Microsoft executives have turned a blind eye against it and are not taking serious measures in order to fix the problem, according to a research in Italy.
The clickjacking bug was discovered as recently as 2008 and was not considered a malicious threat at the time, but it is high time Microsoft pulls up their socks by doing something about the bug, before it is too late.
http://www.winnipegsun.com/2011/05/20/online-survey-downloads-child-porn
http://www.winnipegsun.com/2011/06/01/google-reveals-gmail-hacking
http://www.v3.co.uk/v3-uk/news/2073972/cisco-fixes-security-flaws-router-ios-lines
http://www.v3.co.uk/v3-uk/news/2074224/spammers-domain-parking-services-bypass-anti-spam-filters
http://www.theinquirer.net/inquirer/news/2073723/anonymous-issues-warning-protect-ip-act
http://blog.commtouch.com/cafe/spam-favorites/planning-a-spam-campaign-this-is-what-it-will-cost/
$425 for 9 million recipients (second line) isn’t bad.
http://www.wired.com/threatlevel/2011/06/silkroad/
Underground Website Lets You Buy Any Drug Imaginable
http://www.wired.com/threatlevel/2011/06/gmail-hack/
(Google Disrupts Chinese Spear-Phishing Attack on Senior U.S. Officials)
http://www.techspot.com/news/44083-anonymous-hacks-iranian-government-steals-10000-emails.html
http://www.stuff.co.nz/technology/5105643/FBI-partner-attacked-by-hackers
http://news.cnet.com/8301-13506_3-20068763-17/hackers-go-wild-an-overview-of-recent-incidents/
Even British intelligence officials have gotten into the mix. According to a Daily Telegraph report yesterday, MI6 hacked into an al-Qaeda online magazine recently and replaced bomb-making techniques with recipes on making "The Best Cupcakes in America."
http://www.theregister.co.uk/2011/06/03/acer_customer_data/
http://nakedsecurity.sophos.com/2011/06/06/nintendo-latest-to-fall-victim-to-hacker-attacks/
http://www.securelist.com/en/blog/208188095/TDSS_loader_now_got_legs
http://www.h-online.com/security/news/item/Worm-uses-built-in-DHCP-server-to-spread-1255388.html
http://www.v3.co.uk/v3-uk/news/2032131/adobe-flash-player-103-security-boost
"Users will have a simpler way to clear local storage from the browser settings interface - similar to how users clear their browser cookies today," said Flash product manager Thibault Imbert in a blog post.
"Flash Player 10.3 integrates control of local storage with the browser's privacy settings in Mozilla Firefox 4, Microsoft Internet Explorer 8 and higher, and future releases of Apple Safari and Google Chrome."
The vulnerability affects Adobe Flash Player 10.3.181.16 and earlier for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.185.22 and earlier for Android.
"This universal cross-site scripting vulnerability (CVE-2011-2107) could be used to take actions on a user's behalf on any web site or webmail provider, if the user visits a malicious web site," noted Adobe in a security update.
Hackers exploiting Flash Player XSS vulnerability
In the targeted attacks, Adobe said users are being tricked into clicking on a malicious link delivered in an email message.
The company said it is still investigating the impact to the Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.2) and earlier 10.x and 9.x versions of Adobe Reader and Acrobat for Windows and Macintosh operating systems.
http://www.theinquirer.net/inquirer/news/2075792/chinese-lad-regrets-selling-kidney-ipad