Thread: 'Two weeks' to block cyber-attack
View Single Post
Old 04-06-2014, 13:01   #22
Qtx
Inactive
 
Join Date: May 2012
Location: Probably outside the M25
Services: Sky Fibre Unlimited 40/10
Posts: 3,473
Qtx has a bronzed appealQtx has a bronzed appeal
Qtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appeal
Re: 'Two weeks' to block cyber-attack
Quote:
Originally Posted by Ignitionnet View Post
To be honest more often it's Java vulnerabilities and other plug-ins that are the problem rather than IE or any other browser per se.
If we ignore activeX....Java, Flash, PDF and office documents are the most common plugins that lead to a compromise through the browser or OS.

---------- Post added at 13:59 ---------- Previous post was at 13:53 ----------

Quote:
Originally Posted by Stuart View Post
I don't know what the next attack vector will be but I suspect it'll be other devices (such as smart TVs) that are suddenly wanting internet access as the companies behind these may not have a lot of experience of developing secure software.
There are already vulnerabilities found in smart tv's, which are running a kind of sandboxed linux mostly. Attacking these is not very useful for the average hacker at the moment but that may change if banking apps become common. Tv's with microphones and built in cameras are becoming more common and the security agencies will like to pwn those

Mobile phones have software issues but there is still a fundamental problem relating to SIMs and sending a dodgy message via most networks, which not many people are shouting about. The phone networks can fix the problem easy but that would stop GCHQ from making use of it. It's the only reason I can see that they wouldn't block this backdoor which has been known about for about 2 or 3 years now.

Internet connected fridges and toasters could indeed in theory send out spam.

---------- Post added at 14:01 ---------- Previous post was at 13:59 ----------

Quote:
Originally Posted by Ignitionnet View Post
Smart TVs are pretty disinteresting as they don't hold any private data and aren't really used to do anything that involves it.
It's not stored data, it's data they send via http or other protocols which is of interest. If you use your tv to login to your email or twitter, there is a good chance you use that password elsewhere. If you can get the email password then you could potentially have access to all the accounts of that person.
Qtx is offline   Reply With Quote