While an authentication flaw, social engineering, and questionable account recovery methods all played a part in the attack, CloudFlare admits, in Prince’s own words, that they “did some dumb things”Full Story
Update: 06-Jun-2012:
Google now starts informing users in case they think they have been victims of state sponsored attack. No details are however being disclosed.
Update: 15-Jun-2012:
Details around what 0-day vulnerability is being used
Update: 20-Jun-2012:
European aeronautical supplier's website infected, with this same exploit.
No comments:
Post a Comment