1. 14

  2. 2

    The WIndows 7 attack seems to require the victim is not running updates. So, if some KB defeats the exploit, doesn’t that mean the exploit is not new? Or is he just saying that penetrating the firewall lets you attack any vulnerable host inside? But if so, why does he pick on Windows 7?

    1. 2

      God I’m tired of the branded attack websites. I understand picking a catchy name so people actually talk about the exploit and fix it, sure, but why go so far with the branding? Is it a prestige/recruitment thing?

      1. 4

        I think it’s the same reason we have host and domain names. Humans are lousy at remembering numbers or jumbled alphanuneric codes, but we are very good at correlating names with characteristics, so in a way, branded attacks act as mnemonics to help us remember the vulnerabilities and if they were mitigated or not.