven to be a joke!
Posted by: oldskool   Posted on: 06/24/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Not just attacking the MS  xshakes | 06/24/04
I'll bite.  toadlife | 06/25/04
This is not about bad admins  xshakes | 06/25/04
Of course your reliability is better  doug@... | 06/25/04
If you changed from NT to a version of Linux  swoopee | 06/25/04
Win2k3 Increased Security  ITGuy04 | 06/25/04
huh?  toadlife | 06/25/04
Because it's not?  cbiltcliffe@... | 06/26/04
Partly about bad admins...  PA-ITGuy | 06/25/04
Correction  PA-ITGuy | 06/25/04
Re-read that article  CO_TechGuy | 06/25/04
not clear  PA-ITGuy | 06/25/04
Incorrect - it is (partially) about admins  CO_TechGuy | 06/25/04
Are you aware of your contradiction?..  Jeff Spicoli | 06/25/04
i want to contest that statement...  ryusen | 06/25/04
I know  Jeff Spicoli | 06/25/04
Re:  CO_TechGuy | 06/25/04
Are you aware of your arrogance?  toadlife | 06/25/04
What about patches?  lengua99 | 06/28/04
MS IIS is the most popular webserver around  jrbeaman | 06/25/04
you might be right, but your point is still moot...  ryusen | 06/25/04
I knew I'd get tons of responses to that  toadlife | 06/25/04
Thank you Microsoft..  Rajah46 | 06/24/04
Ignorance won't get you anywhere.  nikoli | 06/24/04
true but..  Jeff Spicoli | 06/25/04
but..  d_jedi | 06/25/04
True but..  Jeff Spicoli | 06/25/04
There is danger for Mozilla & Firefox, too.  Raymond Danner | 06/25/04
only danger for boneheads  Jeff Spicoli | 06/25/04
only danger for boneheads  Jeff Spicoli | 06/25/04
A few differences  j.m.galvin | 06/25/04
In Windows..  d_jedi | 06/25/04
not that I like Microsoft..  Jeff Spicoli | 06/25/04
Mac IE versions stop at 5.2  j.m.galvin | 06/25/04
Yikes, why would you use IE on a Mac?? Safari dude!  Jeff Spicoli | 06/25/04
I was just pointing out differences, but  j.m.galvin | 06/25/04
This is why I switched  doctormoriarty | 06/25/04
Agreed  CO_TechGuy | 06/25/04
so even the MS PR sites are admitting MS has no security!  oldskool | 06/24/04
Microsoft Windows is flawed by design- it cannot be fixed.  Xunil_Sierutuf | 06/25/04
True but  voska | 06/25/04
I agree, but didn't they say something 2YEARS AGO...  Xunil_Sierutuf | 06/25/04
Yup they did but...  voska | 06/25/04
Professionals.....  jrbeaman | 06/25/04
Why wait??  php_developer | 06/25/04
And this is a suprise how?  Linux User 147560 | 06/24/04
Microsoft Will Be Company of litigation NOT inovation  RobertoSalazar | 06/24/04
Benefits of Linux  HappyMSUser | 06/25/04
Microsoft really DOES "innovate"  Joel R | 06/25/04
Class Action Law Suit Against Bill Gates And Microsoft  RobertoSalazar | 06/24/04
Go for it  Loverock Davidson | 06/25/04
Eulas should be illegal!  sa_z | 06/25/04
ReRead the part  jrbeaman | 06/25/04
No EULA can Protect from Criminal Negligence  MoYoToSoTo | 06/25/04
Product Liability  lengua99 | 06/28/04
More Lawyers....Yeah That's The Ticket.  chrislovesdana | 06/25/04
Not the EULA but Criminal Negligence  MoYoToSoTo | 06/25/04
amazing how many ISPs use m$  mvaar | 06/25/04
Yes their instructions tell you  Hanover Phist | 06/25/04
say what ?  mvaar | 06/25/04
FUDBUSTERS- Tell me again how MS releases patches quicker...?  Xunil_Sierutuf | 06/25/04
Exactlly!  sa_z | 06/25/04
You Can't Take Over The World Exploiting A Mac Vulnerability  chrislovesdana | 06/25/04
Dream on...  gfeier | 06/25/04
You sound like an open source advocate  tic swayback | 06/25/04
Wrong on ALL counts, Chris.  Joel R | 06/25/04
Not to mention...  dr_who@... | 06/25/04
So you're saying that...  Rick_K | 06/29/04
Upgrade free to Mozilla, no problem  Hopethishelps3 | 06/25/04
Re: Upgrade free to Mozilla, no problem  Me_too | 06/25/04
Go after spam benefactor  TrustMe_z | 06/25/04
