Page 1 of 1
Doublecheck?
Posted: Tue Mar 18, 2008 12:08 am
by Rokcet Scientist
"Hot on the heels of a recent hack in which 10,000 sites were compromised, researchers at McAfee have disclosed a new large-scale attack. They estimate that the attack has been active for roughly one week, and in that time frame has managed to place itself on roughly 200,000 web pages. Most of the infected pages are running the phpBB forum software, according to McAfee. The compromised pages are embedded with a Javascript file that links to the site hosting the attack."
http://www.itnews.com.au/News/72214,sec ... posed.aspx
Posted: Tue Mar 18, 2008 6:36 am
by Forum Monk
The biggest security risk on any system is, and has always been, the end-user. Notice even this "sophisticated" hack still requires some gullible user to click.
One of the biggest problems in programming is figuring out how to supply sufficient user functionality while limiting his ability to do the unexpected or uncontrolled. Its not easy because the fix often results in a very dysfunctional application that users prefer not use. Its called "idiot proofing".
I say make the intentional creation of malicious software punishable by death.
Posted: Tue Mar 18, 2008 7:23 am
by Rokcet Scientist
Forum Monk wrote:
the fix often results in a very dysfunctional application that users prefer not use. Its called "idiot proofing".
No, it's called "Vista".
Posted: Tue Mar 18, 2008 8:39 am
by Minimalist
how to supply sufficient user functionality while limiting his ability to do the unexpected or uncontrolled.
Screw that, Monk. Could you work on the Presidency, instead?
Posted: Tue Mar 18, 2008 9:51 am
by Ishtar
