Roy Schestowitz <newsgroups@xxxxxxxxxxxxxxx> writes:
> __/ [Roy Culley] on Monday 28 November 2005 00:11 \__
>> begin risky.vbs
>> Windows rootkit install HOWTO:
>> 1. Open CD drive
>> 2. Insert music CD
>> 3. Close CD drive
>> All done - Windows: Insecure by design
> No need for rootkit either:
> "'Crash into me...' If you buy the new Dave Matthews Band Stand Up
> CD, do not put it in your Windows computer. I did and it popped up
> an annoying software installation and I said no to it just like I
> did 9 years ago when I first saw that happen with Fiona Apple?s
> Tidal. It then ejected the CD. First strike! I just wanted to listen
> to it. So I did the logical thing and pushed the CD drive back in,
> and the CD spun up and then the computer crashed and rebooted.
> Needless to say, this is a very bad thing."
This is really incredible. Actually, it is not a very bad thing. The
more these exploits that are caused by the next to total lack of
security of MS Windows are publicised the better.
Everyone knows connecting a MS Windows box to the Internet is a major
security risk. Now it seems just inserting audio CD's is a greater
risk. Seems my .sig needs updating: If infection fails at first
attempt try again.
Windows rootkit install HOWTO:
1. Open CD drive
2. Insert music CD
3. Close CD drive
All done - Windows: Insecure by design