What is Digg?Sponsored by Sony Pictures
Adam Lambert sings the 2012 theme song, “Time for Miracles” view!
whowillsurvive2012.com - Watch the Adam Lambert music video for the 2012 theme song. See 2012, in theaters Nov 13
43 Comments
- anonatron, on 10/12/2007, -1/+35This is a customer service feature, it allows them to access your account and make those pesky purchasing decisions for you.
- neoknight, on 10/12/2007, -3/+34yeh sure! provide a direct link to that, idiot!
- troydoogle7, on 10/12/2007, -1/+20Absolutely! I would have realised, however I use firefox..... and didn't notice! IE users beware of samsungs website.... all other browsers.... carry on!
- vdxc, on 09/29/2008, -1/+17Seems they took the whole site offline until they can fix it.
- j0ew00ds, on 10/12/2007, -2/+17You're calling out the director of Symantec Security Response? He's not talking about hacking a site with JS, simply placing malicious JS on the server once access is gained. It's YOU who has no idea.
- rtoo, on 10/12/2007, -1/+13are you retarded?
- dbug, on 10/12/2007, -3/+15One would expect stuff like that from Sony. But Samsung?
- inactive, on 10/12/2007, -4/+16These aren't hackers. They're scumbags.
- inactive, on 10/12/2007, -1/+9@mporcheron
Either that, or somebody got pissed and DDoS'd them. - alexrandall, on 10/12/2007, -0/+8Here is link to another article.
http://www.techworld.com/security/news/index.cfm?newsID=6816&pagtype=samechan
From this article, you have to download and run the program to get infected. - Red_Eye, on 10/12/2007, -0/+7You dont get it by visiting the main site, you get it only if you happen to hit the right URL according to;
http://www.websense.com/securitylabs/alerts/alert.php?AlertID=604
"Currently there is no exploit code on the website that attempts to trigger a download of the file without user interaction. The site is hosting and most likely distributing files to users who are lured through Instant Messaging or email links." - inactive, on 10/12/2007, -5/+12I don't buy from sony because sony sounds like (sore knee) to me, and my knees always hurt.
- mezoko, on 10/12/2007, -2/+9that made me laugh! Thanks for making my day.
- aranyx, on 10/12/2007, -1/+7@Agret,
When I first read that, I was thinking along the same lines, until I actually did some research and saw a proof of concept for a JS Network Mapper: http://www.spidynamics.com/spilabs/js-port-scan/
Granted, Javascript is part of the "AJAX group of technologies", but I don't see the relevance of the AJAX comment. It seems that more and more lately, I find myself siding with the people who treat client side scripting like a plague. - xunk, on 10/12/2007, -0/+5My point wasn't to bash MS, in fact I really dislike people doing this all the time, it was just an example. Replace MS with Apple or Google or any software editor if you want.
However I agree with you the Phishing thing wasn't very appropriate, since it's social engineering and not a "true" bug / exploit. And it concerns most modern broswers, not just IE.
But I can't agree with statix saying that it's not Samsung's fault if a dumbass exploits their security hole. They have the responsability to secure their servers from attackers to protect their customers. - dbr_onix, on 10/12/2007, -1/+6I really don't think it was intentional.. As the article says, someone comprimised the server, and put on the javascript to install the trojan on.. A fairly effective way of distrubuting it..
Unless the multi-million dollar company really needs to utterly f'k their reputation by installing credit-card stealing trojan.. *Puts on tinfoil hat*
- Ben - lolage, on 10/12/2007, -3/+7I dont see the funny side about it really. I agree with joewoods, you sir have no clue.
- Agret, on 10/12/2007, -11/+15Haha that guy has no idea what he's talking about
"Earlier this week, Dave Cole, director of Symantec Security Response, warned on his blog that hackers are exploiting Web technologies such as Ajax and JavaScript to compromise "trusted" Web sites with malware."
""From port scanning to fingerprinting and basic network mapping, all done using the AJAX group of technologies, it's clear that we've only begun to see what's possible via malicious Web sites"." - KnightMareInc, on 10/12/2007, -2/+6Bad Request (Invalid Hostname)
- donte, on 10/12/2007, -2/+5Umm... phishing scams where you go to a fake site and type in your 1-and-only login/password screw half-retarded users of IE as well as half-retarded users of Firefox. It's not a browser vulnerability, it's a gullible user. If you're going to insist on bashing MS, at least do it on an argument with merit.
- inactive, on 10/12/2007, -1/+4Sandboxie protected me...thanks Steve Gibson.
- socokoolaid, on 10/12/2007, -1/+4When realizing your site has been compromised and is hosting stuff that attacks your customers, why would you not immediately shut down the whole infected site? Seems like will-full neglect to me. If my computer was infected from their site, I'd send Samsung a bill.
"I wanna talk to Samsung!" :P - raingrove, on 10/12/2007, -0/+2buried. It is inaccurate. The site is compromised by hackers, Samsung did not do it by themselves. By the way, use Firefox.
