18 Quotes by Marc Maiffret

For large organizations, it's just infeasible. One day is pretty fast.

It's kind of like having the cure and not sharing it with anybody.

It just allows for a lot of ways that you can manipulate systems or services to basically use UPnP to either hide attacks or use UPnP as a jump point for other attacks,

It's basically almost any Windows PC right now that you can compromise if you can trick a person to going to the wrong Web site or opening the wrong e-mail.

The bad part is the exploits were released so quickly, most people haven't patched them yet.

It's disappointing that Microsoft says the threat isn't big because it's only been found on 200 URLs. Why are they thinking about these attacks like they think about network worms? The risk of the quiet, targeted attack is very, very high and this should be an emergency situation for Microsoft.

It's really unclear. There's a good chance we will never know where it came from.

That's a long time to leave several million Windows users without any sort of protection.

The flaw can be exploited if the user opens a wrong file or goes to a wrong Web site. Then the attacker can execute code as the user, who is viewing the file or Web site.