Language Selection

English French German Italian Portuguese Spanish

RSS, Spyware’s next frontier.

Filed under
Security

Richard Stiennon VP of Threat Research at anti-Spyware company Webroot Software, Inc earlier this year announced his predictions for 2005 in relation to security vulnerabilities and Spyware problems. Most of the predictions were fairly predictable like:

The number of new Microsoft vulnerabilities will grow.

Which isn’t a surprise to anyone in the IT industry and probably a good many people that aren’t. Other predictions like: The US and European nations will pass anti-spyware laws, and the number of different types of spyware will double to 3,000 are not exactly unexpected either.

However at least one of the predictions causes a pause for further thought. In short one prediction that RSS syndication will soon be used as a tool to distribute advertising, Spyware and other malicious code. RSS is basically just XML so the medium isn’t potentially dangerous by itself, but flaws that target specific RSS readers could conceivably result in the transfer of Spyware. RSS is already being used to distribute advertising so that one isn’t a surprise either. RSS has most of the benefits of E-mail and that means it also has most of the problems. One of those problems is that malicious parties can use social engineering tricks to get people to follow links in RSS to download malicious content, which is probably what Mr Stiennon meant. The problem with that theory is that a user must first subscribe to an RSS feed to be at risk at all, which makes it considerably less reliable a method of transferring malicious content then E-mail or web pages.

One other prediction Mr Stiennon made was that Firefox would become the target of Spyware sometime in the first half of this year. I’m not so sure about this one because it is mostly the more techie users that have become hooked on Firefox and they would not be particularly good targets for Spyware since they are also the kind of users most likely to have anti-Virus and anti-Spyware software running, if they are using Windows that is.

Source.

More in Tux Machines

Tails 1.1.1 is out

The next Tails release is scheduled for October 14. Have a look to our roadmap to see where we are heading to. Read more

Healthdirect Australia sees value in open source for security solution

Commonwealth and state/territory government funded public company, Healthdirect Australia, has used open source software to build an identity and access management (IAM) solution. The IAM solution allows users to have one identity across all of its websites and applications. For example, users can sign in using their Facebook, LinkedIn or Gmail account. Read more

Ubuntu Installer Bug Can Delete Your Hard Drive and All Other OSes

The Ubuntu installation procedure is governed by a piece of software called Ubiquity and it's one of the most intuitive and easy-to-use installers on the Linux platform. Unfortunately, users have been confronting with a bug that could wipe their entire hard-driver without any kind of announcement. Read more

You have your Windows in my Linux

Although there are those who think the systemd debate has been decided in favor of systemd, the exceedingly loud protests on message boards, forums, and the posts I wrote over the past two weeks would indicate otherwise. I've seen many declarations of victory for systemd, now that Red Hat has forced it into the enterprise with the release of RHEL 7. I don't think it's that easy. Read more