‘Wide-scale exploitation is only a matter of time’
Windows Shortcut’s zero-day attack code has gone public.…
Yellow alert over Windows shortcut flaw
LNK zero-day, the fundamentals
Over the weekend I spent more time looking into the zero-day LNK (shortcut) Windows vulnerability that Aleks blogged about last week. It’s now been classified as CVE-2010-2568 and is being actively exploited in the wild. My main conclusion is tha…
LNK zero-day, the fundamentals
Over the weekend I spent more time looking into the zero-day LNK (shortcut) Windows vulnerability that Aleks blogged about last week. It’s now been classified as CVE-2010-2568 and is being actively exploited in the wild. My main conclusion is tha…
MS confirms Windows shortcut zero-day flaw
Power Plant peril
Microsoft has confirmed the presence of a zero-day vulnerability in Windows, following reports of sophisticated malware-based hacking attacks on industrial control systems that take advantage of the security flaw.…
Ponemon Institute Misses the Mark
Today the Ponemon Institute announced results of a survey they conducted titled Growing Risk of Advanced Threats: Study of IT Practitioners in the United States. Unfortunately, this survey looks like it is mainly the blind asking the blind to describe…
What’s Google up to?
Last week I did the impossible – I took a week of vacation, without visiting the Internet. So this week I’ve been playing catch-up. There are a number of striking topics from last week – the steady stream of clickjacking worms on Facebook, the Ad…
