RSS To Carry Spyware Before Year’s Out

A vulnerability will be found in one of the big blogging services. “If a spyware writer finds a way to inject code into a blogging site — which could take the form of a SOAP object — most likely through a future vulnerability in Internet Explorer 7, then everyone who subscribes to that service’s blog RSS feeds is gonna get infected.” Such an attack could be massive, and because of the automated nature of RSS, extremely fast-acting.