Re: That "malware" known as "Zero Day"

[Charles Miller <cmiller () securityevaluators com>]

I can't decide if this reporter is a genius or an idiot as his  
statements ALMOST make sense although they don't mean what he thinks...

"The company is also scrambling to develop an update that guards  
against Zero Day, even though it was alerted to the vulnerability  
sometime in 2008, according to a Microsoft spokesperson."

Ok, I decided ;)

Charlie


On Jul 25, 2009, at 3:14 PM, Alex Eckelberry wrote:

> http://www.newsweek.com/id/208652
>
> Cyber attacks seem to be getting more sophisticated by the hour. A  
> few weeks ago malware known as Zero Day was found to have exploited  
> a vulnerability in Microsoft's Windows operating system that could  
> allow online criminals to take control of a computer from anywhere  
> in the world without being detected. The operation involved what is  
> known as "drive by" attacks, in which visitors to legitimate Web  
> sites are redirected to a page that secretly downloads the malicious  
> software.
>
> <sigh>
>
> _______________________________________________
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.