Bookmark or link to: www.kobayashi.cjb.net. All other url`s could change!
News Archive    Translate Traducen
News July 2001
31 July 2001

Artic Warfare Device 1.3.

xforce.iss.net:
Internet Security Systems Security Alert
X-Force Response to Concern About the "Code Red" Worm. Read more

www.securiteam.com:
Continued Threat of the "Code Red" Worm. Read more

www.securiteam.com:
Various Security Problems Found in Trend Micro AppletTrap Script Filtering. Read more

www.securiteam.com:
Snapstream PVS Security Vulnerability. Read more

abcnews.go.com:
'Code Red' Worm May Re-Emerge on Internet Tuesday. Read more

www.theregister.co.uk:
Code Red Tribulation is nigh, Steve Gibson warns. Read more

www.ireland.com:
Code Red worm poised for second attack on Internet. Read more

www.cnn.com:
Net braces for stronger 'Code Red' attack. Read more

www.internetnews.com:
Code Red: "I'll Be Back!". Read more

www.nst.com.my:
Expect Code Red computer virus to wreck havoc on Thurs. Read more

www.ananova.com:
FBI teams up with government to crack computer virus. Read more

www.messagelabs.co.uk:
30 Jul 2001 - W32/SirCam latest statistics. Read more

www.vnunet.com:
DoJ 'will prosecute Russian hacker'. Read more

it.mycareer.com.au:
Free speech emasculated. Read more

www.thestandard.com:
German �ber-Hacker Dies. Read more

www.siliconvalley.com:
Mob trial focuses on high-tech surveillance, privacy rights. Read more

vmyths.com:
Gibson declared antivirus software 'dead' -- in 1992. Read more

web.lexis-nexis.com:
What Goes on Inside a Virus Writer. Read more

web.lexis-nexis.com:
Is the Internet a Big Bluff? Lewis Plays Hacker's Poker. Read more

30 July 2001

Subsari 1.4 by KiPSOFT

www.linuxsecurity.com:
- EnGarde is a secure distribution of Linux engineered from the ground-up to provide organizations with the level of security required to create a corporate Web presence or even conduct e-business on the Web. It can be used as a Web, DNS, e-mail, database, e-commerce, and general Internet server where security is a primary concern. Read more

We the CERT/CC, along with other organizations listed below are jointly publishing this alert about a serious threat to the Internet
A Very Real and Present Threat to the Internet: July 31 Deadline For Action
Summary:
The Code Red Worm and mutations of the worm pose a continued and serious threat to Internet users. Immediate action is required to combat this threat. Users who have deployed software that is vulnerable to the worm (Microsoft IIS Versions 4.0 and 5.0) must install, if they have not done so already, a vital security patch.
On July 19, the Code Red worm infected more than 250,000 systems in just 9 hours. The worm scans the Internet, identifies vulnerable systems, and infects these systems by installing itself. Each newly installed worm joins all the others causing the rate of scanning to grow rapidly. This uncontrolled growth in scanning directly decreases the speed of the Internet and can cause sporadic but widespread outages among all types of systems. Code Red is likely to start spreading again on July 31st, 2001 8:00 PM EDT and has mutated so that it may be even more dangerous. This spread has the potential to disrupt business and personal use of the Internet for applications such as electronic commerce, email and entertainment.

www.securiteam.com:
Search Engines HTML Parsing Vulnerability (Lycos). Read more

www.securiteam.com:
Tivoli SecureWay Web Seal Policy Security Vulnerability. Read more

www.securiteam.com:
IBM AlphaWorks TFTP Server for Java Directory Traversal. Read more

www.securiteam.com:
Malformed RPC Request Can Cause Service Failure (Exchange, SQL, Windows). Read more

www.securiteam.com:
Invalid RDP Data Can Cause Memory Leak in Terminal Services. Read more

news.cnet.com:
Virulent worm calls into doubt our ability to protect the Net. Read more

www.abc.net.au:
New 'net worm' could disrupt Internet. Read more

it.mycareer.com.au:
US Government, private officials fret over Code Red worm. Read more

www.siliconvalley.com:
Government, private officials sound alarm over 'Code Red' worm. Read more

news.bbc.co.uk Internet's 'very real' virus threat. Read more

www.stuff.co.nz:
SirCam computer worm could wipe out hard drive files. Read more

www.guardianunlimited.co.uk:
Hackers plan to bite back as FBI detains Russian. Read more

