On Fri, 11 May 2007 23:29:23 -0700, Tom Shelton wrote:
> There just saying that some malware is using the
> service after it gets on to the system....
And bypass firewall!
>Florio outlined why some Trojan makers have started to call on BITS to
>download add-on code to an already compromised computer. "For one simple
>reason: BITS is part of the operating system, so it's trusted and
>bypasses the local firewall while downloading files."
>"The big benefit BITS gives them is that it lets them evade firewalls,"
>said Friedrichs. "And it's also a more reliable download mechanism. It's
>free and reliable, and they don't have to write their own download code."
|
|
