Bookmark or link to: www.kobayashi.cjb.net. All other url`s could change!
News Archive    Translate Traducen
News April 20001
30 April 2001

RTB 666 1.4

sourceforge.net:
Back Orifice 2000 - Summary. Read more

www.securiteam.com:
WebFront is a plugin for Mirabilis' ICQ messaging program that allows a user to setup a web page through ICQ. A security vulnerability in the product allows remote attackers to cause the program to consume all available CPU time, rendering the machine unusable until either the program is stopped or Windows is restarted.

BearShare is a Windows file sharing program from Free Peers, Inc. that lets you, your friends, and everyone in the world share files. A serious security vulnerability in the product allows remote attackers to download any file on the local disk, even if it hasn't been added to the shared list.
Vulnerable systems:
BearShare 2.2.2 and prior (Windows 95/98/ME) with its Web Site feature enabled

www.securityfocus.com:
An Introduction to Viruses and Malicious Code, Part Three: Detecting and Resolving Virus Infections. Read more

www.smh.com.au:
Cyber war escalates between US, China. Read more

www.wired.com:
Fed Hacks Attributed to Chinese. Read more

www.chicagotribune.com:
Hackers of U.S. sites thought to be Chinese. Read more

www.latimes.com:
Government Web Sites Up After Attack. Read more

www.nandotimes.com:
Government Web sites attacked by hackers. Read more

www.dawn.com:
Silent cyber war flourishing. Read more

www.nst.com.my:
Cyberwar against Asia's lame servers. Read more

web.lexis-nexis.com:
Chinese Hackers Are Blamed for Vandalizing U.S. Web Sites. Read more

web.lexis-nexis.com:
2 Russian Hackers Nabbed in FBI Sting. Read more

web.lexis-nexis.com:
TWO MICROSOFT SITES PASS ON COMPUTER VIRUS. Read more

29 April 2001

Olive 2.4

www.securiteam.com:
Ngrep is a powerful network-sniffing tool that strives to provide most of GNU grep's common features, applying them to all network traffic. NGrep is a pcap-aware tool that will allow you to specify extended regular expressions to match against data payloads of packets. It currently recognizes TCP, UDP, and ICMP across Ethernet, PPP, SLIP, FDDI, and null interfaces, and understands bpf filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop.

www.securiteam.com:
Sentinel is a fast file integrity checker similar to Tripwire or ViperDB with built in authentication using the RIPEMD 160 bit MAC hashing function. It uses a single database similar to Tripwire, maintains file integrity using the RIPEMD algorithm, and produces securely signed log files. Its main design goal is to detect intruders modifying files. It also prevents intruders with root/superuser permissions from tampering with its log files and database.

www.viruslist.com:
The Old, the New, and the Ugly - March's Top Viruses. Read more

www.sophos.com:
Troj/JetHome. Read more

www.virusbtn.com:
WildList, March 2001. Read more

www.research.ibm.com:
Web Browsers � Threat or Menace? Read more

www.cnn.com:
Virus infects Microsoft support server. Read more

www.computeruser.com:
NIPC warns China hackers may target U.S. sites. Read more

www.newsre.com:
Feds warn of Chinese hacking war on U.S. web sites. Read more

web.lexis-nexis.com:
Chinese hacking U.S. sites for missing pilot. Read more

www.theglobeandmail.com:
Hackers get $1-million dare to crack Saafnet's security. Read more

28 April 2001

MiniBackLash 1.0 Black & White
To visit the site go to the "Trojan Top List".

www.viruslist.com:
W32/Hello.worm that spreads via Microsoft's MSN Messenger program. Read more

linuxtoday.com:
SecurityFocus: "lpdw0rm" Worm Analysis. Read more

www.msnbc.com:
U.S. warns of Chinese hack attack. Read more

www.techweb.com:
FBI: Chinese Hackers Planning Attacks On U.S. Sites. Read more

abcnews.go.com:
Pentagon Braces for Chinese Computer Attacks. Read more

www.reuters.com:
Chinese Hackers May Launch Anti-U.S. Cyber Attacks. Read more

www.cnn.com:
Feds warn of May Day attacks on U.S. Web sites. Read more

www.theage.com.au:
Chinese hackers 'planning spy plane revenge'. Read more

www.abc.net.au:
US and China tensions spark Chinese computer hackers. Read more

computerworld.com:
NIPC warns companies of Chinese hacker threat. Read more

www.zdnet.co.uk:
Don't panic over Virtual Card virus alert. Read more

www.infoworld.com:
CERT statistics tell tale of increasing security woes. Read more

www.wired.com:
How to Crack Open an E-Book. Read more

www.ireland.com:
Hacking away at cyber underworld. Read more

www.zdnet.co.uk:
The Schmoozer: UK military declares war on Anna K. Read more

www.theregister.co.uk:
Does anybody know who's in charge of security here? Read more

www.silicon.com:
Researchers pull hacker report after lawsuit threat. Read more

www.zdnet.com:
Rivals see cracks in Cisco's armor. Read more

web.lexis-nexis.com:
Move over, Deep Blue, Eliza's next IBM plans computer smart enough to beat hackers. Read more

www.feedmag.com:
Crypto Sees the Light. Read more

27 April 2001

Danton 2.2 beta

www.zdnet.com:
No FunLove -- Microsoft spreads a virus. Read more

www.securitywatch.com:
Microsoft downloads virus to top customers. Read more

computerworld.com:
Microsoft gives a virus to its support customers. Read more

computerworld.com:
Missing antivirus software left Microsoft clients vulnerable. Read more

www.techweb.com:
Chernobyl Virus Set To Rear Ugly Head. Read more

www.guardian.co.uk:
Be very afraid, the cyber cops may be watching. Read more

www.telegraph.co.uk:
'Cybercop' team will target crime on the net. Read more

web.lexis-nexis.com:
US 'cybercop' calls for cross-border measures against Internet crime. Read more

thebusiness.vnunet.com:
Companies hit by hackers fight back. Read more

www.theregister.co.uk:
EB defaced in porn hack. Read more

www.zdnet.co.uk:
Playing the computer hacking game. Read more

www.vancouversun.com:
E-mail users often unaware of risks involved. Read more

www.freep.com:
Mike Wendland: Beware: Cyber spies are well-equipped. Read more

www.worldnews.com:
Warning Issued About China Hackers. Read more

www.newsbytes.com:
NIPC Warns China Hackers May Target US Sites. Read more

www.bday.co.za:
Errors let in hackers in 93% of breaches. Read more

www.ananova.com:
Polish hackers praised for taming PitBull. Read more

www.infoworld.com:
Arizona may create state Internet security group. Read more

www.ananova.com:
Scientist won't reveal secrets of digital music security. Read more

26 April 2001

Olive 2.3.
The site can be found under "Trojan Top Sites".

