Stormy April Fool’s Day
Monday, March 31st, 2008A wave of April Fool's Day related Storm mails have just been sent out. Similar as the other times with a link that points to an IP address.
A wave of April Fool's Day related Storm mails have just been sent out. Similar as the other times with a link that points to an IP address.
How To: winlockpwn
Wednesday, March 26th, 2008winlockpwn is a memory analysis tool released by Adam Boileau of storm.net.nz. This utility exploits firewire's direct memory access. The operating system allows firewire devices to directly read/write memory without having to go through the processor. Sounds handy right? I installed winlockpwn on Ubuntu 7.10 and a fully patched Windows ...
Second mass hack exposed
Tuesday, March 18th, 2008Hot on the heels of a recent hack in which 10,000 sites were compromised, researchers have disclosed a new large-scale attack.. Researchers at McAfee estimated that the attack has been active for roughly one week, and in that time frame has managed to place itself on roughly 200,000 web pages. Most of ...
Inguma 0.0.7.2 Released for Download - Penetration Testing Toolkit
Monday, March 17th, 2008For those that don’t know, Inguma is an open source penetration testing and vulnerability research toolkit written completely in Python. The environment is mainly oriented to attack Oracle related systems but, anyway, it can be used against any other kind of systems. It’s becoming a mature and useful package! I’m glad ...
Cisco product shipped with backdoor
Monday, March 17th, 2008Cisco has reported a critical security hole in CiscoWorks Internetwork Performance Monitor (IPM), the network availability monitoring component of the CiscoWorks LAN Management Solution (LMS). According to the advisory, commands can be executed remotely on the underlying Solaris or Windows operating system without authentication. Cisco reports that the problem is due ...
Malware Analysis for Administrators
Saturday, March 8th, 2008http://www.securityfocus.com/infocus/1780 1. Introduction The threat of malicious software can easily be considered as the greatest threat to Internet security. Earlier, viruses were, more or less, the only form of malware. Nowadays, the threat has grown to include network-aware worms, trojans, DDoS agents, IRC Controlled bots, spyware, and so on. The infection vectors ...
Unpatched Machines Seen As Major Security Threat
Saturday, March 8th, 2008Hackers will keep cranking out exploits that take advantage of known software vulnerabilities because, although patches are available, a minority of machines are fixed, security vendor McAfee said Monday. In releasing its quarterly security analysis, McAfee's "AVERT" virus research team noted that exploited vulnerabilities are becoming a dominant threat to ...
Password Stealing Browser Hijacker Discovered
Saturday, March 8th, 2008The Internet Storm Center has announced a very scary discovery. They have found a browser hijacker, installed as a Browser Helper Object (BHO), that will monitor what are supposed to be secure, encrypted browsing sessions and steal passwords. These passwords then are forwarded to a web based script at www.refestltd.com. ...
Why Windows is a Security Nightmare
Saturday, March 8th, 2008Security in all mainstream operating systems is non-existent; however, things are especially bad for Windows. Windows happens to be the favourite target of worm and virus writers. Conventional wisdom suggests that the huge installed base of Windows helps spread the worms and viruses, and also makes it a highly attractive ...
How Computer Viruses Work
Saturday, March 8th, 2008Reported by Lockergnome TNT Computers President Tim D. Ingrum writes: After all this is said and read, I know that there'll be a few of you who just have to open that e-mail attachment to see what it is! You're the "clickers" that have just gotta see what's behind that Paper Clip. ...