|
Posted by Imhotep on November 22, 2005, 11:56 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Winged wrote:
>
http://australianit.news.com.au/articles/0,7204,17338486%5E15331%5E%5Enbv%5E15306-15318,00.html
>
> There is a lot of truth in this article based on recent trends. Apple
> Quicktime, Macromedia shockwave, Windows media player, Adobe Acrobat,
> all of have current or recent issues.
>
> Folks need to consider if they actually need these items to do business
> and ensure they have mitigated the threats posed by these plug-ins.
>
> These vectors are wonderful vectors for ingress into most networks via
> e-mail links and html pages. Most networks have groups of users who
> can't resist sharing a fine video, a religious, funny or patriotic
> sentiment who do not understand the threat. We have found policies on
> this activity difficult to enforce (though we are removing a couple
> threat vector users permanently as I speak), but users can't seem resist
> sharing some fine sentiment, irrespective of the consequences
>
> ....mutters.
>
> Thought some might find the article useful for their user education
> campaigns.
>
> Winged
Excellent comments. I read a similar article about 3 or so months ago.
Basically, it said hackers were shifting their focus to third party apps
like media applications. In a work environment, if you do not need it,
don't install it....
Imhotep
| 
XML site map