- shagz7, on 10/12/2007, -1/+3all i gotta say is RTFA before you go off into the eternal argument why you are 1337 for using an alternate browser blah blah blah... kthx
- inactive, on 10/12/2007, -0/+1wtf,
sue those mazafakaz - xunk, on 10/12/2007, -5/+6it IS their fault. They own the web servers, so it's their job to secure it.
It's like saying it's not Microsoft's fault if IE6 is vulnerable to phishing because they did'nt code malicious code themselves.
If you let a security hole in your system, then you are the one to blame if you get hacked, especially for those big companies who are potential targets. - hunsa123, on 08/08/2008, -0/+0http://astore.amazon.co.uk/bedroom.furniture.uk-21
http://astore.amazon.co.uk/buy.cheap.dvd.uk-21
http://astore.amazon.co.uk/buy.dvd.uk-21
http://astore.amazon.co.uk/buy.gps.uk-21
http://astore.amazon.co.uk/buy.guitar.uk-21
http://astore.amazon.co.uk/buy.laptop.uk-21
http://astore.amazon.co.uk/buy.nintendo.wii.uk-21
http://astore.amazon.co.uk/buy.shoes.uk-21
http://astore.amazon.co.uk/buy.wii.uk-21
http://astore.amazon.co.uk/cameras.uk-21
http://astore.amazon.co.uk/canon.cameras.uk-21
http://astore.amazon.co.uk/canon.uk-21
http://astore.amazon.co.uk/casio.watches.uk-21
http://astore.amazon.co.uk/cheap.books.uk-21
http://astore.amazon.co.uk/cheap.cameras.uk-21
http://astore.amazon.co.uk/cheap.computers.uk-21
http://astore.amazon.co.uk/cheap.dvd.uk-21
http://astore.amazon.co.uk/cheap.dvds.uk-21
http://astore.amazon.co.uk/cheap.furniture.uk-21
http://astore.amazon.co.uk/cheap.glasses.uk-21
http://astore.amazon.co.uk/cheap.golf.clubs.uk-21
http://astore.amazon.co.uk/cheap.gps.uk-21
http://astore.amazon.co.uk/cheap.guitars.uk-21
http://astore.amazon.co.uk/cheap.laptop.uk-21
http://astore.amazon.co.uk/cheap.lcd.tv.uk-21
http://astore.amazon.co.uk/cheap.printers.uk-21
http://astore.amazon.co.uk/cheap.shoes.uk-21
http://astore.amazon.co.uk/cheap.sunglasses.uk-21
http://astore.amazon.co.uk/cheap.tv.uk-21
http://astore.amazon.co.uk/cheap.watches.uk-21
http://astore.amazon.co.uk/citizen.watches.uk-21
http://astore.amazon.co.uk/digital.camera.co.uk-21
http://astore.amazon.co.uk/discount.watches.uk-21
http://astore.amazon.co.uk/earrings.uk-21
http://astore.amazon.co.uk/engagement.rings.uk-21
http://astore.amazon.co.uk/furniture.london-21
http://astore.amazon.co.uk/garden.furniture.uk-21
http://astore.amazon.co.uk/garmin.uk-21
http://astore.amazon.co.uk/guitars.for.sale.uk-21
http://astore.amazon.co.uk/ladies.shoes.uk-21
http://astore.amazon.co.uk/mens.shoes.uk-21
http://astore.amazon.co.uk/microwave.in.uk-21
http://astore.amazon.co.uk/nintendo.wii.uk-21
http://astore.amazon.co.uk/running.shoes.uk-21
http://astore.amazon.co.uk/timberland.boots.uk-21
http://astore.amazon.co.uk/timberland.co.uk-21
http://astore.amazon.co.uk/watches.uk-21
http://astore.amazon.co.uk/webkinz.in.uk-21
http://astore.amazon.co.uk/webkinz.uk-21
http://astore.amazon.co.uk/wedding.ring.uk-21
http://astore.amazon.co.uk/wii.for.sale.uk-21
http://astore.amazon.com/asics.shoes.for.sale-20
http://astore.amazon.com/athletic.shoes-20
http://astore.amazon.com/automatic.watch-20
http://astore.amazon.com/baby.soap-20
http://astore.amazon.com/basketball.shoes-20
http://astore.amazon.com/bath.sinks-20
http://astore.amazon.com/bath.soap-20
http://astore.amazon.com/buy.dark.chocolate.bars.d ...
http://astore.amazon.com/buy.living.room.furniture ...
http://astore.amazon.com/danner.boots-20
http://astore.amazon.com/diamond.watch-20
http://astore.amazon.com/discount.patio.furniture- ...
http://astore.amazon.com/football.shoes-20
http://astore.amazon.com/gargantugame.pro.arcade.g ...
http://astore.amazon.com/gevril.watches-20
http://astore.amazon.com/golf.shoes-20
http://astore.amazon.com/jacuzzi.bath-20
http://astore.amazon.com/keen.newport.h2.shoes-20
http://astore.amazon.com/ladies.watches-20
http://astore.amazon.com/living.room.sets-20
http://astore.amazon.com/matterhorn.boots-20
http://astore.amazon.com/new.balance.running.shoes ...
http://astore.amazon.com/new.balance.shoes-20
http://astore.amazon.com/nutrition.supplements-20
http://astore.amazon.com/pampers.diapers.baby-20
http://astore.amazon.com/patek.watches-20 - nohup, on 07/22/2008, -0/+0http://astore.amazon.com/buy.cheap.amazon.kindle.e ...
