Hack-a-Mac contest winner Dino Dai Zovi exploited a zero-day bug in Apple's QuickTime media player. The vulnerability, which is related to how QuickTime handles Java, could also expose Windows users. Dai Zovi says that disabling Java in a browser shields a computer against attacks that exploit the flaw.
Here's an excerpt from the CNET Networks' News.com story:
"It is a vulnerability within QuickTime. Safari and Firefox on Mac OS X are vulnerable," Dai Zovi said. QuickTime is also widely used on Windows machines, so Windows users may also be at risk, he said. "At this time, Firefox on Windows is considered at risk," Dai Zovi said."
For more information about the MacBook hack, check out these other news resources:
$10,000 Mac hack affects Windows too (Macworld)
10 questions for MacBook hacker Dino Dai Zovi (ZDNet)
Mac Hacked by QuickTime Bug "As Serious as ANI" (eWeek)
MacBook Hacked at Security Contest (DailyTech)
Mac hack sparks debate — Dai Zovi and Macaulay take top prize (Monsters and Critics)
What do you think about Apple's decision to decline to comment about this MacBook hack? Do you think this hack damages the reputation of Mac security? Share your thoughts in this discussion.
Stay on top of the latest tech news
Get this news story and many more by subscribing to our free IT News Digest newsletter, delivered each weekday. Automatically sign up today!
Mary Weilage is a Feature Editor for CBS Interactive. She has worked for TechRepublic since 1999.