The second exploit, revealed late yesterday, more modifies the assault code to add a completely new administrator-level account, named basically “X,” to afflicted Windows devices any time a JPEG file is opened by way of Windows Explorer. Well, incorporated .jpg information are parsed and executed as some other file would be, and so PHP code in