Home    News Archive    Translate Traducen
News May 2008
26 May 2008

Guides, Papers, etc
www.securityfocus.com
Integrating More Intelligence into Your IDS, Part 1. Read more

www.securityfocus.com
Integrating More Intelligence into Your IDS, Part 2. Read more

www.technewsworld.com
Hunting Botnets With Randal Vaughn. Read more

www.wired.com
Murder, His Hard Drive Wrote. Read more

www.computer.org
When Malware Attacks (Anything but Windows). Read more

anti-virus-rants.blogspot.com
gaming the mac malware game theory. Read more

isc.sans.org
Cisco IOS Rootkit thoughts. Read more

isc.sans.org
Cisco's Response to Rootkit presentation. Read more

isc.sans.org
Wiping your mobile devices. Read more

ddanchev.blogspot.com
Yet Another DIY Proprietary Malware Builder. Read more

ddanchev.blogspot.com
Malware Domains Used in the SQL Injection Attacks. Read more

ddanchev.blogspot.com
The Icepack Exploitation Kit Localized to French. Read more

ddanchev.blogspot.com
How Does a Botnet with 100k Infected PCs Look Like? Read more

ddanchev.blogspot.com
A Review of Hakin9 IT Security Magazine. Read more

ddanchev.blogspot.com
Web 2.0 Privacy and Security Workshop - Papers Released. Read more

ha.ckers.org
HTTP Proxies Bypass Firewalls. Read more

sunbeltblog.blogspot.com
Apple store now a phishing target. Read more

sunbeltblog.blogspot.com
More spoofed sites. Read more

blog.siteadvisor.com
Hey. How come Yahoo! search looks different today? Read more

blog.spywareguide.com
Beware EBay "Bargains"...Read more

blog.spywareguide.com
Misleading Download Accelerators...as seen on TV. Read more

blog.trendmicro.com
AntiSpySpider Weaves An Intricate Web Threat. Read more

blog.trendmicro.com
Malicious Domains Found in Compromised Japanese Sites. Read more

blogs.paretologic.com/
File extensions matter. Read more

bharath-m-narayan.blogspot.com
Recent Rogue Applications advertised by MediaTubeCodec Trojans. Read more

bharath-m-narayan.blogspot.com
Pest-Patrol. Read more

bharath-m-narayan.blogspot.com
Malicious sites pushing Malwares. Read more

bharath-m-narayan.blogspot.com
SpyGuarder. Read more

bharath-m-narayan.blogspot.com
Advanced XP Fixer. Read more

www.thespanner.co.uk
Firefox applet fun. Read more

www.eweek.com
Weapons of Mass Denial. Read more

www.avertlabs.com
The Strange Case of �Mr. Spilberg�. Read more

summation.typepad.com
Black Hat Tariffs � The Black Hat Taxes on consumer Internet companies are on the rise. Read more

blogs.securiteam.com
Overview: Hack in The Box Dubai and Troopers Munich. Read more

www.pcworld.com
Vista's Despised UAC Nails Rootkits, Tests Find. Read more

blogs.securiteam.com
Wikiscanner. Read more

www.viruslist.com
The botnet business. Read more

www.podtrac.com
Audio. Security Now 145: Secunia PSI - Sponsored by Astaro Corp. Listen

www.offensive-security.com
Video. Gain system access to Windows Vista. Watch

 

Tools:
www.nosec.org
Pangolin is a GUI tool running on Windows to perform as more as possible pen-testing through SQL injection. Read more

 

