Yep, even if you run anti-virus software you were wide open until they(anti-virus people) were able to get a copy of the virus and create discription that can detect it. OF course if they(virus programmer) modify the virus slightly then it is again COMPLETELY IMMUNE to a traditional virus scanner. That is until the anti-virus people get around to finding another copy of the modified virus making a discription of that.
Also firewalls won't keep you immune from attacks like this. They will mostly, but what if they decide to add the virus (modified) to a e-mail attactment. Some idiot on your LAN downloads the e-mail, accidently double clicks the attactment thru a spasm in their pointer finger and WHOOPS. There goes every FREAKING COMPUTER ON YOUR LAN! Not much of a problem with home users, but for any admin who has the misfortune to administrate Windows machines, and has enough common sense, should be extremely worried.
How long till they expose a vunerability. What if Black-hats figure it out before White-hats? Something like this could bring the windows world to a screaming halt in hours. Are we going to facing something like a "worm of the month"?
Remember security places HAVE TO POST PROOF OF CONCEPT CODE. That's the only way they can get Windows and other close sourced software companies to take security seriously. IT's to force their hand to create patches and stuff. Otherwise people get lulled into a false sense of security by thinking they can depend on software like Microsoft windows to protect their information. Without exeption they notify Microsoft (and others) a LONG time before they ever take the exploit public. The goal is to make stuff safe, not to screw users over. It's not LSD's fault nobody practices even the minimal discipline needed to protect themselves.
Of course this paticular attack can be stopped with a patch, that is off course if you can keep your computer running long enough to log onto microsoft.com and download the patch.
Now I have a mantra you need to repeat over and over again in order to stay safe.
1. find a quiet seculded corner of a room
2. turn down the lights, make your self confortable.
3. burn some lightly sented ensense, becaureful not to overload your senses.
4. sit cross legged in the traditional yoga manner, close your eyes and.
5 repeat: "In windows operating systems; security costs extra."
Do that hundred times, then take a nap. Get drunk later that evening, but be sure to get rid of all AOL products before hand because sometimes people suffer a uncontrollable urge to use up those free hours as a side-effect.
Of course if you run the same type of anti-virus software that I use, you'd never have to worry about this stuff again. (just as long as you keep yourself educated and the OS up to date.) Hell I can probably put my computer out on the internet with no firewall or anything (although I a fundamentally lazy and so I use a firewall to slow attacks down) and not have to worry about virus's and script kiddies, as long as I pay attention to security advisments. You always will have to worry about uber crackers no matter what, though.
Also firewalls won't keep you immune from attacks like this. They will mostly, but what if they decide to add the virus (modified) to a e-mail attactment. Some idiot on your LAN downloads the e-mail, accidently double clicks the attactment thru a spasm in their pointer finger and WHOOPS. There goes every FREAKING COMPUTER ON YOUR LAN! Not much of a problem with home users, but for any admin who has the misfortune to administrate Windows machines, and has enough common sense, should be extremely worried.
How long till they expose a vunerability. What if Black-hats figure it out before White-hats? Something like this could bring the windows world to a screaming halt in hours. Are we going to facing something like a "worm of the month"?
Remember security places HAVE TO POST PROOF OF CONCEPT CODE. That's the only way they can get Windows and other close sourced software companies to take security seriously. IT's to force their hand to create patches and stuff. Otherwise people get lulled into a false sense of security by thinking they can depend on software like Microsoft windows to protect their information. Without exeption they notify Microsoft (and others) a LONG time before they ever take the exploit public. The goal is to make stuff safe, not to screw users over. It's not LSD's fault nobody practices even the minimal discipline needed to protect themselves.
Of course this paticular attack can be stopped with a patch, that is off course if you can keep your computer running long enough to log onto microsoft.com and download the patch.
Now I have a mantra you need to repeat over and over again in order to stay safe.
1. find a quiet seculded corner of a room
2. turn down the lights, make your self confortable.
3. burn some lightly sented ensense, becaureful not to overload your senses.
4. sit cross legged in the traditional yoga manner, close your eyes and.
5 repeat: "In windows operating systems; security costs extra."
Do that hundred times, then take a nap. Get drunk later that evening, but be sure to get rid of all AOL products before hand because sometimes people suffer a uncontrollable urge to use up those free hours as a side-effect.
Of course if you run the same type of anti-virus software that I use, you'd never have to worry about this stuff again. (just as long as you keep yourself educated and the OS up to date.) Hell I can probably put my computer out on the internet with no firewall or anything (although I a fundamentally lazy and so I use a firewall to slow attacks down) and not have to worry about virus's and script kiddies, as long as I pay attention to security advisments. You always will have to worry about uber crackers no matter what, though.
Facebook
Twitter