New IE hole exploited in attacks on U.S. firms

Discussion in 'other security issues & news' started by JohnnyDollar, Jan 15, 2010.

Thread Status:
Not open for further replies.
  1. JohnnyDollar

    JohnnyDollar Guest

  2. wat0114

    wat0114 Guest

    From the article:

    Social engineering tactics seem to be a common denominator in these exploits. Another case where common sense will prevail.

    ...and if that fails:

    ...a default deny policy should provide ample backup.
  3. chronomatic

    chronomatic Registered Member

    Apr 9, 2009
    The social engineering wouldn't have worked if these attackers had not found a 0-day flaw in IE. But, I do agree with you that this seems like an inside job, and is probably the reason google is threatening to leave China. I would wager some of Google's Chinese employees were involved.
  4. wat0114

    wat0114 Guest

    To be honest, it never occured to me as an inside job, but your theory could be right. It just seems like a lesson to be learned; do not carelessly click on links and don't run as administrator, allowing unsolicited executables to launch. It looks again like another case where antivirus is a half-arssed security solution.
Thread Status:
Not open for further replies.