Re: PSA: Windows PCs face 'huge' virus threat: 1990 - Present

John Steinberg <seesig@xxxxxxxxxx> wrote in
news:020120061924560686%seesig@xxxxxxxxxx:

>
> FINANCIAL TIMES, Jan. 2, 2006.
>
> ...The flaw, which allows hackers to infect computers using programs
> maliciously inserted into seemingly innocuous image files, was first
> discovered last week. But the potential for damaging attacks increased
> dramatically at the weekend after a group of computer hackers published
> the source code they used to exploit it. Unlike most attacks, which
> require victims to download or execute a suspect file, the new
> vulnerability makes it possible for users to infect their computers
> with spyware or a virus simply by viewing a web page, e-mail or instant
> message that contains a contaminated image.
>
> ``We haven¹t seen anything that bad yet, but multiple individuals and
> groups are exploiting this vulnerability,'' Mr Hyppönen said. He said
> that every Windows system shipped since 1990 contained the flaw.
>
> Microsoft said in a security bulletin on its website that it was aware
> that the vulnerability was being actively exploited. But by early
> yesterday, it had not yet released an official patch to correct the
> flaw. ``We are working closely with our antivirus partners and aiding
> law enforcement in its investigation,'' the company said. In the
> meantime, Microsoft said it was urging customers to be careful opening
> e-mail or following web links from untrusted sources.
>
> Meanwhile, some security experts were urging system administrators to
> take the unusual step of installing an unofficial patch created at the
> weekend by Ilfak Guilfanov, a Russian computer programmer.
>
>
>
> Full article here:
> http://news.ft.com/cms/s/0d644d5e-7bb3-11da-ab8e-0000779e2340.html
>

This exploit is triggered via Internet Explorer, as usual. Firefox and
Opera users have no worries.
.

Relevant Pages

  • Re: ELLiE
    ... I have a problem with my attitude. ... problem here has been my ignorance of computers, hackers, ... >The Windows Update process is actually very secure (Think ...
    (microsoft.public.security)
  • _More_ congressional computers hacked, from China
    ... More congressional computers hacked from China ... Frank Wolf, Chris Smith, and Mark Kirk ... Wolf and Smith said they believe the hackers focused on them because ...
    (soc.retirement)
  • Fw: [Full-Disclosure] whoch DCOM exploit code are they speaking about here?
    ... > Security researchers on Tuesday detected hackers distributing software to ... > computers last month. ... Homeland Security officials have warned ...
    (Full-Disclosure)
  • Re: PSA: Windows PCs face huge virus threat: 1990 - Present
    ... which allows hackers to infect computers using programs ... >> dramatically at the weekend after a group of computer hackers published ... >> take the unusual step of installing an unofficial patch created at the ...
    (sci.astro.amateur)
  • Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
    ... ability for users to tinker with their computers, ... be so significantly different for other kinds of computers. ... For sure you'll get a far lower *percentage* of hackers in consumer ... I'm saddened that the major Linux developers are willing to trade all ...
    (Linux-Kernel)