Q is a client / server backdoor that features remote shell access with strong encryption for root and normal users. Q-2.4.

www.theregister.co.uk:
Microsoft security fixes infected with FunLove virus. Read more

www.zdnet.com:
Chernobyl virus ready for a return run. Read more

news.cnet.com:
Chernobyl virus set to wake up. Read more

www.cert.org:
"Carko" Distributed Denial-of-Service Tool. Read more

www.securiteam.com:
IPSwitch IMail SMTP Remote System Access Vulnerability. Read more

www.securiteam.com:
Shijack, a full TCP connection hijacker. Read more

www.foundstone.com:
Carbonite - a rootkit detection and analyzer. A Linux Kernel Module to aid in RootKit detection. Read more

www.securiteam.com:
DCForum Allows Remote Read/Write/Execute (Patch Available)
DCForum is a popular CGI to create message boards on web sites. A security vulnerability in the product allows remote attackers to cause the PHP CGI to execute arbitrary code.
Vulnerable systems:
DCForum 2000 version 1.x
DCForum Version 6.x

www.theregister.co.uk:
WIN2K is even easier to deface than NT. Read more

www.zdnet.com:
Digital detectives track hacks. Read more

www.silicon.com:
Infosecurity successful for all but hacked Argus. Read more

www.informationweek.com:
Hacking Contest Reveals Solaris Vulnerability. Read more

www.theregister.co.uk:
Hacking contest publicity stunt backfires. Read more

www.zdnet.com:
Hackers sink teeth into Argus' PitBull. Read more

www.zdnet.co.uk:
Hacking threat goes mobile. Read more

www.theregister.co.uk:
Meet America's new top cybercop. Read more

www.zdnet.com:
U.S., others begin anti-fraud database. Read more

www.theregister.co.uk:
FBI hacked Russian hackers. Read more

www.bday.co.za:
Digital signatures a crucial aspect of new legislation. Read more

www.onmagazine.com:
Hands Off My PC! Read more

www.nzherald.co.nz:
India calls in teen hackers to play cyber cops. Read more

www.net-security.org:
Security through censorship. Read more

web.lexis-nexis.com:
U.S. Teenager Faces Charges of Hacking Into Air Force Computer System. Read more

25 April 2001

Khe Sanh 2.0 Lite

New DoS Attack Against IE (Loop, MS Word)
A security vulnerability in Internet Explorer causes it to create a multiple instances of a Word object (even after it has issued a warning, and the user has answered 'NO'). This would allow an attacker (via a malicious website or an HTML email) to cause the computer to exhaust all available memory causing a Denial of Service attack.
Vulnerable Systems:
Internet Explorer 5.5 with SP1
Exploit:
In the following exploit, Internet Explorer shows typical security warnings about the content of this page at the beginning of the 'for' cycle (i=1). However if you answer "NO" and deny access to create execute malicious script/code, the instance of "word.application" object is created anyway. NOTE: word.application object is only created in memory, but the script cannot execute code for the object.
//---------cut here---------------------------------
<HTML>
<SCRIPT LANGUAGE="VbScript">
On Error Resume Next
Dim a
Dim i
for i=1 to 100
Set a = CreateObject("Word.Application")
Next
</SCRIPT>
</HTML>
//---------end of cut---------------------------------
The information has been provided by <mailto:[email protected]> Elia Florio

www.sophos.com:
Troj/Keylog-C. Read more

www.korealink.co.kr:
Warning Issued Against Fast-Spreading Hacking Worm. Read more

www.linuxnews.com:
Improving our network knowledge to defeat hackers. Read more

www.unixreview.com:
Passive Analysis of SSH Traffic. Read more

www.internetnews.com:
Curador's Victims Included 'Bill J. Clinton'. Read more

www.cnn.com:
FBI uses reverse hacking to catch Russians. Read more

www.pcworld.com:
Security Code Crackers Warned to Keep Mum. Rad more

www.newsbytes.com:
Polish Hackers Win InfoSec Security Challenge, Sort Of. Read more

www.zingin.com:
MOD cracks email virus problem. Read more

www.zdnet.com:
An end to global viruses--for good? Read more

www.theregister.co.uk:
No more I Love You viruses. Read more

www.zdnet.co.uk:
End to email viruses may be nigh. Read more

www1.chinadaily.com.cn:
US and Chinese hackers plan to launch a cyberwar. Read more

www.theregister.co.uk:
CERT defends vulnerability info restrictions. Read more

securityportal.com:
Managing Outgoing Viruses. Read more

www.computerworld.com:
Connecticut teen charged with hacking into Air Force computer system. Read more

www.ctnow.com:
State Teen Charged With Hacking Into Defense Computer. Read more

abcnews.go.com:
Alleged Computer Criminals Nabbed After Feds Set Up Bogus Firm. Read more

maccentral.macworld.com:
HyperSend secure file transfer service now on Mac OS. Read more

web.lexis-nexis.com:
FEDERAL STING SNARES 2 RUSSIAN HACKERS. Read more

web.lexis-nexis.com:
E-sting nets 2 Russian hackers; FBI alleges pair stole credit info. Read more

24 April 2001

Hell-Driver

CheckBo is a program that listens on known Trojan ports (like 12345, 20034, ...), once a connection is established (From an outside user to the program), the program will alert the user. A security vulnerability in the product allows remote attackers to cause the program to crash by overflowing one of its internal buffers.
Vulnerable Systems:
CheckBO version 1.56 and prior
It is possible to cause CheckBO to crash by flooding it with characters inside a connection. This overflows an internal buffer (The buffer holds the text that is displayed to the user).
Flooding of CheckBO will cause it to show the following error:
---
Application Error
Exception ElInvalidOperation in module CHECKBO.EXE at 00026450.
Text exceeds memo capacity.
---
Once this has been shown the product will no longer notify the user of new Trojan connections.
Exploit:
Some examples:
1) perl -e ' for ($i=1;$i<80000;$i++) { print "A"; } ' | nc <host> <port>
2) nc <host> <port> 80Kbfile.txt
The information has been provided by <mailto:[email protected]> Auriemma Luigi.