news.cnet.com:
Hacker arrest may spur review of digital rules. Read more

www.attrition.org:
Attrition.org defaced. Read more

www.iht.com:
The Real Threat Is Cyberterrorism. Read more

ap.tbo.com:
Investigation Ordered After Computer Glitch at State Agency Exposes Student Records. Read more

australianit.news.com.au:
How the FBI watches the net. Read more

seattletimes.nwsource.com:
FBI's high-tech snooping goes on trial. Read more

australianit.news.com.au:
XP won't be stopped: Microsoft. Read more

29 July 2001

Command Center

Nmap 2.54BETA28 is now available. Download

www.securiteam.com:
Pic LPd Remote Exploit (QUEUE). Read more

www.securiteam.com:
Proxomitron Cross-Site Scripting Vulnerability. Read more

www.securiteam.com:
Services for UNIX 2.0 Suffer from a Remotely Triggered Memory Leak. Read more

www.theregister.co.uk:
Dmitry haunts FBI-chief's confirmation. Read more

news.cnet.com:
Hacker arrest may spur review of digital rules. Read more

defaced.alldas.de:
Attrition defaced. Mirror

www.securitywatch.com:
Sircam foiled Norton Anti-virus. Read more

www.securitywatch.com:
Code Red dead? Read more

www.cleveland.com:
Security gurus spy on hackers using honeypot' computer net. Read more

www.naplesnews.com:
Hacker attacks on California power raise alarms about security. Read more

www.ntcompatible.com:
Windows XP RC2 for Preview Program Customers. Read more

www.theregister.co.uk:
US Senator aims to kill Win XP launch. Read more

web.lexis-nexis.com:
New E-mail Virus Hits China. Read more

web.lexis-nexis.com:
Hack Attack Targets Verizon, AT&T Wireless Customers. Read more

www.theregister.co.uk:
Hacking activity at all-time high. Read more

www.cnn.com:
PC spies eye children, lovers, employees. Read more

28 July 2001

ScreenGrab

www.roses-labs.com:
Remote Password Assassin (RPA) is a powerful security tool to test passwords across networks. In a simple way, RPA is a Network Password Cracker using Brute Force Attack and able to attack very common ports on servers. When RPA is finish it will generate a HTML report, easy to follow and detailing the session. Read more

www.securiteam.com:
Trojans can block ZoneAlarm by setting a Mutex in memory.
ZoneAlarm and ZoneAlarm Pro can be stopped from loading by creating a memory-resident Mutex (using a call to the CreateMutex API). Uninstalling\reinstalling ZoneAlarm in a different path has no effect. The impact of this vulnerability is that a Trojan running on a victim's machine can prevent ZoneAlarm from loading, and thus leave the victim open for attack. Read more

www.securiteam.com:
Security Hole in Mambo Site Server Leads to Server Compromise. Read more

www.securiteam.com:
Windows Media Player .NSC Processor Buffer Overflow Vulnerability. Read more

www.securiteam.com:
UNIX Assembly Codes Development for Vulnerabilities Illustration Purposes. Read more

linuxtoday.com:
Debian Security Advisory: New versions of apache, fixes index bug. Read more

news.zdnet.co.uk:
'Code Red' virus re-infection expected on 1 August. Read more

computerworld.com:
Code Red worm problems could re-emerge Aug. 1. Read more

www.newsbytes.com:
It's Bed Time For Code Red Worm - But Is It Sleepy? Read more

www.2600.com:
NEW ROUND OF PROTESTS PLANNED IN SUPPORT OF SKLYAROV. Read more

www.guardianunlimited.co.uk:
Hackers plan to bite back as FBI detains Russian. Read more

www.reuters.com:
California Backers Push to Free Russian Hacker. Read more

www.thestandard.com:
Uphill Battle for Russian Programmer. Read more

www.theregister.co.uk:
Symantec fails to stop SirCam. Read more

www.theregister.co.uk:
Four new ways to stuff someone's Win machine. Read more

www2.linuxjournal.com:
Hacking Vegas at Black Hat and DEF CON: One Geek's Experience. Read more

www.computerbuyer.co.uk:
Hacker gets access to largest reported loss in business history. Read more

