Author Topic: The Power of (Misplaced) Trust: HTAs and Security  (Read 1872 times)

0 Members and 1 Guest are viewing this topic.

October 16, 2009, 02:54:53 pm
Read 1872 times

SysAdMini

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 3335
http://www.sophos.com/blogs/sophoslabs/?p=6929

Quote
We have seen a few spam samples today which use the old tactic of HTML Application (.hta) scripting to get malicious code onto a Windows machine via Internet Explorer. A gullible user is only two non-default security settings and one socially-engineered click away from further badness.

Ruining the bad guy's day