A security vulnerability in Opera causes the software to automatically open EXE files without warning.
Vulnerable Systems:
Opera version 5.02 Build 856a
Immune Systems:
Opera version 5.10 Build 902
Normally when executing a file download, the security-warning box is invoked asking whether you wish to 'open or save' -- this is by default. In addition, as it should be, the ability to uncheck-mark the security-warning box is grayed out.
However if you select open, the file association settings seem to automatically register 'open with default application' instead of reverting to 'show download dialog'. Naturally, thereafter any file download is automatically opened.
Exploit:
http://www.malware.com/fauxpera.html simply viewing the page or clicking on the link automatically runs our EXE.
The information has been provided by <http://www.malware.com> Malware.

www.themoscowtimes.com:
2 Russians Face Hacking Charges. Read more

www.zdnet.com:
FBI nabs Russian hackers. Read more

www.wired.com:
Hackers Win Security Challenge. Read more

thebusiness.vnunet.com:
Polish crackers beat hack challenge. Read more

www.silicon.com:
Security conference hacked before doors open. Read more

www.argus-systems.com:
Events Infosecurity Europe
Hacking Challenge April 20-25, 2001. Read more

www.theregister.co.uk:
SDMI cracks revealed. Read more

chicagotribune.com:
Law not on side of Ameritech hacker. Read more

securityportal.com:
Totem and Taboo in Cyberspace. Read more

www.smh.com.au:
Insiders the weak link in e-fraud, ICAC study finds. Read more

web.lexis-nexis.com:
Print an e-mail attachment; test for potential hack attacks. Read more

web.lexis-nexis.com:
Hacker could face jail over web crusade;Teenager sent Viagra to Microsoft boss Gates. Read more

web.lexis-nexis.com:
Internet site vandalism illustrates vulnerability to hackers Press association Web site falls victim to hacker. Read more

web.lexis-nexis.com:
THE ALERT CONSUMER The need for firewalls. Read more

23 April 2001

WebDownloader 0.3 by FC.

securityportal.com:
Weekly Microsoft Security Digest 2001/04/16 to 2001/04/22. Read more

securityportal.com:
Weekly Solaris Security Digest 2001/04/16 to 2001/04/22. Read more

securityportal.com:
Weekly BSD Security Digest 2001/04/16 to 2001/04/22. Read more

www.antivirus.com:
TROJ_WINMITE.10. Read more

www.mcafee.com:
W32/Badtrans@MM is a Medium Risk mass-mailing worm. Read more

www.msnbc.com:
Windows Class IDs create vulnerability. Read more

www.linuxguru.com:
Improving our network knowledge to defeat hackers. Read more

it.mycareer.com.au:
Chinese, US hackers wage online war. Read more

www.startribune.com:
Russian hackers forced into trade by poor economy. Read more

www.chron.com:
Renegade hacker in search of upscale job? Join the club. Read more

www.gulf-news.com:
Police destroy website containing photos of national women. Read more

computerworld.com:
Feds look for better data on attacks against agency systems. Read more

www.itworld.com:
IDC: Security software to total billions by 2004. Read more

web.lexis-nexis.com:
HACKERS COMPETE IN HIGH-TECH CYBER CONTEST. Read more

web.lexis-nexis.com:
Microsoft Tightens Screws on Security. Read more

web.lexis-nexis.com:
Cyber Threat Closes Schools;Comes on anniversary of Columbine. Read more

22 April 2001

Senna Spy Trojan Generator 2001 by Senna Spy and SkBeta.

www.securiteam.com:
Eudora File Leakage Problem (Attachment forwarding).
A security vulnerability in Qualcomm's Eudora program allows remote attackers to send an innocent looking email to a user, asking the user to forward this mail to someone else. When the mail is forwarded, it will contain files from the user's local hard drive. Read more

www.betanews.com:
Severe Security Flaw Threatens Netscape Users. Read more

www.diverge.org:
NetBSD Security Processes and Services. Read more

www.nandotimes.com:
U.S., Chinese hackers vow to wage online war. Read more

www.theinquirer.net:
Quantum Web Site hacked. Read more

geeknews.net:
Teenage hacker faces jail over Bill Gates stunt. Read more

geeknews.net:
US, Chinese hackers wage online war. Read more

web.lexis-nexis.com:
Local agency gets lesson in computer viruses. Read more

web.lexis-nexis.com:
Eighty percent of survey group of companies keeps tabs on employees. Read more

21 April 2001

Inferno Uploader 1.1

Georgi Guninski security advisory #43, 2001
XML scripting in IE, Outlook Express. Read more

Microsoft Security Bulletin MS01-015
IE can Divulge Location of Cached Content. Read more

www.symantec.com:
VBS.Zeichen.A is a Trojan horse written in Visual Basic Script. Read more

linuxtoday.com:
Progeny Security Advisory: Local root vulnerability in sendfiled. Read more

linuxtoday.com:
The Register: Exploit devastates WinNT/2K security. Read more

linuxtoday.com:
Progeny Security Advisory: Netscape Navigator fails to protect privacy. Read more

www.neuro-tech.net:
Paranoid? Clear Your Netscape Browser History Information with ComClear. Read more

www.newsbytes.com:
Matcher Worm Bred In South Africa. Read more

www.theregister.co.uk:
Greece and Belgium are the weakest links in MS Hacks. Read more

www.theregister.co.uk:
On-line 'mass victimization' inevitable -- study. Read more

www.computeruser.com:
Alliance gives firms heads-up on security vulnerabilities. Read more

www.computeruser.com:
FBI arrests NASA hacker for stolen credit cards. Read more

www.ireland.com:
Digital warfare threatens global economy. Read more

www.wired.com:
Will the Real Hackers Stand Up? Read more

www.zdnet.com:
Tool suggests rise of new breed of hacker. Read more

thebusiness.vnunet.com:
Teenage hacker claims 'saint' status. Read more

news.bbc.co.uk:
Tackling computer crime. Read more

itn.co.uk:
Judge considers jail for teen hacker. Read more

www.computerworld.com:
Cybernanny Web site hacked with vulgar language. Read more

thebusiness.vnunet.com:
Midnight Hackers take programming prize. Read more

www.it-director.com:
Security: Hacking it is so easy. Read more

www.idg.net:
Analysis: New security initiative raises concerns about duplication. Read more