www.computing.vnunet.com:
Bad day for JDS Uniphase as hackers strike. Read more

www.vnunet.com:
Hackers are too risky to hire, says security firm boss. Read more

www.wired.com:
India Hackers Scared Straight? Read more

thestar.com.my:
Cyberlaws need to be updated. Read more

www.vnunet.com:
Lucent hit by hacking double whammy. Read more

www.newsbytes.com:
Gateway Scanners Plug Holes Against SirCam. Read more

www.theregister.co.uk:
FBI cyber-braniacs infect themselves with SirCam. Read more

www.theregister.co.uk:
Blowjob-assisted hack defies logic. Read more

www.newsbytes.com:
Microsoft Bulletins Fail PGP Verification. Read more

www.theregister.co.uk:
Watchdogs file Win-XP complaint with Feds. Read more

27 July 2001

MainLine 1.0b

Microsoft Security Bulletin MS01-042
Windows Media Player .NSC Processor Contains Unchecked Buffer. Read more

Microsoft Security Bulletin MS01-041
Malformed RPC Request Can Cause Service Failure. Read more

CERT� Advisory CA-2001-23
Continued Threat of the "Code Red" Worm. Read more

www.securiteam.com:
Solaris DTmail Buffer Overflow Vulnerability (MAIL Environment). Read more

www.securiteam.com:
WS_FTP Server Buffer Overflow and Possible DoS. Read more

www.law.com:
EFF: Free the Russian Hacker! Read more

www.macworld.co.uk:
Adobe plea on caged hacker. Read more

www.wired.com:
Rep: Give Fair Use a Fair Shake. Read more

www.newsbytes.com:
Hackers Pounce On New Telnet Hole � Update. Read more

www.salon.com:
Penn university to offer computer security degree. Read more

www.nikkeibp.asiabiztech.com:
Sircam Virus Widely Spreads. Read more

www.smh.com.au:
Virus sends your secrets all over the Web. Read more

www.idg.net:
Sircam virus eludes Symantec anti-virus scanning update. Read more

www.silicon.com:
FBI out-smarted by SirCam bug. Read more

www.pcworld.com:
Sircam Worm: Crawling Fast but Easily Crushed. Read more

www.wired.com:
Hey SirCam, Where'd You Go? Read more

www.reuters.com:
Scared of Hackers? Indian Teenager Offers Help. Read more

www.cnn.com:
Report: U.S. drive on computer crime falls short. Read more

www.smh.com.au:
Hackers call for police training. Read more

www.webfn.com:
Hacker forces JDS Uniphase to request trading halt. Read more

www.reuters.com:
Hacker Gets Early Peek at JDS Financial Results. Read more

www.cnn.com:
Hackers paralyze Palestinian Web site. Read more

www.ananova.com:
Welsh local government sites hacked. Read more

news.cnet.com:
Privacy advocates take aim at Windows XP. Read more

finance.individual.com:
New Microsoft Systems Erode Privacy, Groups Say. Read more

computerworld.com:
Complaint to FTC raises privacy concerns over Windows XP. Read more

www.theregister.co.uk:
The Reg guide to hackers in film. Read more

26 July 2001

Cyn 1.2 by iradium. Go to Trojan Top Sites to visit their homepage.

MS Internet Explorer + OfficeXP full Disclosure Exploit. Read more

www.xato.net:
Wordlists. Read more

tlc.discovery.com:
Hacker Psych 101. Read more

www.caida.org:
The Spread of the Code-Red Worm (CRv2). Read more

Microsoft Security Bulletin MS01-040
Invalid RDP Data Can Cause Memory Leak in Terminal Services. Read more

CERT� Advisory CA-2001-22
W32/Sircam Malicious Code. Read more

www.securiteam.com:
Sambar Web Server Pagecount Exploit Code. Read more

www.securiteam.com:
ArGoSoft FTP Server Weak Password Encryption. Read more

www.channelnewsasia.com:
Russian programmers rally in support of hacker. Read more

www.thestandard.com:
EFF: Free the Russian Hacker! Read more

www.cnn.com:
FBI nominee asked to release hacker. Read more

www.theregister.co.uk:
Gibson/Greene debate 'good parts' t'script. Read more

www.net-security.org:
Steve Gibson vs. Thomas C. Greene
The long-awaited ear-to-ear debate on the Win-XP raw-sockets implementation involving Steve Gibson and The Regsiter's Thomas C. Greene on the radio show Online Tonight with David Lawrence is available as mirrored on HNS. Read more

