New
#1
That's some powerful security. Wish they hadn't said that the error reporting sends them the viruses though ... if they hadn't spilled the beans to the public, that could've been a good way to stay ahead of the hackers.
Didn't see this story posted. It's a few days old, sorry if it's a repeat. Interesting about moron hackers, but I'd like to know more about how a website can withstand such a barrage.
Full story - Hackers accidentally give Microsoft their code
When hackers crash their systems while developing viruses, the code is often sent directly to Microsoft, according to one of its senior security architects, Rocky Heckman.
When the hacker's system crashes in Windows, as with all typical Windows crashes, Heckman said the user would be prompted to send the error details — including the malicious code — to Microsoft. The funny thing is that many say yes, according to Heckman.
"People have sent us their virus code when they're trying to develop their virus and they keep crashing their systems," Heckman said. "It's amazing how much stuff we get."
At a Microsoft Tech.Ed 2010 conference session on hacking today, Heckman detailed to the delegates the top five hacking methods and the best methods for developers to avoid falling victim to them. Heckman explained how to create malicious code that could be used in cross-site scripting or SQL injection attacks and, although he said it "wasn't anything you couldn't pick up on the internet", he suggested delegates use the code responsibly to aid in their protection efforts.
According to Heckman, based on the number of attacks on Microsoft's website, the company was only too familiar with what types of attacks were most popular.
"The first thing [script kiddies] do is fire off all these attacks at Microsoft.com," he said. "On average we get attacked between 7000 and 9000 times per second at Microsoft.com," said the senior security architect.
That's some powerful security. Wish they hadn't said that the error reporting sends them the viruses though ... if they hadn't spilled the beans to the public, that could've been a good way to stay ahead of the hackers.
Hahaha, lol. So if I'm understanding this properly, when hackers are developing and testing viruses on their own system, they send their work to Microsoft when they crash their own system due to Error Reporting?
Hmm yes! A little negative equity in the brain synapses department!
Microsoft should of kept there mouth shut. Never tell your enemy your game plan. If I was the boss Mr. Rocky Heckman would be looking for a job.