View Single Post
  #1   (View Single Post)  
Old 5th April 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default RSA break-in: it was the Flash Player's fault

From http://www.h-online.com/security/new...t-1221057.html

Quote:
On its company blog, RSA has released details about the server break-in it reported about two weeks ago. According to Uri Rivner, head of the company's "Consumer Identity Protection" division, the intruders used a backdoor that they installed using infected emails. The emails reportedly contained an Excel spreadsheet with an embedded, specially crafted Flash file. When the spreadsheet was opened, Flash Player started the Flash applet to play the file.

A flaw that has since been fixed by Adobe enabled the attackers to inject code into the system and execute it there. F-Secure has described an attack scenario that involves the same exploit.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote