Silicon Valley Sleuth, an insider's view from Silicon Valley
 A blog from vnunet.com

January 2008
Sun Mon Tue Wed Thu Fri Sat
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31    


Other blogs
PCW Inter@ctive
Your views, your comments, your say

Security Watchdog
Sniffing out IT security
issues

The test bed
The hottest products, news and gossip from PCW's
Labs.

IT Sneak
IT Sneak Blog rummages in the dustbin of IT events.

Backbytes
An irreverent and offbeat look at the lighter side of technology

InterActive Home
Your complete guide to home entertainment technology

Taking Stock
Gags and Gossip from Accountancy Age.

Gizmodo
The gadgets weblog.



« Why we need a "digital Enron" (video) | Main | HP slaps an "updated" label on its adaptive enterprise vision »

Get hacked on the fly (video)

If you aren't paranoid about your security online you, you'd better watch this video. If you are, it will only further confirm your fears.

Shot at the McAfee Avert Labs Day, it shows a so-called fly-by malware infection: a system gets hacked by merely visiting a specially crafted website. The attacker then installs malware and a rootkit that attempts to hide the attack from the system and security software.

The user never gets to see any warnings or prompts. If it wouldn't be for new registry entries and processes showing up in the task manager, there wouldn't have been any indication that this was going on.

This particular case was recorded late last year. It exploited a Javascript flaw in Windows XP and Internet Explorer that has since been repaired.

And don't say that this can't happen with Firefox. There are known cases of fly-by malware infections using flaws in the open source browser too, McAfee said.

Tags: mcafee, fly-by hacking, hacking, security, windows, malware

July 21, 2006 at 04:18 PM | Permalink

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/t/trackback/24766/5484185

Listed below are links to weblogs that reference Get hacked on the fly (video):

» Ser hackeado al vuelo (vídeo) from Silicon Valley Sleuth ES
Si no eres un paranoico de la seguridad online, será mejor que eches un vistazo a este vídeo. Si lo eres, únicamente confirmará tus miedos. Exhibido en el McAfee Avert Labs Day, muestra una así llamada infección al vuelo:... [Read More]

Tracked on 25 Jul 2006 07:36:37

» Como ser hackeado al vuelo, excelente video de McAfee from meneame.net
Si no eres un paranoico de la seguridad online, será mejor que eches un vistazo a este vídeo. Si lo eres, únicamente confirmará tus miedos. [Read More]

Tracked on 25 Jul 2006 15:36:08

Comments

It would be interesting to watch that from a Linux machine.

However, Adobe has not released a player for Flash which supports anything later than version 7.

Please keep that in mind when posting Flash content.

Posted-by: Mark A. Flacy | 22 Jul 2006 00:30:14

It be nice to see the logs from this.

I've watched browser exploits before, and they are right - it can be damned hard to figure out what's going on, or what exploit it uses.

Posting the logs from this that they saw (and we saw, blurrily) in the video would be very informative and useful. Text logs, please.

A

Posted-by: Andy | 24 Jul 2006 04:45:32

Post a comment






 

Useful links: About | Privacy policy | Terms & conditions | Top of the page
© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503