RSS To Carry Spyware Before Year’s Out

By

By the end of the year, spyware will have turned to RSS to distribute its key loggers and ad spawners, a security expert says.

A vulnerability will be found in one of the big blogging services. “If a spyware writer finds a way to inject code into a blogging site — which could take the form of a SOAP object — most likely through a future vulnerability in Internet Explorer 7, then everyone who subscribes to that service’s blog RSS feeds is gonna get infected.” Such an attack could be massive, and because of the automated nature of RSS, extremely fast-acting.

Comments are closed.