Interesting read...

http://security.blogs.cnn.com/2011/1...es/?hpt=hp_bn4