Yes, I just went through that article and was going to post about it hehe. What strikes me as amusing is this Gobbles (now Goebbels) fellow. This quote from news.com:
Quote:
Security experts agreed. Steve Manzuik, moderator of vulnerability information site VulnWatch, received the advisory on Sunday. But because of the apparent joke, he held the document until the vulnerability was verified a day later.
"This is typical Gobbles, is it not?" Manzuik said. "Cause a stir, but also release useful information."
The true vulnerability is not found in the major music players--Windows Media Player, WinAMP and Xmms are among the players Gobbles names--but in the MPG123 music player, a relatively unknown piece of open-source software.
|
It appears that wrapped up in an obvious hoax there is one useful information (well, NO ONE uses MPG123, but still, its a valid security bug). And now the hoax part is revealed to be not entirely a hoax - not that anyone would not suspect RIAA to be up to something, but the level of organization in their p2p-sabotaging efforts is somewhat surprising. In this respect, Hydra is not very off the mark I think.