McAfee: IE Exploit to Blame for Chinese Google Hack
McAfee: IE Exploit to Blame for Chinese Google Hack
Posted 01/14/2010 at 6:42pm
| by Ryan Whitwam
4
Comments
Print
Security firm McAfee said today that the recent China-based attack on Google and other companies was the result of a new security hole in Internet Explorer. McAfee says the vulnerability is not publicly known, but they have informed Microsoft and expects them to take action soon. So a Microsoft product could be the indirect cause of Google pulling out of China. This must be Microsoft’s favorite software vulnerability ever.
McAfee’s George Kurtz wrote on the companies official blog, “These attacks will look like they come from a trusted source, leading the target to fall for the trap and clicking a link or file. That’s when the exploitation takes place, using the vulnerability in Microsoft’s Internet Explorer." Kurtz was also careful to point out that they have only confirmed that Internet Explorer was a vector of attack; there could have been others.
Further, McAfee says they have cleared Adobe Reader of involvement in the attacks. This comes after several reports implicated the oft exploited software suite.
More like this
decapitor
January 15, 2010 at 8:25am
I just had an autoplay ad video with sound start when viewing this article MaxPC. That's a pretty huge no-no if you want people to come back to your site.
AndrewEgel
January 14, 2010 at 11:43pm
So its the browser's fault for allowing the infection for coming in? Not McAfee antivirus program that should be doing that?
Seriously?! Why are "we" (we being a general term for people listening to McAfee's "announcements") listening to McAfee's predictions and announcements? They make a horrible product.
Once McAfee comes out with something respectable then I will start listening.
somethingelse
January 15, 2010 at 6:55am
You obviously never used McAfee ePolicy and only used their home products, which do kind of blow. But their enterprise protection products aren't bad, better then most alternatives in the price range.
If companies like McAfee, Kaspersky and Symantec didn't make announcements about security vulnurabilities, then wtf would? I agree this announcement may not be true, it will take a couple of more days to confirm it, but at least someone is working on preventing this from happening again using the same methods these hackers used...of course it won't be long till they find another way :)
what signature, where do i sign?
Cy-Kill
January 15, 2010 at 5:07am
I don't even think any of Google's servers in run a version of Windows Server, so why is this even news, it's just as bad as when Symantec speaks!
Cy-Kill
Connect with MaximumPC
Featured Content
We introduce Intel's latest class of tablet killers and review 4 of the first Ultra...
Where have all the memorable videogame enemies gone?
This month's issue
Feature
11 Hardware Hacks
Feature
Overclock Your CPU
How-To
Supercharge Your Smartphone
Build It
A Powerful $830 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Can RIM *ever* catch a break? Not today! App World numbers not as great as previously reported http://t.co/3ERRhr3119 hours 33 min ago
- maximumpc: Solid state shakeup: Intel 520 SSD vs OCZ Octane vs Patriot Pyro SE! http://t.co/lXDufI7w20 hours 49 min ago
- maximumpc: Woman Ordered to Decrypt Laptop Claims She "Forgot" Key http://t.co/C2TCp4Ml21 hours 43 min ago
