This is cache of http://feeds.feedburner.com/~r/itsecurity/~3/285089977/. Cache is the snapshot of article that we took when we index feed.
To see original page click here.
We are not affiliated with the authors of this article and not responsible for its content.
Reversing a Security Patch with Automated Exploits
2008-05-06 20:10:09 by Editor in IT Security - The IT Security Industry's Web Resource
 

Here’s an interesting phenomena — hackers that use automated tools to engineer an exploit just after a patch for the vulnerability is released. Since many don’t know about vulnerabilities until a patch comes out, and many people don’t apply patches immediately, the new information gives hackers an extra in, into the systems.

Hackers exploit this period of time - the so-called patch window - to launch attacks against unpatched machines. Typically, exploits are developed by skilled hackers versed in the arcane intricacies of reverse engineering.

However, hackers have now begun using off-the-shelf tools to at least partially automate this process, a development that might lead to exploits coming out hours instead of days after the publication of patches.

Darknet has a good discussion of the original article, check them out.

 
Tags: patch, phenomena hackers, hackers, hackers exploit, apply patches immediately, patch window, exploits, patches, exploit
 
 
 
 
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia