groingo2 Posted September 13, 2005 Share Posted September 13, 2005 Well, the beta people don't want to hear the testers but IE 7 B1 is being punched full of security holes already. The biggest annoyance is good old World Antispy Malware...it just keeps getting better. This is Win Xp Svc Pk2 current updates, anti phishing on, scripting off and firewall on. So much for IE 7. Link to comment Share on other sites More sharing options...
bangbang023 Veteran Posted September 13, 2005 Veteran Share Posted September 13, 2005 Just wait. Beta 1 is a very early release and isn't close to representing the final product. The final version is expected to, by default, run with lower rights to prevent stuff like this. Link to comment Share on other sites More sharing options...
Slimy Posted September 13, 2005 Share Posted September 13, 2005 beta 1 means beta 1. not final. beta. in testing. incomplete. in development. Link to comment Share on other sites More sharing options...
HoochieMamma Posted September 13, 2005 Share Posted September 13, 2005 What scares me is he says "scripting off" Link to comment Share on other sites More sharing options...
groingo2 Posted September 13, 2005 Author Share Posted September 13, 2005 What scares me is he says "scripting off" 586518301[/snapback] That is what surprised me too, because leaving scripting off has been a very good failsafe protection but not any more. Everything was working quite well for the past three weeks then BAM...the World Antispy guys come up with this latest mutation of their perverted little game which looks to have opened the door for the others that followed. I realize this is a beta, but what really burns me is that I mistakenly thought...who'd waste their time on a beta...I was wrong. What really ticks me most is I was right in the middle of updating Neoplanet which was doing nicely with IE 7B1 and then this. Link to comment Share on other sites More sharing options...
mircleman Posted September 13, 2005 Share Posted September 13, 2005 I really love this whenever anyone says anything about holes its oh it beta early stages blah blah. I.E. 6 which has been out for years is still full of holes. so thats throws your logic right out the window. it will be the same as always they will hipe how secure it is. then few weeks later people will come along and poke holes in it. get used to it. Link to comment Share on other sites More sharing options...
groingo2 Posted September 13, 2005 Author Share Posted September 13, 2005 I really love this whenever anyone says anything about holes its oh it beta early stages blah blah. I.E. 6 which has been out for years is still full of holes. so thats throws your logic right out the window. it will be the same as always they will hipe how secure it is. then few weeks later people will come along and poke holes in it. get used to it. 586519040[/snapback] I couldn't agree more but what really disturbs me is that 1. Again, the Microsoft beta people are not listening (as usual) and 2. why anyone would attack a beta...unless it was just too easy, and that seems to have been the case here. What it does show is Microsoft has a very long way to go...now, if I could just update the Gecko engine capability in Neoplanet I would be happy. Link to comment Share on other sites More sharing options...
mircleman Posted September 13, 2005 Share Posted September 13, 2005 yes i know it's sicking how they always do that. fans and all you know. but the reason they are attacking the beta is to get a jump on the devleopment so when it is released they will already have the malware etc in place. ill stick with ff. I do have the beta and i used it a little but not much, just not for me . Link to comment Share on other sites More sharing options...
abc@home Posted September 16, 2005 Share Posted September 16, 2005 I'm not sure what happened but it's not necessarily due to vulnerability. If one accepts an activex download installation, he can get spyware/adware installed with scripting off. And as usual, one can get adware/spyware bundled in other software he installed. Link to comment Share on other sites More sharing options...
Express Posted September 16, 2005 Share Posted September 16, 2005 So you found a a jar file in the temporary internet files folder and you think your machine is infected. You are crazy man. :rolleyes: Link to comment Share on other sites More sharing options...
ev0| Posted September 16, 2005 Share Posted September 16, 2005 lol. springs leaks "already" was funny enough. These are the same type of people who complain when the sidebar is there; then complain when it isn't. They complain when there is no IE7; then complain when Beta1 is out and it isn't perfect. There is no pleasing them. /me /ignores j00 Link to comment Share on other sites More sharing options...
NightmarE D Posted September 16, 2005 Share Posted September 16, 2005 It's in Beta what do you f*cking expect? It's gonna get nailed by spy/malware people early in beta so they can find whatever holes they can. That's not even the point really. It'll get nailed by them people no matter what stage it's in. So stop running your little whiny mouth. All the idiots like you do nothing but b*tch b*tch b*tch These are the same type of people who complain when the sidebar is there; then complain when it isn't. They complain when there is no IE7; then complain when Beta1 is out and it isn't perfect.There is no pleasing them. ev0| is right..there's no pleasing these idiots. OMG IE7 HAS BEEN INFECTED...IT'S OVER...IT'S ALL OVER...I MUST DIE NOW :cry: :cry: :cry: GROW THE F*CK UP AND SHUT THE F*CK UP Link to comment Share on other sites More sharing options...
groingo2 Posted September 16, 2005 Author Share Posted September 16, 2005 I'm not sure what happened but it's not necessarily due to vulnerability. If one accepts an activex download installation, he can get spyware/adware installed with scripting off. And as usual, one can get adware/spyware bundled in other software he installed. 586534112[/snapback] That was another head scratcher as Active X had also been turned off as well and no files had been installed since the last virus/syware check...it was definitely something new (malware) and was it ever effective! The flip side to this is that I have since found two ways to get rid of the problem thanks to some friends in Norway, so 7 is back up and running till next time. Attacking a beta makes no sense since it is in a state of constant change. Link to comment Share on other sites More sharing options...
Gibwar Posted September 16, 2005 Share Posted September 16, 2005 Do you have Java installed and as a plugin to IE? I've seen some sites load a small java applet that requires one of the JREs (1.3.1 and higher i believe) and downloads and executes itself. I don't know how this is a problem with IE, more of a flaw with java... Link to comment Share on other sites More sharing options...
amrinders87 Posted September 16, 2005 Share Posted September 16, 2005 I really love this whenever anyone says anything about holes its oh it beta early stages blah blah. I.E. 6 which has been out for years is still full of holes. so thats throws your logic right out the window. it will be the same as always they will hipe how secure it is. then few weeks later people will come along and poke holes in it. get used to it. 586519040[/snapback] Thats the case with any application, not just Microsofts stuff. There will be always security holes and bugs, espeically in something that is complex. I mean look at Firefox. It has tons of bugs and people find security holes in it too. Its just the reality of Computer programming that your software will never really be 100% secure. Link to comment Share on other sites More sharing options...
[idkfa] Posted September 16, 2005 Share Posted September 16, 2005 Just wait. Beta 1 is a very early release and isn't close to representing the final product. The final version is expected to, by default, run with lower rights to prevent stuff like this. 586517065[/snapback] But only on Vista, IIRC. Link to comment Share on other sites More sharing options...
groingo2 Posted September 16, 2005 Author Share Posted September 16, 2005 Do you have Java installed and as a plugin to IE? I've seen some sites load a small java applet that requires one of the JREs (1.3.1 and higher i believe) and downloads and executes itself. I don't know how this is a problem with IE, more of a flaw with java... 586534377[/snapback] It was set on HIGH security plus Java was not only disabled but removed from the machine as well all scripting was disabled or any inference of script activity including Java Applets and Active X scripting. When the initial malware got through it seemed to open the door for the four other trojans that followed. An impressive little spud! Link to comment Share on other sites More sharing options...
Recommended Posts