BBC 'vague' reporting again!

[James Firth]

Igor Mozolevsky wrote:
 > I thought that others were saying that this software was essentially
> hacking into a system and delivering a payload. Of course, if you have
> willing participants en-route to the suspect's machine, you have a
> different situation.

Even without willing participants I still think it's pretty hard to guard
against application vulnerabilities with so much feature-rich online
content.  Plus there are varying degrees of "complicity":- a wiretap could
yield what the mark's specialist interests are, making phishing or other
entrapment somewhat targeted (emails matching subject interest with special
offers or reports containing embedded video which attempts known exploits).

James Firth