All three browsers were hacked and used to give complete access to the PC or Mac they were on.
Goes to show that computer security is like locking the doors and windows.. it will dissuade the typical small time guy who'll just look for an easier target, but if someone really wants in, they're getting in.
__________________ Uncertainty is an uncomfortable position.
But certainty is an absurd one.
t is this sandboxing that might explain why Google's Chrome was untouched; no researcher even attempted to attack it. It is certainly not the case that Chrome has no security flaws—a couple of days before the Pwn2Own draw was made to decide who got to attack which machine and in what order, Google published an update to Chrome that fixed a range of security flaws, some of which were deemed to be high-risk. Google's sandboxing shouldn't be impenetrable, but it is sufficient to make the standard harmless exploit payload—starting up Windows calculator—harder to do.
__________________
"The problem with any ideology is that it gives the answer before you look at the evidence."
—Bill Clinton
"The greatest obstacle to discovery is not ignorance--it is the illusion of knowledge."
—Daniel J. Boorstin, historian, former Librarian of Congress
"But the Senator, while insisting he was not intoxicated, could not explain his nudity"
—WKRP in Cincinatti
The browser gets around the firewall every time you request a page or whatever, so attacks would probably be through that. Malformed images, javascript, CSS, something like that.
__________________ Uncertainty is an uncomfortable position.
But certainty is an absurd one.
The browser gets around the firewall every time you request a page or whatever, so attacks would probably be through that. Malformed images, javascript, CSS, something like that.
So the firefox plugin Noscript would only stop the javascript ones? None of the otherS?
IE8, Firefox, Safari all hacked today.