News
www.theglobeandmail.com
Anti-piracy strategy will undermine privacy, critic says. Read more

blog.wired.com
Deadly Earthquake Doesn't Shake China's Internet Censors. Read more

www.theregister.co.uk
Social networking site bans oldies over sex offender fears. Read more

www.zdnet.com.au
NZ hacker sentenced to 3 years jail thanks to FBI. Read more

www.computerworld.com
With rootkit talk coming, Cisco patches router flaws. Read more

www.vnunet.com
Apple fails to patch serious iCal flaws. Read more

www.dailytech.com
Huge Hole in Open Source Software Found, Leaves Millions Vulnerable. Read more

www.vnunet.com
Canadian police losing battle with cyber-criminals. Read more

canadianpress.google.com
Move to protect Canadians' privacy on Net irritates police, attracts others. Read more

www.technewsworld.com
DOJ Busts Up Global Phishing Ring, Charges 38. Read more

economictimes.indiatimes.com
Hackers cracking mobile phones too. Read more

www.vnunet.com
Man posts his own crimes on YouTube. Read more

21 May 2008

Guides, Papers, etc
www.f-secure.com
Phishing Piers on Legitimate Sites. Read more

www.vnunet.com
Asprox botnet rears its ugly head. Read more

www.ciaonet.org
Battling Botnets and Online Mobs. (pdf) Read more

news.bbc.co.uk
What makes a cyber criminal? Read more

www.wired.com
Meet Hiroyuki Nishimura, the Bad Boy of the Japanese Internet. Read more

isc.sans.org
List of malicious domains inserted through SQL injection. Read more

isc.sans.org
Route filtering and its impact on the DNS fabric. Read more

isc.sans.org
Text message and telephone aid scams. Read more

ddanchev.blogspot.com
The Whitehouse.org Serving Malware. Read more

ddanchev.blogspot.com
Pro-Serbian Hacktivists Attacking Albanian Web Sites. Read more

ddanchev.blogspot.com
Fake PestPatrol Security Software. Read more

ddanchev.blogspot.com
All You Need is Storm Worm's Love. Read more

ddanchev.blogspot.com
Fast-Fluxing SQL Injection Attacks. Read more

ddanchev.blogspot.com
The Small Pack Web Malware Exploitation Kit. Read more

ddanchev.blogspot.com
Redmond Magazine SQL Injected by Chinese Hacktivists. Read more

blog.siteadvisor.com
Hey. How come Yahoo! search looks different today? Read more

blog.trendmicro.com
Yet More Weekend Compromises Reach Other Shores. Read more

blog.trendmicro.com
Rootkits Get More Physical. Read more

blog.trendmicro.com
Chinese Weekend Compromise. Read more

bharath-m-narayan.blogspot.com
Zlob sites update. Read more

bharath-m-narayan.blogspot.com
A fleet of Fake codec distributing sites. Read more

www.darkreading.com
Permanent Denial-of-Service Attack Sabotages Hardware. Read more

www.darkreading.com
SQL Injection Attack Helps Hack OS. Read more

blogs.paretologic.com
File extensions matter. Read more

www.wired.com
Our Data, Ourselves. Read more

www.schneier.com
Spying on Computer Monitors Off Reflective Objects. Read more

www.eweek.com
So Your Private Key Has Been Compromised. Read more

honeyblog.org
New Bot-Family Detected: Light-Bots. Read more

anti-virus-rants.blogspot.com
the user is responsible but ill-equipped. Read more

www.informationweek.com
Windows XP SP3 Causes 'Blue Screen Of Death' On AMD-Based PCs. Read more

blog.washingtonpost.com
Most Spam Sites Tied to a Handful of Registrars. Read more

ha.ckers.org
HTTP Proxies Bypass Firewalls. Read more

windowsvistablog.com
5 Misunderstood Features in Windows Vista. Read more

www.securityfocus.com
Legal experts wary of MySpace hacking charges. Read more

news.digitaltrends.com
Could Microsoft OneCare fix Windows? Read more

www.vnunet.com
Vista 'more vulnerable' than Windows 2000. Read more

reviews.zdnet.co.uk
Annoying software: a rogues' gallery. Read more

 

Tools:
www.washingtonpost.com
12 Downloads to Make Your Wi-Fi Life Easier and Fun. Read more News
www.theregister.co.uk
Mass SQL injection hits English language websites. Read more

www.newsfactor.com
Japan Convicts Computer Virus-Spreading Student. Read more

www.vnunet.com
Police smash 38-strong phishing gang. Read more

www.computerworld.com
McAfee anti-fraud researcher charged with fraud. Read more

www.theregister.co.uk
'Hacker Safe' leader defrauded investors, prosecutors say. Read more