20 April 2001

Ultimate RAT 1.1

www.symantec.com:
Backdoor.WLF. Read more

www.symantec.com:
W97M.Sacep.A. Read more

securityportal.com:
CIH Still A Serious Threat Three Years Later. Read more

www.zdnet.com:
Matcher promises love, the kind that clogs e-mail systems. Read more

www.cnn.com:
Clone of 'Melissa' virus infects the Internet. Read more

www.computeruser.com:
PC users told to beware "Matcher" e-mail worm. Read more

www.theregister.co.uk:
Matchmaking Internet worm brought under control. Read more

www.unix.gr:
Firewall Design White Paper. Read more

www.theregister.co.uk:
Exploit devastates WinNT/2K security. Read more

www.securityfocus.com:
Lotus Domino R5 Server MS-DOS Device DoS Vulnerability. Read more

linuxtoday.com:
Tempest Security Technologies: Security flaw in Linux 2.4 IPTables using FTP PORT. Read more

www.securityfocus.com:
Solaris IPCS Timezone Buffer Overflow Vulnerability. Read more

www.ciac.org:
L-072: Cisco Catalyst 5000 Series 802.1x Vulnerability. Read more

linuxtoday.com:
The Register: Exploit devastates WinNT/2K security. Read more

news.cnet.com:
Eudora adds new security in version 5.1. Read more

www.guardian.co.uk:
Coded warning. Read more

www.thetimes.co.uk:
Police to tackle Internet thieves. Read more

www.cnn.com:
U.K. government launches cyberpolice. Read more

www.timesofindia.com:
Britain launches Internet police squad. Read more

enterprisesecurity.symantec.com:
E-business - A Matter of Conviction. Read more

www.zdnet.com:
CERT group to sell cyber-threat warnings. Read more

news.cnet.com:
Ponying up for real-time security alerts. Read more

www.nsag.net:
Aliens, Encryption, Privacy, and Drive-By Hack Attacks. Read more

www.thetimes.co.uk:
Big Brother is watching. Read more

hongkong1.cnet.com:
NASA hacker, on bail, arrested for using stolen credit cards. Read more

www.wired.com:
Brit Cops Tackle E-Thievery. Read more

www.guardian.co.uk:
Internet banks 'in denial' on hacking thefts. Read more

www.reuters.com:
Internet Security Alliance Debuts. Read more

web.lexis-nexis.com:
Hacking of Chinese Web Sites Illustrates Potential of Cyberwar. Read more

www.ananova.com:
Hackers hit Hollywood stars' websites. Read more

www.zdnet.co.uk:
�35,000 for hackers to crack Web server. Read more

web.lexis-nexis.com:
BCS; MIDNIGHT HACKERS TAKE THE PRIZE. Read more

web.lexis-nexis.com:
Cybercrime Can Be a Matter of Life and Death. Read more

19 April 2001

Dark FTP 1.5

www.viruslist.com:
Internet-worm "Matcher". Read more

www.avp.ru:
Matcher: Yet Another Offspring of the Melissa Virus. Read more

www.pcworld.com:
'Matcher' Virus Spreads E-Mail, Not Love. Read more

www.zdnet.co.uk:
Lonely hearts virus hits Europe. Read more

Anti-virus software developer Sophos reports the detection of the latest variant of the Macro.Word97.Goober family going by the name of Goober.E, which searches through documents, and replaces any occurence of "ShiThe" or "shithe" with "The" and "the" respectively. It also creates the non-viral text file, C:\G00ber.sys that it uses during replication.

Timbuktu Pro for Mac OS X is remote administration software that runs on both Windows and Macintosh platforms. A security hole has been found in the product that lets a user at the console gain complete access to the system without even having to log into the Mac OS X. The login screen of a freshly updated Mac OS X with preview version of Timbuktu for Mac OS X contains an icon in the upper left hand portion of the screen; the icon enables access to a menu that contains all of the goodies (open Timbuktu, turn tcp on/off, about, etc). When the menu 'About Timbuktu' is clicked, any user with physical access to the machine can get full control to the apple menu and system preferences without even being logged into OS X

Microsoft Security Bulletin MS01-022.
WebDAV Service Provider Can Allow Scripts to Levy Requests as User. Read more

securityportal.com:
FTP Attacks. Read more

www.itworld.com:
Intrusion Detection. Read more

www.securityfocus.com:
Infectable Objects, Part Five - HTML and Other Scripts. Read more

coast.cs.purdue.edu:
Unix Administration Horror Story Summary.Read more

www.bitpipe.com:
Taking the Web Server down When the Firewall Is Sound. Read more

www.net-security.org:
Remote javascript vulnerability. Read more

www.zdnet.co.uk:
High tech crime chief calls for new Internet laws. Read more

news.ft.com:
Police vow to business on cybercrime. Read more

www.the-sun.co.uk:
�25m SQUAD TO KO NET CRIME. Read more

www.thisislondon.co.uk:
Cyber cops 'will not spy on us'. Read more

www.zdnet.co.uk:
Police want power to store all emails. Read more

news.independent.co.uk:
Cyber criminals defrauding internet banks out of thousands, police reveal. Read more

www.guardianunlimited.co.uk:
Internet banks 'in denial' on hacking thefts. Read more

itn.co.uk:
New cybercrime squad launched. Read more

la.internet.com:
Orange County Computer Hacker Arrested. Read more

www.accessatlanta.com:
Bug plagues Microsoft's new security program. Read more

www.networkweek.com:
'Sandboxing' Technology Can Stifle Hackers. Read more

www.cnn.com:
New tools address denial-of-service threat. Read more

thebusiness.vnunet.com:
Bug Watch: Is Linux safe from attack? Read more

www.wired.com:
Crackers Expand Private War. Read more

more.abcnews.go.com:
Corporate Snooping on Rise. Read more

www.zdii.com:
PRIVACY-Consumer privacy, dark side of Internet Age. Read more

web.lexis-nexis.com:
Tourism site down after hacker attack. Read more

18 April 2001

Inferno Uploader 1.0 by Bogus.

