Researchers point to deeper issues on IE exploit

As we approach Black Hat Washington DC Conference next week there seems to be more and more unraveling about the vulnerabilities recently discovered in Internet Explorer. The security firm Vupen's Security in France has said it has confirmed code execution with Internet Explorer 8 even with Microsoft's DEP enabled. The company has said it has not released the exploit code to the general public but encourages all users to Disable Active Scripting. The firm also recommended using IE 8 on Wiindows 7 over even IE8 on XP SP3.

Let's see if there are more discussions or disclosures happening about Operation Aurora next week at Black Hat. Infragard Security Organization also announced that it is holding a Webinar on Feb. 2nd to review Aurora and some security initiatives with Adobe, one never knows.

There are other researchers pointing out that there are organization specializing in in gathering intelligence on corporate, and government entities vulnerabilities and weaknesses in their control environments and making that information sale to others that might seek to gain a competitive advantage either technically or politically over their rivals and even providing Cloud Bot Services to deploy their objective. Researchers maintain that there are organizations active today that actively are gathering information whether externally or internally about the infrastructure and the control environments of industries or individuals with the hopes of selling that information or leasing time on distributed servers with access to gain intelligence on their competitors.

For those of us that have been lucky enough to hear Gordon Smith from Canaudit speak about using social and technical engineering to collect information for pen testing and/or auditing, by gathering up as much information as possible to obtain access through both methods is worthwhile.

While this all sounds very Swordfish vogue, there is a lot of information scattered across the world that is very valuable or can gain access to valuable things. If 90% of the systems are running common code, that reduces the amount of unraveling. There was a presentation by "javaman" in New York at the 5th HOPE conference that outlined his thoughts on "Security through Diversity" that I thought was very interesting as well as his talk on parallelism, how individual systems and large enterprises can improve their tolerance to massive attacks through this principle. If you're under attack why would you fail over your control environment to the exact same mirror control environment that was already compromised?

The first time I saw mshtml being utilized for deployments of software by the user accessing a URL and the whole process would happen in the background without the user knowing, I thought to myself that it could only be trouble and that was probably about 2000 - 2001, thanks Jon R. you were always workin it. Jon and Bjorn always had some cool Windows stuff going no matter if it raised the hairs on the back of your neck.


Click here for more information