Blog for hpHosts, and whatever else I feel like writing about ....

Monday 4 May 2009

McAfee Secure (aka "hacker safe") called into question as McAfee's OWN SITE is compromised via XSS to allow malware distribution and fraud

McAfee are experiencing a whole host of problems lately, the most recent of which, calls into question their McAfee Secure program, that scans sites participating in the program, for vulnerabilities that would allow a hacker to exploit it.

The reason this has been called into question? McAfee's own website has been found to be vulnerable to an XSS attack - how can they be trusted to validate another site if they can't even secure their own?

Read more on this issue over at ReadWriteWeb;

http://www.readwriteweb.com/archives/mcafee_enabling_malware_distribution_and_fraud.php

Kudos to Suzi at Spyware Warrior for the heads up.

No comments: