Advertisement
Promo

Security threats Toolkit

Story: Malware authors mixing a lethal cocktail

  • Previous comment

Posted by: non mouse (Thursday 9 December 2004, 7:10 PM)

  • Reply

Don't understand why she says she is against anyone who publishes vulnerabilities. Many times people find a hole, they approach M$/other software vendor and are ignored. The hackers know the vulnerabilities and share them amongst themselves. Sometimes, publishing the vulnerabilities is the only way to get the vendor to fix the problem.

By not publishing the vulnerabilities, the only people who get hurt are the admins who can't protect against something they don't know exists. The hackers will share the holes and exploit them regardless.

Maybe she means there should be a recommended delay between finding the hole, informing the vendor, and publishing?

  • Previous comment

  • Reply to this comment
  • Return to story
  • Report this as offensive


Full Talkback thread

Sentry Posts Blog

Authentication risks all too human

Risks to successful online banking identification and authentication using smartcards involve a mixture of human and technological factors, according to the European Network and Information... More

1 comment

Opera censors Chinese content

Opera has updated the Chinese version of its mobile browser to stop users accessing restricted content. Opera Mini was updated on Friday from an international to a Chinese version,... More

2 comments

Symantec website breached

Security company Symantec has said that one of its websites was successfully breached. Romanian security researcher 'Unu' posted details of the breach in a blog post on Monday. Unu... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

Newsletters