Two from the Israeli security firm Radware's experts recently found that the software update process may be hijacked communications, the software affected by this vulnerability, including Skype and several other applications.
Radware Security Operations Center director Itzik Kotler warned, and now they have found there is the 100 variety of mainstream software security problems.
To test this discovery, Kotler and his colleagues Tomer Bitton is developing a tool called Ippon, this tool can do the attack and able to provide the network by the potential impact of the 3D distribution machine. In judo, Ippon means fail, the same, Ippon make your computer game over.
According to their theory, the attacker first scan wireless networks to find the check for updates through the HTTP computers, when the system detected a certain platform software update the computer sends a request O'clock, the tool will grab the application update the server to respond back Gai Zhi Qian computer , Ippon will return updates are available - even if this computer has already installed all the updates, then malware will be downloaded to the local computer.
So far, they have not found the other major browsers Firefox and the existence of this defect. They also found that the current Microsoft software is secure because it uses digital signature update process. Kotler believes that all the software updates should be using digital signatures, people should avoid the public network through a wireless software update.