Or, you can make the default setting for ActiveX to not automatically run.  Xunil_Sierutuf | 06/25/04
Use tools better  shis-ka-bob | 06/25/04
I'm not sure about either zdnet or firefox  rebeldog | 06/25/04
Is this site running IIS???????  jrbeaman | 06/25/04
It's actually running Apache  20075880200550981536805084989909-zdavis | 06/26/04
Firefox triggers Norton Firewall on my machine  G.A.L. | 06/25/04
You have to configure the firewall  doctormoriarty | 06/25/04
Here's the solution  sufehmi | 06/25/04
Correction: Here is the solution  sufehmi | 06/25/04
Another correction...  sufehmi | 06/25/04
how about a "Preview" button ?  jrbeaman | 06/25/04
MSFT's response is classic  Chad_z | 06/25/04
Windows is an insecure piece of bloated crapware?  jrbeaman | 06/25/04
Maybe  PA-ITGuy | 06/25/04
Ah, you got a second mortgage for that MCSE  Chad_z | 06/27/04
Your own arguments...  PA-ITGuy | 06/28/04
Get a New OS  sfhc99@... | 06/25/04
Get a New OS  Loverock Davidson | 06/25/04
Hmmm  woojinlee | 06/25/04
Exactly!  WhoIsDaMan | 06/25/04
Software?  lengua99 | 06/28/04
Only affects Administrative accounts  PB_z | 06/25/04
thank you  Hanover Phist | 06/25/04
tip #1  ZooberSoft | 06/25/04
Better yet....  quietLee | 06/25/04
less hassle?  ZooberSoft | 06/25/04
would love to  Hanover Phist | 06/25/04
Good luck!  ZooberSoft | 06/25/04
Thanks  Hanover Phist | 06/25/04
Roaming profiles  PB_z | 06/25/04
cant  Hanover Phist | 06/25/04
Administrative privileges required by applications  jpivonka@... | 06/26/04
These Exploits Might Be Planned by Microsof !!!!  MoYoToSoTo | 06/25/04
HEY STUPID CORPORATE WEB SERVER ADMINS  jrbeaman | 06/25/04
Right ON!!  quietLee | 06/25/04
Yawn  fmeschler | 06/25/04
Black Helicopters  pat.patience@... | 06/25/04
Yeah, blame it on Bush.  jrbeaman | 06/25/04
Sun Java  IceTheNet@... | 06/25/04
"Surf Safe"  jrbeaman | 06/25/04
Use Mozilla and others, but remember, you still can get infected  FilledOut | 06/25/04
Why is ZDnet too afraid to list infected sites?  feliusrex | 06/25/04
I concur  AVALAR | 06/25/04
Ummm http://isc.incidents.org/ said they don't list names  Squawkbox | 06/25/04
Why is ZDnet too afraid to list infected sites?  wildwill | 06/26/04
Infectious Adware and Websites  Froggy Leseur | 06/25/04
Got the wrong one, dude....  quietLee | 06/25/04
Infectious web sites  michael_mccarthy@... | 06/25/04
Even Homeland security is warning against running Windows!  Xunil_Sierutuf | 06/25/04
NOT!  bhanes@... | 06/25/04
Ahhh... The Inquirer  PA-ITGuy | 06/25/04
Give Us the "2 websites" so we can "hosts" away the threat  MrTitanium | 06/25/04
We bend over and take it in the .... again  ScarryJerry | 06/25/04
Use Mozilla  subhunee | 06/25/04
Nice to see ZDNet so far behind the curve....  quietLee | 06/25/04
Almost a relevant posting  wedge1 | 06/25/04
Warning to all on DealHelper.com SPYWARE  realitycheck101 | 06/25/04
ZoneAlarm should be sufficient protection  JRobert345 | 06/25/04
Isn't preventing the disease better than treating the symptoms?  oldskool | 06/25/04
When prevention isn't possible...  JRobert345 | 06/25/04
Will Adaware or Spybot S&D find it?  Squawkbox | 06/25/04
May be  rambler65 | 06/26/04
I wonder  michael-t | 06/25/04
IE vs Netscape  gaelicfog@... | 06/25/04
Why do all that?  gaelicfog@... | 06/25/04
Gee ZDNet, real "helpful" article  KenTankerous | 06/25/04
Anyone else catch this?  Phil Nospam | 06/26/04
benifit of doubt  rambler65 | 06/26/04
Yet another reason why Netscape rules.  jgmsys@... | 06/26/04
A Bit Of Advice About What To Do  willtisdale@... | 06/27/04
Exact Problem  tjcal | 06/27/04
Get the Maxthon browser!!!!!  ckone | 09/30/04

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
Click Here
advertisement

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline