Microsoft security chief bitten by rogue dialler

[Refalm]

No-one is above the threat posed by rogue diallers, it seems: Microsoft's top security man in the UK recently found himself with a whopping BT bill

Speaking to ZDNet UK on Tuesday, Gibson revealed that he has recently been hit by a

[MarathoN]

Hahaha, great news Refalm, I liked reading that.

[Aloone_Jonez]

What an idiot, even if he doesn't want to use Firefox on principle he could've at least had the sense to disable ActiveX controls.

[muzzy]

The article doesn't state how he got the thing. Do you guys have more information on this, since you comment that you can secure your systems better than him?

[Refalm]

My parents browse with Firefox, use AntiVir for anti-virus protection (and includes dialer remover) and I inserted the this in /etc/hosts on my router.

[mobrien_12]

"I'm so perturbed about the whole area of rogue diallers

[worker201]

yeah, their version of the internet

[Refalm]

In their version of the Internet, every computer is in a global domain so that ASP .NET can use Windows Validation for web shops.

[Aloone_Jonez]

The article doesn't state how he got the thing.

What are the usual exploits rogue diallers take advantage off then?
Normally they're IE and you won't be affected if you use an alternative browser like Opera or Firefox, they're normally ActiveX too, so even if you use IE you can reduce the risk significantly by disabling ActiveX controls, come on muzzy you already knew this.

Do you guys have more information on this, since you comment that you can secure your systems better than him?

None, other than the fact we've never been hit by a rogue dialler.

[Jack2000]

stupid bums

Here at my country we have solid PPPoE (router/server protection) security
you do not use Dial-up anymore

(PPPoE conncection is still a form of dial-up but it uses lan cable
to connect to the router and .... blahidi blah....
the phone company gets fucked over for not being in the loop)

[Refalm]

stupid bums

Here at my country we have solid PPPoE (router/server protection) security
you do not use Dial-up anymore

(PPPoE conncection is still a form of dial-up but it uses lan cable
to connect to the router and .... blahidi blah....
the phone company gets fucked over for not being in the loop)

I've got a phone modem too. You can't blame someone for having a phone modem.

[muzzy]

What are the usual exploits rogue diallers take advantage off then?

My point is, and you don't seem to deny, that you've resorted to abductive logic instead of the typical deductive kind. Unfortunately, abduction isn't sound reasoning, and only works if there aren't any significant unknown information. You're saying that just because the attack typically happens in some way, that must be the way it happened in this specific case. You're making this conclusion because you cannot know of any other way the infection could have happened. From my point of view, this is ignorance and not insight.

You see, if X implies Y, and you only know Y is true, you cannot say that X has happened unless you know for certain that there's no other way Y could be true. In this case, you definitely don't have such certainty, and I'm sure you admit it yourself as well.

It's like saying that since you can make people smile by drugging them, you all must be drugged if you smile at the logic in this sentence. Or did you know that you can make people post to microsuck forums by shoving a pineapple up their ass? What does that tell about you all? Get the point?

[Aloone_Jonez]

Fair enough muzzy but you haven't as of yet been able to provide an alternative explanation.

Infact it doesn't matter how he got hit, the point is  Microsoft's head of security should know what he's doing when it comes to securing his system and if he did it wouldn't have been attacked.

[mobrien_12]

It's like saying that since you can make people smile by drugging them, you all must be drugged if you smile at the logic in this sentence.

Umm, no.  It's like saying that the most common reason for being drunk is taking alcohol and that if you look drunk you must have been drinking.  Sure, you could be having an adverse reaction to a prescription  medicine, or a stroke, but the overwhelming probability is that you've been drinking.

What you are saying is a well known fallacy called reduction ad absurdium where you try to reduce an argument to something so simple that it seems ridiculous.  It's not valid logic, because it ignores all the other facts involved.  

It is well known that IE with its stupid activeX security model can infect the hell out of a windows machine with drive by installs.  It is a fact that this would not have happened if he was on a Linux or BSD machine.  The fact is that the head of MS security in England can't keep his own computer secure, while most of US can, even when using windows.

[hm_murdock]

It's all because people in upper and middle management positions typically are the lowest examples of intelligence on the Earth.