1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Code used to attack Google made public

Discussion in 'Google' started by gsmdna.com, Jan 30, 2010.

0
  1. #1
    In a report from ITWorld,the code used late last year to attack Google in China has now been made public on the internet, and has already been used in at least one hacking tool since it's release.

    On Thursday the code was submitted for analysis on the Wepawet malware analysis web site, which made it available around the internet. Shortly after the codes release it was integrated into one hacking tool available online, and could be seen around the internet said Dave Marcus, director of security research and communications at McAfee.

    The exploit, which uses a security flaw in Internet Explorer 6 is very easily reproducible on a machine running Windows XP, even if fully up to date. The malicious code could also be modified to work on more recent versions of Internet Explorer, Marcus went on to say. The code could be used to run unauthorized software on a compromised computer by fooling them into viewing a maliciously coded webpage.

    The same exploit was allegedly used to attack Google and 33 other companies in December last year and gain access to internal data and systems. According to Symantec and Juniper Networks who performed an independant investigation, Yahoo was also attacked using the flaw.

    On Thursday, Microsoft issued a security advisory on the IE flaw and may release an out of cycle patch to fix the problem. The next relase of security patches is not until February 9th, giving hackers up to three weeks to further use the exploit, although security researchers have said that it is very hard to perform the attack on Windows 7 or Vista machines due to the advanced memory protection.

    The flaw is so easily exploited that Germany's federal IT security agency, the Federal Office for Information Security advised users to avoid Internet Explorer until the exploit is patched.
     
    gsmdna.com, Jan 30, 2010 IP
  2. Wunir

    Wunir Peon

    Messages:
    70
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    0
    #2
    old news is old
     
    Wunir, Jan 30, 2010 IP
  3. vagrant

    vagrant Peon

    Messages:
    2,284
    Likes Received:
    181
    Best Answers:
    0
    Trophy Points:
    0
    #3
    microsoft already released the patch so your NEWS is from the 15th, thats 15 days ago.
     
    vagrant, Jan 30, 2010 IP
  4. gsmdna.com

    gsmdna.com Peon

    Messages:
    256
    Likes Received:
    5
    Best Answers:
    0
    Trophy Points:
    0
    #4
    Sorry Guys but I read it today on a forum and wanted to share :(!
     
    gsmdna.com, Jan 30, 2010 IP
  5. sultanofseo

    sultanofseo Notable Member

    Messages:
    9,930
    Likes Received:
    405
    Best Answers:
    0
    Trophy Points:
    265
    #5
    yeh, sure! make it available for all wannabie hackers so that they can get some tool to play with
     
    sultanofseo, Jan 30, 2010 IP
  6. dariuscmd

    dariuscmd Active Member

    Messages:
    126
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    93
    #6
    but why did they made it available?i don't think this is fair
     
    dariuscmd, Feb 4, 2010 IP