17 May 2008

Guides, Papers, etc
www.securityfocus.com
Admins warned of brute-force SSH attacks. Read more

metasploit.com
Debian OpenSSL. Read more

www.networkworld.com
Hacker writes rootkit for Cisco's routers. Read more

blogs.technet.com
More on Windows XP Service Pack 3... Read more

ddanchev.blogspot.com
Got Your XPShield up and Running? Read more

ddanchev.blogspot.com
DIY Phishing Kits Introducing New Features. Read more

ddanchev.blogspot.com
A Botnet of U.S Military Hosts. Read more

rbnexploit.blogspot.com
RBN - Partners Official Sponsors of ICANN? Read more

hackademix.net
PayPal XSSed, Redmondmag.com SQL Injected. Read more

bharath-m-narayan.blogspot.com
Bakasoftware�s saga continues. Read more

holisticinfosec.blogspot.com
Beware the Zangobot! Read more

zeroq.kulando.de
HP OpenView Exploit. Read more

garwarner.blogspot.com
Certificate Dangers? Read more

blog.trendmicro.com
Storm Puppet Masters Pushing Zango Software? Read more

blog.trendmicro.com
Missing Tag Foils Compromise. Read more

sunbeltblog.blogspot.com
New highly deceptive method for fake codec. Read more

sunbeltblog.blogspot.com
Zango and Storm? Read more

momusings.com/momusings
EICAR 2008 Conference Paper Now Available. Read more

blogs.ittoolbox.com
This might be the ultimate irony. Read more

blogs.technet.com
Schneier on US Customs Notebook Searches: Do not follow the rules. Read more

www.avertlabs.com
Mass Hacks Likely to Hang Around for a While. Read more

www.securityfocus.com
Thinking Beyond the Ivory Towers. Read more

www.eweek.com
CME RIP. Read more

blogs.technet.com
The Case of the FrontPage Error. Read more

www.securityfocus.com
The Difference Between Knowledge and Wisdom. Read more

www.theregister.co.uk
'Secure' PayPal page is... you guessed it. Read more

news.netcraft.com
PayPal XSS Vulnerability Undermines EV SSL Security. Read more

www.dhanjani.com
Safari Carpet Bomb. Read more

blog.spywareguide.com
MSNAgent attempts to hide from security analysts. Read more

isc.sans.org
Disaster donation scams continue. Read more

isc.sans.org
INFOcon back to green. Read more

www.darkreading.com
Bots Use SQL Injection Tool in New Web Attack. Read more

www.darkreading.com
The Devil's in the Debian. Read more

blog.wslabi.com
SecurityFocus: we can't believe our eyes. Read more

ha.ckers.org
Phishing Site in Email. Read more

dvlabs.tippingpoint.com
Line Noise. Read more

www.lightbluetouchpaper.org
Hardened stateless session cookies. Read more

www.disog.org
Penetration testing and site security. Read more

googleonlinesecurity.blogspot.com
Safe Browsing Diagnostic To The Rescue. Read more

www.enterpriseitplanet.com
Minimize WLAN Interference. Read more

www.podtrac.com
Audio. Security Now 144: Question and Answer 41. Listen

 

News
www.securityfocus.com
Legal experts wary of MySpace hacking charges. Read more

www.securityfocus.com
TJX completes Mastercard breach settlement. Read more

www.theregister.co.uk
Rootkits on routers threat to be demoed. Read more

www.computerweekly.com
Researcher to reveal malicious rootkit software for all Cisco routers. Read more

itnews.com.au
Shape-shifting malware hits the web. Read more

www.theregister.co.uk
SANS sounds alarm on Debian OpenSSL flaw. Read more

blog.wired.com
Air Force Aims for 'Full Control' of 'Any and All' Computers. Read more

www.japantoday.com
Suspended prison term given to creator of computer virus. Read more