- izaclick, on 09/29/2008, -0/+0http://astore.amazon.com/buy.omron.hj.112-20
http://astore.amazon.com/kix.cereal.box-20
http://astore.amazon.com/met.rx.pancake.mix-20
http://astore.amazon.com/low.price.victorio.food.s ...
http://astore.amazon.com/cheap.maytag.bravos-20
http://astore.amazon.com/buy.bare.essence.online-2 ...
http://astore.amazon.com/buy.philosophy.hope.in.a. ...
http://astore.amazon.com/buy.msi.wind.u100.2gb.320 ...
http://astore.amazon.com/buy.discount.breadman.bre ...
http://astore.amazon.com/buy.discount.hamilton.bea ...
http://astore.amazon.com/buy.robotic.vacuum.cleane ...
http://astore.amazon.com/buy.mccanns.irish.oatmeal ...
http://astore.amazon.com/buy.keurig.k-cup.reusable ...
http://astore.amazon.com/versace.sunglasses.2021-2 ...
http://astore.amazon.com/buy.versace.sunglasses.40 ...
http://astore.amazon.com/buy.monster.cable.hts-20
http://astore.amazon.com/buy.panamax.surge.protect ...
http://astore.amazon.com/buy.12.gauge.wire.online- ...
http://astore.amazon.com/buy.belkin.a3l791-s-20
http://astore.amazon.com/buy.14.gauge.wire-20
http://astore.amazon.com/buy.intermatic.timer-20
http://astore.amazon.com/buy.izze.soda-20
http://astore.amazon.com/buy.gustbuster.umbrella-2 ...
http://astore.amazon.com/buy.accutire.digital.tire ...
http://astore.amazon.com/buy.andis.hair.dryer.onli ...
http://astore.amazon.com/buy.black.decker.toaster. ...
http://astore.amazon.com/buy.sharp.aquos.lc52se94u ...
http://astore.amazon.com/buy.fellowes.32057-20
http://astore.amazon.com/zojirushi.ns-lac05-20 - flybeta, on 02/19/2009, -0/+0lol what tha http://besthost.comli.com/ find a cheap domain host today
- nohup, on 07/20/2008, -0/+0One would expect stuff like that from Sony. But Samsung?
http://astore.amazon.com/buy.cheap.asus.eee.pc.901 ...
http://astore.amazon.com/buy.cheap.flip.video.mino ...
http://astore.amazon.com/buy.cheap.msi.wind.mini.l ...
http://astore.amazon.com/buy.cheap.nintendo.wii.ga ...
http://astore.amazon.com/kitchenaid-artisan-stand- ...
http://astore.amazon.com/western-digital-portable- ... - inactive, on 10/12/2007, -4/+1Samsung has been doing stuff like this for years. My old Samsung phone somehow managed to gather my phone number! =O
- uidzero, on 10/12/2007, -4/+1Prob no coincedence that I've seen 2 front page posts for Samsung products in the last 2 days...
- MeneerR, on 10/12/2007, -3/+0There aren't any descent electronic companies anymore anyway. They actually invest money on finding ways to make the product brake about one year after the garantuee has expired. So you buy new stuff.
Those companies that didn't do that, are now broke or are starting to do just that.
It's all this welfare you know. There is no such thing as a critical consumer anymore. Marketing makes a product sell, reputation is so.. last millenium.
But you have to hand it to them: it takes a lot of technology and research to make something break after a specified amount of time. - Raydr, on 10/12/2007, -5/+1Xiata:
How is the site working fine if the server misinterpreted it? - inactive, on 10/12/2007, -9/+3Web 2.0 Gotta love it!
- purplegrrl, on 10/12/2007, -11/+4This is outrageous!
- vdxc, on 09/29/2008, -9/+2There is no R sound in Sony, wait, this article is about _Samsung_; why the hell are you moaning about Sony?
- WaterDragon, on 10/12/2007, -8/+1Umm...yeah..."it's not a vulnerability, it's a feature."
...but which company first used that excuse? Was it Microsoft or Apple? I can't remember. - statix, on 10/12/2007, -11/+2its not samsungs fault!
how would you like if you tried to make quality products and they turned out like crap.lol
its the other ppl that comprismised the security not samsung. theyare partialllyto blamefor theyre sh!tty security. - Xiata, on 10/12/2007, -17/+4Your browser sent an invalid http/1.1 response, or the server misinterpreted it. Either case the site works fine.
- WaterDragon, on 10/12/2007, -22/+4I've never trusted Samsung...'cause their name sounds too much like Son of Sam, that famous serial killer.
- inactive, on 10/12/2007, -52/+9http://www.samsungtelecom.com/
The Digg Toolbar for Firefox lets you Digg, submit content, and keep track of Digg even when you're not on the Digg site. Download the official 
© Digg Inc. 2009
— Content created and posted by Digg users is