www.hal2001.org:
HAL2001, international conference "hackers at large". Read more

www.linux.com:
Number Nine, Number Nine: Linux at Defcon 9. Read more

www.wired.com:
Congress No Haven for Hackers. Read more

www.rsa.com:
RSA poses $200,000 crypto challenge. Read more

news.cnet.com:
Privacy advocates take aim at Windows XP. Read more

www.salon.com:
The humiliation virus. Read more

www.zdnet.com:
SirCam worm 'high risk' but not rife. Read more

www.hindustantimes.com:
E-xposed: Bug puts Govt files on Net. Read more

www.washingtonpost.com:
Access Restored To Pentagon Sites. Read more

news.24.com:
FBI cybercrime centre unable to block virus. Read more

www.cnn.com:
Hackers paralyze Palestinian Web site. Read more

www.chosun.com:
Prosecutors Indict US Army Hacker. Read more

www.washtimes.com:
Justice Department gets a 'privacy czar'. Read more

www.wired.com:
Kiwi Spy Bill Inches Forward. Read more

25 July 2001

Moses 1.1.5

grc.com:
Steve Gibson: Microsoft *MUST* be lying about the use of Full Raw Sockets in Windows XP!!! Read more

project.honeynet.org:
Know Your Enemy: Statistics. Read more

Microsoft Security Bulletin MS01-039
Services for Unix 2.0 Telnet and NFS Services Contain Memory Leaks. Read more

CERT Advisory CA-2001-21
Buffer Overflow in telnetd. Read more

www.securiteam.com:
Exploit Code Released for the SMTP Attachment Protection Bypass. Read more

www.securitywatch.com:
Son of Code Red. Read more

www.securitywatch.com:
NetWin Authentication Module Weak Password Storage and Buffer Overflow. Read more

www.securitywatch.com:
Card Service International / LinkPoint API Security Concerns. Read more

www.securitywatch.com:
Squid HTTPd Acceleration ACL Bug Enables Port Scanning. Read more

www.securitywatch.com:
Linux 2.4.x Slackware Init Script Vulnerability. Read more

www.theregister.co.uk:
SSH hits the fan for Unix admins. Read more

www.securitywatch.com:
Brazilian hackers can�t get enough IIS. Read more

linuxtoday.com:
Linux Kernel-Level Trojan - Kernel Intrusion System (KIS). Read more

it.mycareer.com.au:
Admins urged to close serious BSD security hole. Read more

www.zdnet.com:
Why the SirCam worm is only the beginning for new viruses. Read more

www.computerworld.com:
Sircam worm spreads, causing corporate aggravation. Read more

www.newsfactor.com:
FBI Computer Infected by SirCam Worm. Read more

europe.cnn.com:
Pentagon shuts sites to battle worm. Read more

www.boston.com:
Adobe shifts, urges hacker's release. Read more

www.newsbytes.com:
Adobe Withdraws Support For Russian Programmer Prosecution. Read more

www.ireland.com:
Adobe backs down on prosecuting hacker. Read more

salon.com:
Adobe calls for programmer's release. Read more

www.silicon.com:
Star Wars site hacked by turtle-obsessed ninja.
"Brazil rules. I thank the master Splinter, without his training the Turtles would be nothing." Read more

www.vnunet.com:
Hacker defies the force. Read more

www.newsbytes.com:
Swiss Hackers Grab 250,000 E-mail Addresses, Passwords. Read more

www.theinquirer.net:
Microsoft Hotmail hacked? Read more

www.newsbytes.com:
Hackers Hit Again With Hitler Mustache, Music. Read more

www.theregister.co.uk:
Infamous porn site gets a hacker makeover. Read more

www.cincypost.com:
Online hackers target government offices. Read more

www.bbspot.com:
Microsoft Bundles Worm with IIS. Read more

www.computerworld.com:
Black Hat Highlights Real Danger of Script Kiddies. Read more

www.zdnetasia.com:
S'pore broadcaster invaded by Code Red worm. Read more

www.zdnetasia.com:
The fitting punishment for virus writers? Death! Read more

www.latimes.com:
Home PCs Are at Risk for Use by Hackers. Read more

www.latimes.com:
Practicing Safe Computing Can Minimize Chances of Invasion. Read more