VBS.PassOn is a Visual Basic script, which is stored as either a .vbs file or an .html file. It alters the default home page of Microsoft Internet Explorer. Read more

dailynews.yahoo.com:
FBI Confirms Chinese Attacks on U.S. Web Sites. Read more

www.computerworld.com:
Antivirus Safety Net Has Too Many Holes. Read more

www.zdnet.com:
Guidelines for configuring your firewall rule-set. Read more

www.nzherald.co.nz:
Legal definition on hacking case. Read more

cooltech.iafrica.com:
McVeigh execution video could get hacked. Read more

www.nzherald.co.nz:
Court rejects appeal by hacker. Read more

linuxtoday.com:
Debian Security Advisory: samba symlink attacks. Read more

www.computerworld.com:
Four arrested in online banking scam. Read more

it.mycareer.com.au:
Australian e-commerce sites insecure: paper. Read more

www.theregister.co.uk:
Anti-Hacking premiums 25% higher for Win NT. Read more

www.msnbc.com:
Bug in Microsoft firewall software. Read more

www.nwfusion.com:
Microsoft security flaw can lead to DoS. Read more

www.theregister.co.uk:
Accubyte leaves customer credit card details exposed. Read more

www.individual.com:
Secure Knowledge -- IT Must Be More Vigilant About Security, Survey Shows. Read more

cryptome.org:
NO HIDING PLACE. Read more

web.lexis-nexis.com:
INTERVIEW. Trying to track down the source of a hacker attack on U.S. Read more

web.lexis-nexis.com:
THE ALERT CONSUMER 'Zombies' are latest hacker-snatched PCs. Read more

17 April 2001

RTB 666 1.12

Georgi Guninski security advisory #42, 2001
Double clicking on innocent looking files may be dangerous. Read more

Microsoft Security Bulletin MS01-021
Web Request Can Cause Access Violation in ISA Server Web Proxy Service. Read more

www.symantec.com:
VBS.Voodoo.A. Read more

www.symantec.com:
VBS.IEUnsecure. Read more

mercury.chem.pitt.edu:
Avoiding security holes when developing an application - Part 2: memory, stack and functions, shellcode. Read more

webdeveloper.earthweb.com:
URL, URL, Little Do We Know Thee. Read more

www.zdnet.com:
BadTrans virus fails to spread. Read more

www.gulf-news.com:
Defence rejects Etisalat claims in hacking case. Read more

www.timesofindia.com:
Hackers beware! Mantrap is watching you. Read more

www.chicagotribune.com:
SUPER SEARCHERS TRACK DOWN CRIME. Read more

www.nst.com.my:
Hackers risk tough penalty. Read more

www.nst.com.my:
Niser to train local security consultants. Read more

www.zdnet.com:
Microsoft wakes up to security. Read more

www.law.com:
Chinese Hackers Investigated for Web Defacements. Read more

www.timesofindia.com:
New Malaysian law to curb hacking. Read more

www.washtech.com:
From Teen Hackers to Job Hunters. Read more

www.chicagotribune.com:
EX-SOVIET STATES A HOTBED FOR WORLD-CLASS HACKING. Read more

www.idc.com:
DC Forecasts Worldwide Revenues for Security 3As Software Will Reach $7.7 Billion in 2004. Read more

web.lexis-nexis.com:
Web Bugs Track Users, Extract Information. Read more

16 April 2001

Ultimate RAT 1.0

www.sans.org:
SANS Windows Security Digest.
Vol. 4 No. 1 - January 31, 2001. Read more

www.intersectalliance.com:
INTERNET INFORMATION SERVER 4.0 SECURITY. Read more

Trend Micro Interscan VirusWall Vulnerability.
A combination of bugs found in the ISADMIN service allow an attacker to remotely compromise a system running Trend Micro Interscan VirusWall
Vulnerable Systems: Linux Systems with Interscan VirusWall version 3.01 (older versions are most likely affected as well) with Remote Administration Enabled.

securityportal.com:
Weekly Microsoft Security Digest 2001/04/09 to 2001/04/15. Read more

securityportal.com:
Weekly Solaris Security Digest 2001/04/09 to 2001/04/15. Rea more

securityportal.com:
Weekly Linux Security Digest 2001/04/09 to 2001/04/15. Read more

linuxtoday.com:
Avoiding security holes: memory, stack and functions, shellcode. Read more

www.theinquirer.net:
US blames Chinese for hacking sites. Read more

www.chicagotribune.com:
EX-SOVIET STATES A HOTBED FOR WORLD-CLASS HACKING. Read more

www.thestar.com:
From Russia without remorse: some top hackers. Read more

abcnews.go.com:
Is Cyber-War of Words Escalating Into Chinese Hactivism? Read more

www.chinaonline.com:
Internet security problems may be on the rise. Read more

www.wired.com:
Cashing In on Cyber Crime. Read more

computerworld.com:
New tools take on denial-of-service attacks. Read more

web.lexis-nexis.com:
It's Easy to Crack the Government. Read more

web.lexis-nexis.com:
Soviet hackers at core of 'bloodless' crime. Read more

web.lexis-nexis.com:
Web Bugs Track Users, Extract Information. Read more

15 April 2001

MegaSecurity has changed its url.
Old one was: http://www.megasecurity.org/~masterrat
New one: http://www.megasecurity.org

