A serious security flaw affecting every version of Microsoft (NSDQ:MSFT) Windows operating systems, including Vista, could enable cyber criminals to take control of an untold number of machines around the globe and manipulate personal information. The bug, which was first reported by the Sydney Morning Herald, was demonstrated last week at the Kiwicon hacker conference in New Zealand by researcher Beau Butler.
The vulnerability could ultimately compromise millions of home or office machines, particularly those located outside the U.S., subjecting them to attack by cyber criminals who could then acquire passwords, monitor Internet use, or steal personal, financial or identifying information. "The real risk here is, someone else may automatically configure your proxy for you and redirect traffic through their malicious server," said Oliver Friedrichs, Symantec security response director. "A lot of that traffic is encrypted, but the attacker could intercept it and cause it to be unencrypted."
View: The full story @ CRN