After takin' a swig o' grog, Peter Köhlmann belched out
this bit o' wisdom:
> Microsofts Security Evangelist Jeff Jones was caught providing doctored
> statistics about IE and Firefox, claiming IE was *better*
>
> Here is the breakdown of what really is the issue
>
> http://voices.washingtonpost.com/securityfix/2009/01/blogfight_the_truth_about_ie_v.html
Jones, however, does not respond to the more disturbing part of my
research, which found that there were at least 98 days in 2006 in which
no software fixes from Microsoft were available to fix IE flaws that
criminals were actively using to steal personal and financial data from
users.
98 days. Active use of the exploits.
While my research indeed showed that there was a period of nine days
during that year in which exploit code for a critical or high-severity
flaw in Firefox was available online, there were no indications I could
find that hackers were taking advantage of that flaw to attack Firefox
users.
9 days. No evidence of usage of the exploits.
Microsoft slopware? Nah. More like "Microsoft lawsuit-ware".
--
We should be careful to get out of an experience only the wisdom that is
in it - and stay there, lest we be like the cat that sits down on a hot
stove-lid. She will never sit down on a hot stove-lid again - and that
is well; but also she will never sit down on a cold one any more.
-- Mark Twain
|
|
