M$ hacked... again

InfoWorld is reporting that Microsoft has been hacked again, this time through a known bug in its IIS software. Seems M$ isn't even applying patches for its own software to at least one of its web servers, since a hacker was easily able to exploit a documented security hole.
"We investigated this report," Microsoft spokesman Adam Sohn said. "He was able to exploit a known security flaw that we were able to patch. The patch had not yet applied to the server." He could not confirm that all servers in Microsoft's network had the hole patched.
Guess the M$ tech boys haven't been reading TR... We had a news post about that very bug when the patch was released last month. ;) Thanks to /. for the tip.
Tip: You can use the A/Z keys to walk threads.
View options

No comments in this discussion yet.