Secure Coding mailing list archives

State Department break-in last summer

From: fw at deneb.enyo.de (Florian Weimer)
Date: Fri, 20 Apr 2007 21:41:48 +0200

* Nick FitzGerald:

You -- and all journalistic and other commentaries I've seen/heard on 
the increasingly common use of these targetted Office exploits -- miss 
one very important option, I think; the attacker has access to 
(partial) source of the closed, supposedly closely-held, proprietary 
software in question.


<http://www.microsoft.com/presspass/press/2004/sep04/09-19OfficeGSPPR.mspx>

I would expect that various universities have got access to the source
code as well, and several companies.

The times when you couldn't get source code for proprietary,
off-the-shelf software are over.  Welcome to the new world order! 8-)

Current thread:

State Department break-in last summer Ed Reed (Apr 19)
- <Possible follow-ups>
- State Department break-in last summer Nick FitzGerald (Apr 19)
  - State Department break-in last summer Florian Weimer (Apr 20)