Security researcher Dan Kaminsky gave a talk at the aptly-named Black Hat conference in Las Vegas, in which he said that "the systemic Internet Domain Name System (DNS) vulnerability he discovered some months ago is much more dangerous than most have appreciated". It seems that, if you know what you're doing (and what hacker over the age of twelve doesn't these days?), you can attack not only DNS caches to hijack someone's web browser but also email, FTP, and SSL services. "Automatic software upgrade services such as are used by Microsoft and Apple could also be compromised, potentially letting hackers gull unwitting users into installing malicious software masquerading as authentic updates."
""There are a ton of different paths that lead to doom," Kaminsky said.
Rico says great, now the whole fucking Net is coming down around our ears... (But apparently Apple's released a new OS patch which fixes some of that, along with a few other things.)
No comments:
Post a Comment
No more Anonymous comments, sorry.