RealNews

New IIS Exploit Could Be One of Many

Just one week after Microsoft Corp. alerted the public to a serious security vulnerability in a component of its Windows 2000 operating system, a security researcher has posted code to exploit that vulnerability. The code, or “exploit,” was posted yesterday by Rafael Nunez, a senior research scientist at Scientech de Venezuela in Caracas, Venezuela, to two online discussion lists frequented by computer security experts. The actual code was written by an individual using the name “kralor,” part of a group called Coromputer. Nunez verified and tested the exploit before posting it. The exploit posted by Nunez could be dangerous, but it’s similar to code that was already being developed and circulated among malicious hacker groups online, according to David Litchfield at Next Generation Security Software Ltd. (NGSS) in Sutton, U.K. Full Story

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.