Microsoft Forgets To Patch Korean Web Server, Hackers Swipe Passwords
from the that'll-teach-you... dept
If you thought that Microsoft needed a lesson in the difficulty they face getting everyone to patch their operating systems every time a new security hole is announced, they may have just received one. Apparently, some hackers broke into MSN’s site in Korea and installed a tracking program to record the data as anyone entered their user name and password. How did the hackers get in? Turns out the server wasn’t patched, and the hackers exploited a known hole in the operating system. Microsoft points out that they didn’t manage the server themselves as an excuse for this — but it should make it pretty clear that they may be a bit over-optimistic in expecting everyone to keep patching their own operating systems.