Slashdot Mirror

← Back to Stories (view on slashdot.org)

Web Site Attacks Against Unpatched IE Flaw Spike

Posted by ryuzaki0 on from the not-a-good-spike dept.

An anonymous reader wrote to mention a Washingtonpost.com article about an increase in attacks against IE users via a critical, unpatched flaw. The bug allows software to be downloaded to the vulnerable PC even if the only act the user takes is browsing to a web site. From the article: "[A] password-stealing program landed on the Windows PC belonging to Reaz Chowdhury, a programmer for Oracle Corp. who works out of his home in Orlando, Fla. Chowdhury said he's not sure which site he browsed in the past 24 hours that hijacked his browser, but he confirmed that the attackers had logged the user name and password for his company's virtual private network (VPN)."

18 of 268 comments (clear)

  1. Patch released! by spaztik · · Score: 5, Funny

    Download here:
    http://www.mozilla.com/firefox/

  2. Re:Ugh by kevin_conaway · · Score: 2, Funny

    Whats wrong with it? I've noticed attacks against the Flaw Spike too.

  3. "... said he's not sure which site he browsed..." by UberOogie · · Score: 5, Funny

    *cough*porn*cough*

    --
    "Enough of this wretched, whining monkey life." -- Marcus Aurelius, _Meditations_, Book 9, 37
  4. Ugh by ZombieRoboNinja · · Score: 5, Funny

    I know this is Slashdot, but can we at least have our grammar Nazis spell "grammatically" correctly?

  5. Re:Ugh by dotpavan · · Score: 4, Funny

    spelling Nazi criticizing grammar nazi :)

  6. Re:Now that's a solution! by tinkertim · · Score: 2, Funny

    I'm guessing Mozilla is at the top of the list ...

  7. Re:nope by UberOogie · · Score: 4, Funny

    You and your facts and your articles, bah. It's funnier my way.

    --
    "Enough of this wretched, whining monkey life." -- Marcus Aurelius, _Meditations_, Book 9, 37
  8. Was the City of Tuttle, Oklahoma... by sharkey · · Score: 5, Funny

    one of the sites that has been "hacked" to exploit this flaw?

    --

    --
    "Outlook not so good." That magic 8-ball knows everything! I'll ask about Exchange Server next.
  9. Re:This is becomming not funny by kpainter · · Score: 3, Funny

    "They have to do MASSIVE regression testing." Ahhh, that explains it. It must be working because IE regresses with each and every day.

  10. Re:Ugh by Anonymous Coward · · Score: 5, Funny

    That's why they lost WW2.

  11. Re:Ugh by Anonymous Coward · · Score: 1, Funny

    didn't have any problems, guess I must be one of those luck people who can understand things and not just take them blindly at face value.

    How very luck for you.

  12. Re:*sigh* by MasterC · · Score: 2, Funny

    So why don't they program firefox to render pages the same way IE does it?

    I'm just flabbergasted at the thought that I'm not even sure where to begin on a reply. What you are asking...is basically asking them to...break...firefox. I'm all for demolition and breaking stuff just as much as the next guy but that's usually in the name of progress and I see little "progress" in such a proposal.

    As lame and well-used as it is: what you're proposing is for the firefox developers to jump off a bridge just becuase 90% of the people are doing it...

    By no means am I saying firefox is perfect, but....damn dude.

    --
    :wq
  13. Re:a programmer for Oracle Corp by slakdrgn · · Score: 2, Funny
    Its more, how much longer will he have a job after releasing this information...



    I doubt he talked to his boss before blabbing that one.

  14. Anyone.. by Viraptor · · Score: 2, Funny

    Anyone else finds something funny in this sentence?
    "...hackers have infected at least 200 sites, many of which you would not normally expect to associate with such attacks (i.e., porn and pirated-software vendors)."
    I see two things...

  15. Re:Ugh by zerocool^ · · Score: 2, Funny


    Godwin explodes. Details at 11.

    ~W

    --
    sig?
  16. Re:That why I stay with #2 or #3 by rabel · · Score: 2, Funny

    Reminds me of one of the developers I worked with many years ago. Out of the blue, he announces he is getting married. Nobody was really "tight" with this guy, so this wasn't all that shocking. However, he brought his new bride into the office a couple of weeks later, after the honeymoon. She wasn't all that attractive, to say the least. Anyhow, in casual conversation he takes it upon himself to mention that, "I know she's not the most attractive woman out there, but at least I know other men won't be tempted to steal her away."

    This is a true story. So, keep dating those wallflowers and using those obscure O/S's, boys! It's SAFER that way!

  17. Internet Exploder and the people who still use it by Anonymous Coward · · Score: 1, Funny

    There are die-hard people who just insist that the only browser they use is internet exploder. For those people, go out, find this virus, get your computer infected, let the bad people steal your banking information and your identity. Then when you've had just about enough, go to the mirror, stare into it with intensity, suck in a big deep breath of air, clench your fists, lower your eyebrows and shout at the image in the mirror "DUMBASS!" Then, go out and get another browser (one that doesn't suck or turn your computer into a botnet slave). You could switch before you get the infection (and all that), but if you haven't switched before now, then its best if the therapy is more harsh.

  18. And the bottom line is ... by RockDoctor · · Score: 3, Funny

    FTFA : Case in point: One guy I contacted to tell him his site was serving up this exploit code went to check his home page and then told me his browser just crashed on him. I had to ask: "Don't tell me you just visited the site in IE?" He had. I could only shake my head and sigh.

    BEATS HEAD SLOWLY AGAINST BRICK WALL.
    THIS IS UNSATISFACTORY.
    GOES OUT AND FINDS granite WALL.
    BEATS HEAD AGAINST IT.
    MUCH BETTER!

    --
    Birds are not dinosaur descendants;birds are dinosaurs, for all useful meanings of "birds", "are" and "dinosaurs"