Error
  • JUser::_load: Unable to load user with id: 67

Featured Articles

Analysts expect ARM to do well next year

Analysts expect ARM to do well next year

British chip designer ARM could cash in on the mobile industry's rush to transition to 64-bit operating systems and hardware.

More...
Huawei and Xiaomi outpace Lenovo, LG in smartphone market

Huawei and Xiaomi outpace Lenovo, LG in smartphone market

Samsung has lost smartphone market share, ending the quarter on a low note and Xiaomi appears to be the big winner.

More...
Intel Broadwell 15W coming to CES

Intel Broadwell 15W coming to CES

It looks like Intel will be showing off its 14nm processors, codenames Broadwell, in a couple of weeks at CES 2015.

More...
Gainward GTX 980 Phantom reviewed

Gainward GTX 980 Phantom reviewed

Today we’ll be taking a closer look at the recently introduced Gainward GTX 980 4GB with the company’s trademark Phantom cooler.

More...
Zotac ZBOX Sphere OI520 barebones vs Sphere Plus review

Zotac ZBOX Sphere OI520 barebones vs Sphere Plus review

Zotac has been in the nettop and mini-PC space for more than four years now and it has managed to carve…

More...
Frontpage Slideshow | Copyright © 2006-2010 orks, a business unit of Nuevvo Webware Ltd.
Monday, 26 March 2007 13:36

Windows Network settings are security killer

Written by

Image

Design bug

 

A fundamental design flaw in the way that Windows obtains proxy settings makes the operating system vulnerable to attack.


Security company IOActive told the ShmooCon hacker conference that an attacker with access to a network could insert a malicious proxy and see all the traffic.


Chris Paget, director of research and development at IOActive told the converence that it was easy for a hacker to become a proxy server without a company knowing about it.


According to News.com, the problem is caused because Internet Explorer on Windows PCs by default searches for a proxy server using the Web Proxy Autodiscovery Protocol, or WPAD.


An attacker can register a proxy server on a network using the Windows Internet Naming Service, or WINS, and other network services including the Domain Name System, or DNS. the first thing IE does when IE starts up is ask the network where its proxy server is and a hacker only has to show it where to go.


Microsoft has acknowledged that there is a problem.

More here

 

Last modified on Monday, 26 March 2007 18:23

E-mail: This e-mail address is being protected from spambots. You need JavaScript enabled to view it
blog comments powered by Disqus

 

Facebook activity

Latest Commented Articles

Recent Comments