TelnetPro

www.sarc.com:
VBS.Vbswg2b.A@mm is a worm created by the VBS worm generator, Vbswg Version 2 Beta. Read more

www.sarc.com:
X97M.Hihihoho is a macro virus that infects Microsoft Excel worksheets. Read more

linuxtoday.com:
Red Hat Security Advisory: Updated pine packages available. Read more

www.counterpane.com:
Computer Security: Will We Ever Learn? Read more

www.counterpane.com:
Microsoft Active Setup "Backdoor". Read more

www.redherring.com:
In the Shadow of the Valley: Security insecurity. Read more

www.wired.com:
Bush Fears Hacker Attacks. Read more

slashdot.org:
Are Open Standards Bad for Encryption? Read more

linuxtoday.com:
Progeny Security Advisory: [UPDATE] ntpd remote buffer overflow. Read more

www.wired.com:
Teaching Kids About Hacking. Read more

www.newsbytes.com:
Anti-Virus Firms Target PDA Market, But Is The Threat Real? Read more

14 April 2001

The url of MegaSecurity has changed.
The old one was: http://www.megasecurity.org/~masterrat
The new one is: http://www.megasecurity.org

Xanadu1.1 by The ExCon. Thanks to ISO.

www.zdnet.com:
BadTrans virus fails to spread. Read more

news.cnet.com:
BadTrans virus fizzles on Good Friday. Read more

www.law.com:
Chinese Hackers Investigated for Web Defacements. Read more

www.idg.net:
Chinese Hackers Are Blamed for Vandalizing U.S. Web Sites. Read more

www.securityfocus.com:
War driving by the Bay. Read more

www.dispatch.com:
Big day ahead for hackers? Read more

news.cnet.com:
Ex-cybercop: Hackers not the only problem. Read more

www.economictimes.com:
ICC uncovers $4-b online bank fraud. Read more

www.cbsnews.com:
Internet Banking Scam Uncovered. Read more

www.theregister.co.uk:
Closed source is more secure -- MS. Read more

www.vnunet.com:
Hackers turn UK into cybercrime central. Read more

13 April 2001

RUX The TIc.K 3.0.b

Tetris Game, an Acropolis dropper.

www.antivirus.com:
TROJ_BADTRANS.A. Read more

www.computeruser.com:
DSL modem flaw could jeopardize network security. Read more

www.ispworld.com:
THE NEW BREED OF COMPUTER VIRUSES. Read more

www.vancouversun.com:
Don't be foolish, pay attention to Explorer security warning. Read more

news.cnet.com:
Ex-cybercop: Hackers not the only problem. Read more

www.washtech.com:
Chinese Suspected of Hacking U.S. Sites. Read more

www.vny.com:
China sites hacked by "kiddie" over crisis. Read more

www.nandotimes.com:
Technology: Experts to guard McVeigh execution broadcast against hackers. Read more

www.chosun.com:
Police Arrest Hackers for Credit Card Information Theft. Read more

www.economictimes.com:
ICC uncovers $4-b online bank fraud. Read more

www.computeruser.com:
ACLU ads warn of "massive" government cyber-snooping. Read more

www.csdmag.com:
Hacker's Delight. Read more

www.miami.com:
Modem flawed, experts warn. Read more

www.zdnet.com:
Citigroup Target Of Internet Hoax. Read more

web.lexis-nexis.com:
Malicious hacking into companies can be done by just about anyone. Read more

12 April 2001

Danton 2.1

www.symantec.com:
W32.ThreeForOne. Read more

www.sarc.com:
VBS.GodWill.A@mm. Read more

www.symantec.com:
Logo.Logic. Read more

linuxtoday.com:
WIRED Report Says Adore and Lion Worms Are Tools of Chinese Hacktivists. Read more

www.infoworld.com:
Security holes found in Alcatel ADSL modems. Read more

www.thestandardeurope.com:
Security flaw found in Alcatel's high-speed modems. Read more

www.newsbytes.com:
DSL Modem Flaw Could Jeopardize Network Security - CERT. Read more

www.computeruser.com:
Crackers used shopping software holes to steal credit cards. Read more

www.computerworld.com:
Microsoft plans security boost for Windows. Read more

news.excite.com:
Microsoft Tightens Screws on Security. Read more

www.zdnet.com:
Microsoft declares 'war on hostile code'. Read more

www.themoscowtimes.com:
FSB: U.S. Tried to Recruit Hacker. Read more

www.wired.com:
Russian Hacker Rebuffs U.S. Read more

www.wired.com:
A Chinese Call to Hack U.S. Read more

abcnews.go.com:
CPSC Site Hacked. Read more

www.zdnet.co.uk:
Phone hacker jailed in UK's biggest phone scam. Read more

www.silicon.com:
Hackers exploit weak link FTP. Read more

www.itn.co.uk:
Hacking hatred on the Net? Read more

www.wired.com:
German Pol Backtracks on Hack. Read more

www.time.com:
Hackers' Paradise. Read more

www.theregister.co.uk:
Original Intel hacker's appeal denied. Read more

www.zdnet.com:
Big Blue hacker for hire. Read more

www.defcon1.org:
Anti-Virus with Sendmail and FBSD. Read more

www.zdnet.co.uk:
EC launches European cybercrime forum. Read more

www.theregister.co.uk:
Computer dealer fined for sending virus to rival. Read more

11 April 2001

Ptakks 2.1 r5

Wormgenerator: Exe2HTML


Fan Software's Macintosh Antivirus tool Insecticide is claims to be a "Powerful, fast, elegant and cheap anti-virus with background protection, heuristic virus detection, macro-virus support, and more. Insecticide can scan a file when it is selected in the Finder or even when an application opens it; it is compatible with MacOS 9.1 and will be converted to support MacOS X.", a test of the product (using real viruses) has proven that in fact this antivirus lacks detection for common viruses (making it dangerous to use).
Vulnerable systems:
Insecticide version 1.0.2

www.computeruser.com:
First Logo-based virus no threat. Read more

www.computeruser.com:
New virus written in logo language. Read more

www.telegraph.co.uk:
America 'hired hacker to breach Russian security'. Read more

