Author Topic: The Power of (Misplaced) Trust: HTAs and Security  (Read 2590 times)

0 Members and 1 Guest are viewing this topic.

October 16, 2009, 02:54:53 pm
Read 2590 times


  • Administrator
  • Hero Member

  • Offline
  • *****

  • 3335

We have seen a few spam samples today which use the old tactic of HTML Application (.hta) scripting to get malicious code onto a Windows machine via Internet Explorer. A gullible user is only two non-default security settings and one socially-engineered click away from further badness.

Ruining the bad guy's day