Brian Krebs has news of a new vulnerability in Windows 7, where link files on a thumb drive can execute arbitrary code when encountered by Windows Explorer. The link files themselves do not need to be clicked on by the user.
AND the malware they describe seems to target SCADA systems. I used to think that stego was a non-issue and that no one in the history of computer forensics ever came across legitimate use of it... but then there were the Russians. Similarly, I used to think that all the hype about securing SCADA systems from malware was a non-issue...
my of-ness
- Jon Stewart
- I am a software developer, with a strong background in DFIR tool development. I'm currently a Vice President at Aon Cyber Solutions/Stroz Friedberg, where I lead a dev team.
subscribe
Posts
Comments
No comments:
Post a Comment