"If you’ve never heard of VUPEN, that’s because it isn’t your typical security company. The firm finds exploits in popular software from major technology companies like Microsoft, Apple, and Google, only to sell the details to governments around the world and various other parties willing to write massive cheques.That’s right; the exploits aren’t reported to the companies affected, but are instead sold so that: VUPEN customers can protect themselves (while their competitors are left vulnerable), they can be abused for spying purposes, and they can be used to create malware. This is why, if you read the tweet above again, you’ll note that this latest victory was only possible thanks to multiple already-existing 0-days that VUPEN found and did not disclose publicly. If it had, it would not be able to sell them, nor would it be able to hack Windows 8, as Microsoft would have already patched the flaws long ago."
The Next Web - Security firm VUPEN claims to have hacked Windows 8 and IE10
(3 posts) (2 voices)-
mikiem2
ModeratorPosted 11 years ago # -
Anonymous
Unregisteredhttps://www.nsslabs.com/reports/browser-security-comparative-analysis-socially-engineered-malware
Browser Security Comparative Analysis: Socially Engineered Malware
To put the numbers in perspective, for every twenty encounters with socially engineered malware, Firefox and Safari users will be protected from approximately one attack. That means nineteen out of twenty socially engineered malware attacks against Firefox and Safari users will end up testing the user’s antivirus and/or operating system defenses. Chrome users will be protected from about fourteen of the twenty attacks, leaving their antivirus and operating systems responsible for protecting against six attacks, and IE10 users will generally be protected from all twenty attacks.Posted 11 years ago #
Reply
You must log in to post.