Microsoft executive calls WindowsXP hack ‘frightening’
A Microsoft executive calls the ease with which two British e-crime specialists managed to hack into a Windows XP computer as both “enlightening and frightening.”
The demonstration took place Monday at an event sponsored by Get Safe Online–a joint initiative of the U.K. government and industry. At the event, which was aimed at heightening security awareness among small businesses, two members of the U.K. government intelligence group Serious Organized Crime Agency connected a machine running Windows XP with Service Pack 1 to an unsecured wireless network. The machine was running no antivirus, firewall, or anti-spyware software and contained a sample target file of passwords to be stolen.
The SOCA officials wished to remain anonymous. One of them, “Mick,” remained behind a screen while carrying out the hack into the unpatched computer of a fellow officer, “Andy.”
“It’s easy to connect to an unsecured wireless network,” said Mick. “You could equate Andy with being in his bedroom, while I’m scanning for networks outside in my car. If I ordered or viewed illegal materials, it would come back to Andy.”
Tom Espiner of ZDNet UK reported from London.
