Monday, May 15, 2017

Using Microsoft As A Scouting Service

Re: the most recent mass-hacking.

I read in a WSJ article that the vulnerability being exploited by this hack had been patched by Microsoft 8 weeks ago. It may have been that the hackers didn't know about the vulnerability until Microsoft told everyone in the process of releasing their patch. Knowing the large organizations are slow to apply patches to all of their computers, the hackers could have started working on their attack after the patch had been released.

Brilliant! It's like using MSFT as your scouting service.

No comments: