|
So, here we go. Real-life uses for vulnerabilities.
Below is an example of just ONE "drop-zone" server in the
United States, which has "600 financial companies and banks".
Several gigs of data.
How do these things work?
They get installed by the use of a web vulnerability, an email attachment
of network scanning, utilizing several vulnerabilitie.
One drop zone, and all this noise gets made. I am very happy to hear that
the UK police (which are good people) are doing something about this,
however, banks, eCommerce sites, dating sites, etc. all get attacked by
these things, by the users being infected.
These trojan horses use rootkit technology, with a hook, using man in the
middle attacks to bypass the SSL encryption, and steal any HTTPS
credentials they come across.
These things are so wide-spread, this news item made me raise my eye-brow,
at first.
So, knowing full-well security is out of our hands, and relies on the
security of our users. Knowing full-well that the same technology can be
used to bypass 2-factor authentication, how do organizations handle their
own security, if they are to have clients?
The point is, though, that this is a well planned operation, with new
samples being released with new vulnerabilities to exploit,
constantly. This should not be considered a "one time cease" or a "lost
laptop containing private data".
This is what vulnerabilities are about - the damage and operations they
are used for.
Gadi.
---------- Forwarded message ----------
Date: Tue, 24 Oct 2006 21:24:20 GMT
From: Fergie