If you were using Google this past Saturday between 6:27 a.m. and 7:25 a.m. PST, chances are that you have been warned by the search engine that your search result "may harm your computer". Trying another request couldn't help and you soon realized that the whole Internet might have harmed your computer. If that's no news for some of us, this might be a different story for Internet novices who think that Google is the Internet.
In what seems to be a sensational / tabloid article inspirationally named Vista's Security Rendered Completely Useless by New Exploit, Neowin reports that "this week at the Black Hat Security Conference two security researchers will discuss their findings which could completely bring Windows Vista to its knees. Mark Dowd of IBM Internet Security Systems (ISS) and Alexander Sotirov, of VMware Inc. have discovered a technique that can be used to bypass all memory protection safeguards that Microsoft built into Windows Vista. These new methods have been used to get around Vista's Address Space Layout Randomization (ASLR), Data Execution Prevention (DEP) and other protections by loading malicious content through an active web browser. The researchers were able to load whatever content they wanted into any location they wished on a user's machine using a variety of scripting languages, such as Java, ActiveX and even .NET objects. This feat was achieved by taking advantage of the way that Internet Explorer (and other browsers) handle active scripting in the Operating System."