english.chosun.com
Police Nab Suspected Hacker of Korean Bank. Read more

www.darkreading.com
Hackers Sniff Their Way Into Data From Restaurant Chain. Read more

www.usdoj.gov
HACKERS INDICTED FOR STEALING CREDIT AND DEBIT CARD NUMBERS FROM NATIONAL RESTAURANT CHAIN. Read more

arstechnica.com
MySpace "cyber bully mom" will stand trial in LA. Read more

14 May 2008

Guides, Papers, etc
www.av-test.org
ANTI-STEALTH FIGHTERS: TESTING FOR ROOTKIT DETECTION AND REMOVAL. Read more

www.securityfocus.com
Thoughts of a Teenage Bot Master. Read more

www.datasecurity-event.com
Exepacker blacklisting. (ppt) Read more

www.armedforcesjournal.com
Carpet bombing in cyberspace. Why America needs a military botnet. Read more

blog.wired.com
International Hackers Indicted for Sniffing Credit Cards from Dave & Buster's. Read more

query.nytimes.com
DIGITAL COMMERCE; As long as software code is kept secret, Internet security is at risk. Read more

www.f-secure.com
May's Microsoft Updates. Read more

www.f-secure.com
SQL Injection Attacks Becoming More Intense. Read more

www.f-secure.com
US Air Force Colonel Proposes Skynet. Read more

isc.sans.org
War of the worlds? Read more

isc.sans.org
Microsoft office file block & MOICE. Read more

isc.sans.org
OpenSSH: Predictable PRNG in debian and ubuntu Linux. Read more

isc.sans.org
May 2008 black tuesday overview. Read more

isc.sans.org
Adobe Releases Security Bulletin. Read more

isc.sans.org
Brute-force SSH Attacks on the Rise. Read more

isc.sans.org
Mass File Injection Attack. Read more

ddanchev.blogspot.com
The FirePack Exploitation Kit Localized to Chinese. Read more

ddanchev.blogspot.com
Major Career Web Sites Hit by Spammers Attack. Read more

ddanchev.blogspot.com
Custom DDoS Attacks Within Popular Malware Diversifying. Read more

ddanchev.blogspot.com
Stealing Sensitive Databases Online - the SQL Style. Read more

ddanchev.blogspot.com
Skype Phishing Pages Serving Exploits and Malware. Read more

ddanchev.blogspot.com
A Chinese DIY Multi-Feature Malware. Read more

www.darkreading.com
'Race-to-Zero' Could Expose AV. Read more

www.darkreading.com
The Bear Facts. Read more

www.darkreading.com
Free 'AxBan' Tool Kills Bad ActiveX Controls. Read more

www.arnnet.com.au
System hardening effective weapon against unknown security threats. Read more

www.securityfocus.com
Click Crime. Read more

www.net-security.org
The Rising Trend of Internet Counter-Intelligence. Read more

www.microsoft.com
Microsoft Security Intelligence Report (July - December 2007). Read more

www.arbornetworks.com
Shining Light on Dark Address Space. (pdf) Read more

blog.spywareguide.com
OKOK.exe is not okay - kthanks. Read more

blog.spywareguide.com
Fake Windows Update Popup: It's Back (Again). Read more

blog.spywareguide.com
Scare Tactics. Read more

blog.spywareguide.com
Roll Up, Roll Up, Get Your Passports Here. Read more

blog.spywareguide.com
First Time For Everything. Read more

www.thespanner.co.uk
Double encoding javascript. Read more

www.teamfurry.com
Java DDOS bot. Read more

www.teamfurry.com
PHP DDOS Bot. Read more

bharath-m-narayan.blogspot.com
XP-Shield. Read more

bharath-m-narayan.blogspot.com
New set of sites distributing Zlob, DNS Changer and Trojan-Downloader. Read more

blogs.paretologic.com
Beware of search engines helpers. Read more

www.podtrac.com
Audio. Security Now 143: YubiKey. Listen

 