www.pcworld.com:
Anti-Hacker Weapons Debut at Security Confab. Read more

www.wired.com:
So Many Worms, So Little Info. Read more

www.wired.com:
Transferring Files? Be Careful. Read more

news.cnet.com:
Encryption gurus praise government. Read more

www.infoworld.com:
Germany plots cyberattacks on neo-Nazi sites. Read more

biz.yahoo.com:
German Script Kids vs. Neo-Nazis? Read more

www.idg.net:
Hacker spams Warner Bros fans. Read more

www.law.com:
Keeping Hackers at Bay. Read more

web.lexis-nexis.com:
Hackers move on to home frontCommon sense. Read more

web.lexis-nexis.com:
Web apps are Trojan horses for hackers. Read more

10 April 2001

RTB 666 1.04

www.abc.net.au:
Pioneer sends e-mail with virus to over 10,000 clients. Read more

home.kyodo.co.jp:
Pioneer sends e-mail with virus to over 10,000 clients. Read more

www.newsbytes.com:
New Virus Written In Logo Language. Read more

www.zdnet.com:
Security expert: 'We are losing the battle'. Read more

www.wired.com:
German Threat Raises Infowar Fear. Read more

www.theregister.co.uk:
Hackers turn racist in attack on hardware site. Read more

www.vnunet.com:
Hacking group spills the beans. Read more

www.vnunet.com:
'My nan could crack NT', says hacker. Read more

www.electronicbanker.com:
Hackers Steal 1 Million Card Numbers. Read more

www.stuff.co.nz:
Check Point fort against hackers. Read more

computerworld.com:
Federal Systems Increasingly Falling Prey to Hackers. Read more

www.computeruser.com:
British firm develops "unbreakable" polymorphic encryption. Read more

www.scmagazine.com:
COMPUTER FORENSICS
Tracking Down the Clues. Read more

web.lexis-nexis.com:
The 'Seven Deadly Sins' of Computer Virus Protection. Read more

09 April 2001

Danton 1.1 beta

Magistr.A Worm Cleaner

www.kaspersky.com:
A Time Bomb Called "Magistr". Read more

securityportal.com:
Port numbers. Read more

securityportal.com:
Weekly BSD Security Digest 2001/04/02 to 2001/04/08. Read more

www.stuff.co.nz:
Check Point fort against hackers. Read more

www.infoworld.com:
Web apps are Trojan horses for hackers. Read more

www.siliconvalley.com:
People least worried about big Internet risk. Read more

www.economictimes.com:
Beware of mail-bombs. Read more

sns.chicagotribune.com:
Hackers stepping up attacks on U.S. government. Read more

www.gcn.com:
Navy site hacked by China sympathizers. Read more

www.economictimes.com:
Hackers hit cricket, Bollywood sites. Read more

seattletimes.nwsource.com:
Microsoft's 'HailStorm' service stirs up online privacy issues. Read more

www.sundayherald.com:
Company warned of hacker threat as it looks east for IT staff. Read more

www.siliconvalley.com:
Security conference under way in S.F. Read more

www.vnunet.com:
Hacker tool threatens .Net. Read more

www.cnn.com:
Cybersleuths find growing role in fighting crime. Read more

dailynews.yahoo.com:
Conference Addresses Internet Issues. Read more

08 April 2001

NetSpy 2.0 (build 01225)

Trojan.Futs. Read more

www.viruslist.com:
Trojan Drops Its Payload. Read more

www.research.ibm.com:
Virus Verification and Removal Tools and Techniques. Read more

www.symantec.com:
Monthly Calendar Listing Trigger Dates for Viruses. Read more

www.nandotimes.com:
Foreign hackers stepping up attacks on federal agencies. Read more

www.zdnet.com:
Microsoft's killer virus remedy. Read more

www.reuters.com:
Hackers Hit Indian Bollywood, Cricket Sites. Read more

www.computeruser.com:
Napster warns site to pull encryption program. Read more

www.theregister.co.uk:
Cracker in 'credit card Viagra sting on Gates'. Read more

web.lexis-nexis.com:
HACKERS .. ARE WE ALL DOOMED? Read more

web.lexis-nexis.com:
Former U.S. Attorney General Warns of Cyberterrorism Threat. Read more

07 April 2001

The Kill

www.symantec.com:
Trojan.PSW.M2.14. Read more

www.symantec.com:
JS.StartPage. Read more

www.gcn.com:
Navy site hacked by China sympathizers. Read more

www.computeruser.com:
Hackers often gained government "root" access in 2000. Read more

www.business2.com:
Hackers Plague the Feds. Read more

www.reuters.com:
Hackers Tell Malaysian Web Sites What They Think. Read more

news.cnet.com:
Microsoft's virus antidote: Ban attachments. Read more

www.theregister.co.uk:
E-mail wiretapping used to spy on corporate communications. Read more

geeknews.net:
Computer security blunderings. Read more

www.newsbytes.com:
Ameritech Plugs Security Hole In Online Bills. Read more

www.ntsecurity.net:
Can You Break Windows XP Security? Read more

www.hackinthebox.org:
How safe is your virus protection software? Read more

www.wired.com:
Hacker Movie Has Lots of Cracks. Read more

06 April 2001

Intruse 1.34

whitehats.com:
Lion Internet Worm Analysis. Read more

www.viruslist.com:
This Trojan Should Have Its Mouth Washed Out With Soap. Read more

www.zdnet.co.u:
Researchers predict virus avalanche. Read more

www.zdnet.com:
Dramatic increase in virus attacks predicted. Read more

www.worldnews.com:
At least 155 federal computers systems were temporarily taken over by hackers last year. Read more

www.cnn.com:
Report: 155 federal systems hacked last year. Read more

www.chicagotribune.com:
FEDERAL COMPUTERS NOT SECURE, EXPERTS REPORT. Read more

www.zdnet.com:
Study: Government computers at risk. Read more

www.theregister.co.uk:
Pentagon networks attacked 715 times in 2000. Read more

www.telegraph.co.uk:
Hacking 'is now bigger threat than terrorism'. Read more

www.theregister.co.uk:
Cracker in 'credit card Viagra sting on Gates'. Read more

www.gulf-news.com:
Hackers 'are always a step ahead'. Read more

salon.com:
Foreign hackers step up attacks. Read more

www.msnbc.com:
Democrat site exposed donor info. Read more

www.theregister.co.uk:
S'kiddies find hacking BT all too easy. Read more

www.bday.co.za:
Beefing up system security a must. Read more

www.bday.co.za:
E-frauds are almost invisible'. Read more

www.businessweek.com:
Is Your Site's Traffic "Good" or "Dangerous"? Read more

web.lexis-nexis.com:
Plane crisis could launch Web site attacks on U.S. Read more

