iOS Developer Site At Core of Facebook, Apple Watering Hole Attack 88
msm1267 writes "The missing link connecting the attacks against Apple, Facebook and possibly Twitter is a popular iOS mobile developers' forum called iphonedevsdk which was discovered hosting malware in an apparent watering hole attack that has likely snared victims at hundreds of organizations beyond the big three. It's not clear whether the site remains infected, but researcher Eric Romang dug into the situation and determined that the site was hosting malicious JavaScript that was redirecting visitors to another site, min.liveanalytics. That site had been hosting malware as of Jan. 15."
Obligatory (Score:4, Funny)
Re:Obligatory (Score:4, Funny)
Smoking bong hits, laughing hysterically, and trying to figure out how else to fuck with us. ;-)
Re:without clicking on the link (Score:5, Funny)
Re:Okay.... this is a new one. (Score:5, Funny)
What the heck is a "watering hole attack"?
It's where troopers metaphorically attack a swagman by a billabong (the 'watering hole') causing him to leap to his death and subsequently haunt the area. I won't go into detail on how this applies in relation to computer security, but I'm sure you get the gist of it.
Re:LOL (Score:5, Funny)
Since the exploit was in Oracle Java I would blame Java, not the operating system which dutifully let the program run. What do you suggest that Apple should do to tidy up the security in OS X? Make it run only Apple approved binaries?
Re:Obligatory (Score:2, Funny)
Don't think of it as an asteroid impact, think of it as a polite inquiry into the progress of your space program.