January 14, 2010
China Cyber Attacks Exploited IE Flaw
McAffee has analyzed some of the attack strategies allegedly from China on systems from Google and other companies. The hackers responsible used a new, unpublicized exploit in Internet Explorer to accomplish their intrusions. The flaw exists in all versions of Internet Explorer, including the version distributed with Windows 7. Microsoft's Security Bulletin focuses mostly on Internet Explorer 6. There had been reports that Adobe Reader software flaws contributed to the attacks, but this does not appear to be the case.
The attack was carefully crafted to appear as if an email came from a trusted source with a similarly disguised attachment that contained malware. Once installed, the code opened a back door into the compromised system that allowed access to confidential intellectual property. Microsoft is working with Google on the security of IE as the situation came to light from these attacks. Steve Ballmer is quoted as saying "Cyber attacks and occasional vulnerabilities are a way of life." True Steve, but better to prevent than to respond. Ballmer also stated that Microsoft would remain in China and obey all local laws. I'm guessing that any individuals who may be labeled as dissidents may think twice about using Hotmail, Bing, and any Windows Live branded applications. [MG]
If technology brings wonders then it also causes destructions. Hacking is one of the downsides of technology.
Posted by: Postergal | Jan 14, 2010 7:48:36 PM