05 April 2001

Celine by Del_Armg0.

linuxtoday.com:
SANS.org: New Linux Worm Adore. Read more

dailynews.yahoo.com:
New Linux worm: 'Adore' makes its appearance. Read more

www.smh.com.au:
Virus writers face 10 years jail under anti-hacking laws. Read more

news.cnet.com:
"Adore" worm squirms in Linux systems. Read more

www.silicon.com:
No Apology for same old virus. Read more

www.theregister.co.uk:
Rise in viruses within emails outpacing growth of email. Read more

www.vny.com:
Study: Web crime about to soar. Read more

www.msnbc.com:
Web host�s customer database stolen. Read more

thebusiness.vnunet.com:
BT hacked twice in three days. Read more

www.zdnet.co.uk:
Hackers target BT over ADSL delays. Read more

www.worldnews.com:
Report: Recycled Computers Hold Data. Read more

www.computeruser.com:
British govt. warned about computer hackers. Read more

web.lexis-nexis.com:
CRIME: Stealth Hacking Technique Unveiled. Read more

www.pcworld.com:
Hacking Hollywood. Read more

04 April 2001

Thief v2

Telnet Server Faker

The Archive is down.

www.viruslist.com:
The Old, the New, and the Ugly - March's Top Viruses. Read more

www.theregister.co.uk:
McHackers deface Burger King - again. Read more

www.theregister.co.uk:
One in three UK firms hit by cyber-crime. Read more

www.ananova.com:
One in three UK businesses 'infiltrated by hackers' - survey. Read more

www.zdnet.com:
New cloaked-code threat to security. Read more

www.internetweek.com:
MS To Users: Pay Up. Read more

www.computerweekly.com:
Fraud detection tops security agenda. Read more

independent-bangladesh.com:
DSE�s automated trading system saved from hacker. Read more

www.zdnet.com:
Start-up offers $10,000 reward to hackers. Read more

web.lexis-nexis.com:
Keeping your computer virus-free. Read more

web.lexis-nexis.com:
To Trap A Thief. Read more

03 April 2001

Gip 1.13 by Mr. Nop

Fake Sub7 Tool, The Saint 1.0 by AngelBoy.

The Archive is still down.

www.zdnet.com:
Vierika virus worse than Kournikova. Read more

www.ireland.com:
Flaw on Microsoft browser could allow hacking. Read more

www.theregister.co.uk:
Win-NT/IIS admins made April Fools by hackers. Read more

www.theregister.co.uk:
Chinese Feds demand computer virus samples. Read more

www.computerworld.com:
To Trap A Thief. Read more

www.pcworld.com:
Hacker Speak. Read more

www.newsbytes.com:
British Govt. Warned About Computer Hackers. http://www.newsbytes.com/news/01/163950.html

www.computerworld.com:
Legislators eye cybersecurity. Read more

02 April 2001

BREACH 2001 by -[FrEaK + HYBRiD]

NetBus Port Patch

The Archive is not yet available.

Georgi Guninski security advisory #41, 2001
Security bug in Internet Explorer - MSScriptControl.ScriptControl
Systems affected:
IE 5.5 Win2K (probably others versions/platforms, have not tested). Risk: High. Read more

Security Hole in Virus Buster 2001 (Long FROM address)
Virus Buster 2001 is a Japanese software package that has similar functions to PC-cillin 2000 such as email Virus Scanning and Browser Scanning. A security vulnerability in the product allows remote attackers to cause buffer overflow in the product causing the execution of arbitrary code.

www.ireland.com:
Flaw on Microsoft browser could allow hacking. Read more

www.theregister.co.uk:
Win-NT/IIS admins made April Fools by hackers. Read more

www.theregister.co.uk:
DoJ regulating digital cams to fight kiddie porn. Read more

www.viruslist.com:
I-Worm.Breberka.A@MM. Read more

securityportal.com:
Weekly Microsoft Security Digest 2001/03/26 to 2001/04/01. Read more

securityportal.com:
Weekly Virus/Malware Digest 2001/03/26 to 2001/04/01. Read more

www.msnbc.com:
Hackers: Corporate security stinks! Read more

www.zdnet.com:
Computer viruses prefer spring. Read more

www.net-security.org:
Issues: "Save a bug, safe a life?" Read more

www.pbj.cz:
Despite the hype, e-signatures remain secure from crackers. Read more

web.lexis-nexis.com:
Central Command Releases Its Dirty Dozen -- Top 12 -- Viruses For March 2001. Read more

01 April 2001

Lohoboyshik 1.0

The Archive is not yet available.

Links by SennaSpy:
- Creating a Compressed, Self-Extractor Installation File
  (With Delphi source code) - Good for make a EXE-Joiner :-) Read more
- Force Deletion of the Locked Files: (With Visual C++ source code available). Read more
- Many Compression Algorithms (With source code): Read more
- A tour of the Win32 Portable Executable Format: (With PE Dump - Visual C++ source code available). Read more
- Another good PE File Format Tutorial: Read more
- Good Utilities (With source code): Dump CAB Files, Unpack LZEXE, Unpack PKLite EXE, etc: Read more
Wanted by SennaSpy:
- The very old and rare MS-DOS trojan: PKZIP 3.0b or Trojan.Pkz300b
- C/C++ source code for search strings in files inside .zip files
- The Russian-English Translator: ProMT 2000

www.timesofindia.com:
India could engage in cyberwar: US. Read more

www.sfgate.com:
Hacker charged with heist using Internet and Forbes' richest list. Read more

www.silicon.com:
Hackers tear apart US sites - FBI issues public warning. Read more

www.msnbc.com:
Bug exposed TiVo Web site. Read more

www.zdnet.com:
Experts: Upgrade BIND Now. Read more

www.nationalpost.com:
Canadian managers blind to their computer security. Read more

www.net-security.org:
HTML mail threatens privacy. Read more

www.antionline.com:
Kyrgyz Hackers on FBI Wanted List. Read more

www.planetit.com:
Big-Time Computer Viruses Blossom In Spring. Read more


Copyright� MegaSecurity.org