|
|
 |
|
Have you heard of a botnet with defenses? This one is known to launch a DOS (denial of service) attack if you try to scan a botnet node:
"Storm worm," was released in January 2007 and is still going strong, claiming more and more victims by sending out over 120 million infected emails in as little as 5 days. By appearing to be a fake news story or a supposed e-greeting card, unknowing individuals are opening email attachments and granting access to their computer. While the Storm Worm has been used for denial-of-service attacks in the past, the ability to automatically attack any site that scans one of the botnet's nodes for vulnerabilities appears to be a recent development. As of August 26, 2007, estimates of the size of the Storm botnet ranged from 250 thousand up to 10 million computers! For detailed information go to http://www.securityfocus.com/brief/573.
Interesting because we hear about so many vulnerabilities for Firefox, but it looks like IE is still the choice for exploiters.
Also, according to a new study by the Honeynet project, browsers with more bugs are not necessarily more vulnerable to attacks. They ran a study using automated virtual machines that had the three big browser (IE 6 SP2, Firefox 1.5 and Opera 8) visit a list of malicious web sites. IE was compromised about 200 times in the test and the other browsers were not compromised at all. Additional information can be found at http://www.securityfocus.com/brief/578.
WOW, TJX will feel the security breach pains for awhile! This is similar to how we try to attack a network in our security testing.
One infected computer on your network could lead to millions of dollars in breach costs and implications. Strengthening data security is much less expensive than responding to a security breach. For more information on the pains an unsecure network or a lost laptop can bring to any organization, please go to http://computerworld.com.
For more information contact us at 877-780-1132 or sales@covetrix.com. |
|
|
|
|
