PoLiX Posted August 8, 2008 Report Posted August 8, 2008 http://www.msnbc.msn.com/id/26091252LAS VEGAS - A newly discovered flaw in the Internet's core infrastructure not only permits hackers to force people to visit Web sites they didn't want to, it also allows them to intercept e-mail messages, the researcher who discovered the bug said Wednesday. Considering the silent nature of the attack and the sensitive nature of a lot of electronic correspondence, the potential for damage from this second security flaw is high. But there's no evidence yet that this method of targeting e-mail has been used in a successful attack. Dan Kaminsky of Seattle-based security consultant IOActive Inc. exposed a giant vulnerability in the Internet's design that, in one case, allowed hackers to reroute some computer users in Texas to a fake Google.com site loaded with automated advertisement-clicking programs, a scam to generate profits for the hackers from those clicks. 1st read about this a few days ago, but it seems that it is even bigger than 1st thought. Figured it was worth a read.
FMBI Posted August 8, 2008 Report Posted August 8, 2008 I thought this was discovered a few months ago. But it makes sense they could intercept e-mails if they can fake domains.
»Lynx Posted August 8, 2008 Report Posted August 8, 2008 I think I remember reading this on /. a while ago. -Lynx
Recommended Posts