News
www.securityfocus.com
U.S. military to build botnet? Read more

www.computerworld.com.au
BLACK HAT - Hackers find a new place to hide rootkits. Read more

www.darkreading.com
New Tests Show Rootkits Still Evade AV. Read more

www.news.com.au
Amnesty protests at Chinese internet censorship. Read more

www.channelregister.co.uk
Microsoft updates squash 4 critical bugs. Read more

blogs.zdnet.com
McAfee�s HackerSafe: When all else fails, rebrand it! Read more

www.pcworld.com
Hacker Posts Chilean Government Data on 6 Million. Read more

www.lohud.com
Stolen laptop leads victim to alleged thieves. Read more

www.news.com
Hackers going after restaurants, supermarkets. Read more

07 May 2008

Guides, Papers, etc
isc.sans.org
SQL Injection Worm on the Loose. Read more

isc.sans.org
Industrial Control Systems Vulnerability. Read more

isc.sans.org
Windows XP Service Pack 3 Released. Read more

isc.sans.org
Defenses Against Automated Patch-Based Exploit Generation. Read more

isc.sans.org
How Configuration Management supports Systems Security. Read more

isc.sans.org
Windows Vista Update Causing Loss of Audio on Some Systems. Read more

isc.sans.org
Hi, remember me?... Read more

ddanchev.blogspot.com
Blackhat SEO Campaign at The Millennium Challenge Corporation. Read more

ddanchev.blogspot.com
Harvesting YouTube Usernames for Spamming. Read more

ddanchev.blogspot.com
Ethical Phishing to Evaluate Phishing Awareness. Read more

sunbeltblog.blogspot.com
Merril Lynch phish making the rounds. Read more

sunbeltblog.blogspot.com
Sunbelt joins in Amicus brief in Zango vs. Kaspersky. Read more

sunbeltblog.blogspot.com
Problems at iPowerWeb? Read more

sunbeltblog.blogspot.com
Advertising in malware. Read more

www.eweek.com
Good Worms Are a Bad Idea. Read more

anti-virus-rants.blogspot.com
the anti-av revolt. Read more

blog.spywareguide.com
Memehacks. Read more

blog.spywareguide.com
It's A Trap! Read more

blog.spywareguide.com
Beware: New MSN Messenger Password Stealing Program In The Wild. Read more

swatrant.blogspot.com
Zlob fake codecs in Google Notebook. Read more

blog.trendmicro.com
Those Lazy Hazy Crazy Days of Summer (Movies). Read more

blog.trendmicro.com
Developing: New Adventures in SQL Injection Attacks. Read more

garwarner.blogspot.com
Digital Certificate Alert! Read more

blogs.paretologic.com
Keyloggers. Read more

www.computerworld.com.au
Malware vs. anti-malware, 20 years into the fray. Read more

www.securityfocus.com
Race To Zero: It's Not A Contest, It's A Protest. Read more

www.f-secure.com
BBB Case #947344536. Read more

thedailywtf.com
The Super Hacker. Read more

www.net-security.org
(In)Secure Magazine issue 16. Read more

www.pcworld.com
What to Do When Windows Gets Really Messed Up. Read more

 

News
www.cdt.org
CDT Is Joined on Anti-Spyware Brief by A Wide Range of Groups and Companies. Read more

www.securityfocus.com
Groups warn travelers to limit laptop data. Read more

www.vnunet.com
Fake MP3 attack hits 360,000 PCs. Read more

www.publictechnology.net
Discovered: A Hacker Server with stolen customer data from 40 top-tier global firms. Read more

www.betanews.com
Download links on Yahoo may include malicious content warnings. Read more

