RE: 0-day exploit..do i hear $1000?

From: Kayne Ian (Softlab) (Ian.Kayneat_private)
Date: Mon Oct 22 2001 - 04:50:12 PDT

Next message: Blue Boar: "Dead Thread 0-Day/$1000"

Previous message: anonpdoxat_private: "sshd exploit & $1,000 whine"
Maybe in reply to: RT: "0-day exploit..do i hear $1000?"
Next in thread: Don Weber: "RE: 0-day exploit..do i hear $1000?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I just remembered the numerous times AV-Vendors have released new AV Defs &
advisories to protect against "virus xyz, which has not yet been seen in the
wild".

Someone go get Mulder & Scully....

Ian Kayne
Technical Specialist - IT Solutions
Softlab Ltd - A BMW Company

> -----Original Message-----
> From: Pedro Miller Rabinovitch [mailto:pedroat_private]
> Sent: Friday, October 19, 2001 10:59 PM
> To: vuln-devat_private
> Subject: Re: 0-day exploit..do i hear $1000?
> 
> 
> At 18:48 -0200 19.10.01, Thiago Conde Figueiro wrote:
> >HC> This certainly is an excellent point.  MSSP's are
> >HC> likely to see that putting a little $$ up front for
> >HC> big dividends in publicity on the back end.  Who's to
> >HC> say it hasn't already happening.
> >
> >	Next thing you know, anti-virus companies will be paying 
> >people to discover viruses.  Heyyy wait a minute... :-)
> 
> I didn't get it. Vulnerabilities are 'discovered' and 'exploited' -- 
> viruses, on the other hand, are 'created'. Hence, the analogy to what 
> HC mentioned in the preceding message would be:
> 
> 	"Next thing you know, anti-virus companies will be paying 
> people to *CREATE* viruses."
> 
> ...which is, as far as I know, merely one of the many unconfirmed 
> rumours people exchange by the water fountains.
> 
> Regards,
> 
> 	Pedro.
> 
> --
> This message bears my personal opinions only and does not necessarily 
> reflect the company's position on any matters.
> -- 
> Pedro Miller Rabinovitch
> Diretor de Tecnologia
> Cipher Technology
> 21-2579-3999
> www.ciphertech.com.br
> 
> _____
> "Segurança em TI - uma especialidade Cipher Technology"
> 

******************************************************************** 
This email and any files transmitted with it are confidential and 
intended solely for the use of the individual or entity to whom 
they are addressed. 

If you are not the intended recipient or the person responsible for 
delivering to the intended recipient, be advised that you have received 
this email in error and that any use of the information contained within 
this email or attachments is strictly prohibited. 

Internet communications are not secure and Softlab does not accept 
any legal responsibility for the content of this message. Any opinions 
expressed in the email are those of the individual and not necessarily 
those of the Company. 

If you have received this email in error, or if you are concerned with 
the content of this email please notify the IT helpdesk by telephone 
on +44 (0)121 788 5480. 

********************************************************************

Next message: Blue Boar: "Dead Thread 0-Day/$1000"
Previous message: anonpdoxat_private: "sshd exploit & $1,000 whine"
Maybe in reply to: RT: "0-day exploit..do i hear $1000?"
Next in thread: Don Weber: "RE: 0-day exploit..do i hear $1000?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Oct 22 2001 - 09:43:02 PDT