McAfee Blames IE Hole for Google-China Hack

[exfileme]

McAfee said that the Google hackers used an unknown exploit in Internet Explorer.

McAfee Blames IE Hole for Google-China Hack : Read more

 

[WinningDreams]

good thing I use Chrome!

 

[alextheblue]

"Kurtz also said that although McAfee identified the Internet Explorer vulnerability as one of the attack vectors, he said that there could be additional vectors not yet discovered."

Translation: McAfee (maker of the most bestest security software EVAR that wouldn't have even prevented this): "We're blaming IE 100% even though we don't really know exactly what happened."

Not much anyone could have done though in any case, if they were using a previously unknown exploit.

 

[jhansonxi]

Another example of the security of closed-source applications.

 

[tenor77]

These attacks will look like they come from a trusted source, leading the target to fall for the trap and clicking a link or file. That’s when the exploitation takes place

Wow so the user opened up the file, anti-virus didn't pick up the mal-ware..........and it's IE's fault?

 

[twu]

Cheap advertisement.

 

[sceen311]

[citation][nom]twu[/nom]Cheap advertisement.[/citation]
It must be because no microsoft product would ever be defective or insecure... ever... not in a million years.

 

[back_by_demand]

The user was coaxed into clicking a link or executing a file.
Since when is stupidity an IE exploit?
Cos no Linux user has ever clicked an unknown executable they shouldn't...ever...not in a million years

 

[gammaraptor]

firefox ftw!

 

[doc70]

The best computer/OS is only as smart as it's user...

 

[Guest]

back_by_demand:
"Since when is stupidity an IE exploit?
Cos no Linux user has ever clicked an unknown executable they shouldn't...ever...not in a million years"

These were high value target with access to confidential IP, ive got a feeling they are not going to be just clicking on any old link/file, on the other hand should the e-mail genuinely appear to be and signed as from HR chances are your going click that link especially if it says your not going get paid, don't fool yourself this was a concerted and sophisticated attack probably using advance reconnaissance to identify high value targets as well as procuring samples of official communication to counterfeit, which the exploited used to make appear to come from Google internally

even linux users need to get paid too....

 

[fflam]

well considering we know nothing of the exploit other then it is based in IE, doesn't mean the user was using another browser clicked the link and the program used IE to preform the deeds (yes unlikely i know but possible). until we know what happened there is not reason to spout out with stupid unproductive comments.

and for the record no i don't use IE.

 

[False_Dmitry_II]

Meh, I either use opera or firefox

 

[ch42832n]

Lucky I use firefox

 

[anamaniac]

Buck off McAfee, get a antivirus that works, then I just might, just maybe, actually take you seriously for once...

 

[eddieroolz]

Oh awesome, let's blame IE.

 

[rantoc]

Mc Affe enterprice = 139 MB memory wasted from only the antivirus task alone... then add all the autoupdate crap ect. And most workstations at companies have weak memory.... do the math!

 

[Hatecrime69]

[citation][nom]rantoc[/nom]Mc Affe enterprice = 139 MB memory wasted from only the antivirus task alone... then add all the autoupdate crap ect. And most workstations at companies have weak memory.... do the math![/citation]

but that's the genius behind their security, a system can't be compromised if it's bogged down too much by the software made to prevent it from being compromised!

Thouh not to defend them, antivirus and firewalls can only do so much to protect a computer if it's full of programs that are full of securiy holes

 

[jblack]

[citation][nom]WinningDreams[/nom]good thing I use Chrome![/citation]


I think the question should be.... Why weren't they?

 

[pcavv]

Wait does this means that people at google use IE?! isnt Chrome the best thing out there?! strange

 

[hluna52180]

Firefox has been my default browser now for over a year now. Only time I now use IE is when I do a manual Microsoft Update every so often. Mozilla 3.6 is brutally fast compared to IE8 on my midrange laptop. These targeted attacks on IE8 is just another reason I have abandoned Microsoft's browser.

 

[winner4455]

[citation][nom]tenor77[/nom]Wow so the user opened up the file, anti-virus didn't pick up the mal-ware..........and it's IE's fault?[/citation]

I bet their anti-virus is McAfee.

 

[wayneepalmer]

Sometimes you have no choice on OS's, browsers, or AV-ware.

Some employers have their PC's locked and don't allow their staffs to download anything so if you get on at work it's all you have.

Some companies ESPECIALLY CERTAIN BANKS AND CREDIT UNIONS don't play nice with Chrome or Firefox when you are banking online.

Certain programs that run thru browsers have issues with different browsers or won't work with Linux (it's been a while since I last checked, but as far as I know QUICKEN won't run on Linux).

Sometimes you just have to live with IE, Windows, and McAfee if you want a paycheck, or to get things done.