02 May 2008

Guides, Papers, etc
www.securityfocus.com
Patch paper redux: Move along please. Read more

holisticinfosec.blogspot.com
An Open Letter to Ken Leonard, CEO, ScanAlert. Read more

www.microsoft.com
Microsoft Calls on Global Public-Private Partnerships to Help in the Fight Against Cybercrime. Read more

www.datasecurity-event.com
ANTI-UNPACKER TRICKS. Read more

www.datasecurity-event.com
Anti-Emulation Through Time-Lock Puzzles. Read more

dvlabs.tippingpoint.com
Kraken Botnet Infiltration. Read more

dvlabs.tippingpoint.com
Owning Kraken Zombies, a Detailed Dissection. Read more

sunbeltblog.blogspot.com
Zango reacts to Sunbelt blog posts. Read more

sunbeltblog.blogspot.com
New rogue: AntiVirProtect. Read more

sunbeltblog.blogspot.com
Fresh rogue and fake codec sites. Read more

sunbeltblog.blogspot.com
Zango shows off screensaver with Zango site burning. Read more

sunbeltblog.blogspot.com
Zango partnerships. Read more

sunbeltblog.blogspot.com
Microsoft-like scam sites. Read more

bharath-m-narayan.blogspot.com
New set of SSH Zlob Trojan Family�s Component site... Read more

blogs.paretologic.com
The fine art of rogue scamming. Read more

ddanchev.blogspot.com
Segmenting and Localizing Spam Campaigns. Read more

ddanchev.blogspot.com
Testing Signature-based Antivirus Products Contest. Read more

ddanchev.blogspot.com
Detection Rates for Malware in the Wild. Read more

ddanchev.blogspot.com
Fake Directory Listings Acquiring Traffic to Serve Malware. Read more

ddanchev.blogspot.com
Response Rate for an IM Malware Attack. Read more

ddanchev.blogspot.com
New DIY Malware in the Wild. Read more

news.zdnet.co.uk
Estonia's cyberattacks: Lessons learned, a year on. Read more

isc.sans.org
Windows Detours. Read more

isc.sans.org
Windows XP SteadyState. Read more

isc.sans.org
ISC Podcast Episode Number 3. Read more

isc.sans.org
(Minor) evolution in Mac DNS changer malware. Read more

isc.sans.org
Windows Service Pack blocker tool. Read more

isc.sans.org
Scripts in ASF files. Read more

www.darkreading.com
When Bots Don't Care - Or Don't Know Enough to. Read more

www.darkreading.com
Crime & Punishment. Read more

msmvps.com
New malvertizement - americansingles.com. Read more

www.networkworld.com
How one site dealt with SQL injection attack. Read more

www.avertlabs.com
PCI Requirement 6.6 - Confusing the confused. Read more

www.avertlabs.com
Mobile phone malware launders money through an online game. Read more

www.avertlabs.com
Greetings from Amsterdam�Read more

www.informationweek.com
8 Dirty Secrets Of The Security Industry. Read more

www.eweek.com
The Battle for Your Browser. Read more

www.catonmat.net
Videos from Defcon 15 Hacker Conference. Read more

www.eff.org
Protecting Yourself From Suspicionless Searches While Traveling. Read more

news.zdnet.co.uk
The Russian approach to tackling data breaches. Read more

www.podtrac.com
Audio. Security Now 142: Listener Feedback 40. Listen

 

News
www.theregister.co.uk
MS misses restart button on desktop auto-updates. Read more

www.theregister.co.uk
YouTube rolls out Scientology double standard. Read more

www.theregister.co.uk
Every Italian's tax bill published online. Read more

www.theregister.co.uk
Linux-guru's conviction fuels ReiserFS debate. Read more

www.dailyindia.com
Malicious hardware may soon replace computer viruses as hackers' tools. Read more

blog.wired.com
Sneaky Safari Update Triples the Browser's Windows Market Share. Read more

www.computeractive.co.uk
Kraken awakes to oust Storm. Read more

ha.ckers.org
Older Browsers Blocked By PayPal. Read more

www.theregister.co.uk
30 years of Spam - and we ain't finished yet. Read more

www.vnunet.com
Storm botnet blows itself out. Read more

www.newsnow.co.uk
Poor programming practices to blame for website hacks, analysts say. Read more

www.theregister.co.uk
US warez sitemaster jailed for 30 months. Read more

www.computerworld.com
Nigerian gets 18 months for cyberattack on NASA employee. Read more

www.vnunet.com
Spammers target Grand Theft Auto fans. Read more


Copyright� MegaSecurity.org