www.idg.net:
House approves Carnivore reporting requirements. Read more

www.fcw.com:
Justice creating cybercrime units. Read more

24 July 2001

Bushtrommel 1.22

freshmeat.net:
BreakDown is a Linux password cracker that uses dictionary attacks and customizable brute force attacks.
It can also be used a sequential character generator. Read more

www.kav.ch:
IIS-Worm.Bady (aka "Code Red","CodeRed") Read more

www.kav.ch:
I-Worm.Sircam. Read more

www.securiteam.com:
3Com TelnetD Password Brute Forcing. Read more

www.securiteam.com:
AdCycle SQL Command Insertion Vulnerability. Read more

www.securiteam.com:
Interactive Story File Disclosure Vulnerability. Read more

it.mycareer.com.au:
Sniffer Trojan blamed for posting accounts. Read more

www.planetebook.com:
Index of ElcomSoft, Dmitry Sklyarov, Adobe,
US Government and DMCA-related articles from around the Web. Read more

www.eff.org:
Adobe, Electronic Frontier Foundation Call for Release of Russian Programmer. Read more

www.freesklyarov.org:
Free Dmitry Sklyarov. Read more

zork.net:
Free Dmitry Sklyarov. Read more

www.boycottadobe.com:
Boycott Adobe. Read more

www.eff.org:
EFF "Intellectual Property: Digital Millennium Copyright Act (DMCA): U.S. v. Sklyarov" Archive. Read more

www.individual.com:
Civil Liberties Group Blasts Adobe For Aiding FBI In Arrest. Read more

www.ananova.com:
Protests mount over arrested Russian programmer. Read more

finance.individual.com
U.S. protesters seek release of Russian programmer. Read more

www.newscientist.com:
Computer scientists boycott US over digital copyright law. Read more

it.mycareer.com.au:
A cryptic sentence, then blackout. Read more

www.theregister.co.uk:
Adobe Folds! Read more

www.theregister.co.uk:
Boycott Adobe campaign launches. Read more

www.themoscowtimes.com:
Jailed 'E-Pirate' a Cause Celebre. Read more

abcnews.go.com:
Gathering of Hackers and More. Read more

www.theregister.co.uk:
Code Red worm cripples US military sites. Read more

www.theregister.co.uk:
MSN bug serves up porn. Read more

www.computerworld.com:
Sircam worm spreading; vendor warnings upgraded. Read more

www.wired.com:
Love Bug, SirCam Neck and Neck. Read more

www.theregister.co.uk:
SirCam virus hogs connections with spam. Read more

www.guardianunlimited.co.uk:
Now it's getting personal - the prying email virus. Read more

www.idg.net:
OPINION: Smart social engineering helps virus spread. Read more

www.siliconvalley.com:
Pentagon temporarily shuts down Web sites to guard against Internet virus. Read more

www.newsbytes.com:
Hacker Uses Worm To Gouge Telstra IDs, Passwords. Read more

abcnews.go.com:
Pentagon Blocks Public Web Site Access. Read more

www.zdnet.com:
IT bugs out over IIS security. Read more

www.newsbytes.com:
Hackers Deface Microsoft Career Server. Read more

www.reuters.com:
Dell Funds Fight Against Web Site Hackers. Read more

www.newsbytes.com:
Hackers Scrawl Hitler Moustache On Ex-Party-Leader's Photo. Read more

australianit.news.com.au:
Cybercrime Bill 'excessive'. Read more

www.newsfactor.com:
U.S., Microsoft Refute Nuclear Data Vulnerability. Read more

www.smh.com.au:
Hacker finds passwords to give BigPond a fright. Read more

www.thescotsman.co.uk:
�Honey pot� traps can get you out of a sticky security situation. Read more

23 July 2001

Theef 1.30

Rocks game, an Acropolis dropper. Read more

www.avpavp.hpg.com.br:
Reverse Engineer in the AVP Antivirus by SennaSpy. Read more

Worm Alert: IIS-Worm.Bady and I-Worm.Sircam.c
I-Worm.Sircam.c

Beware of the e-mails with attachment and text like this:
"Hi! How are you?
I send you this file in order to have your advice
See you later. Thanks"
The message in the "subject" can be different. I received several of these mails last days!
Its the I-Worm.Sircam.

IIS-Worm.Bady
Visiting the link of the defaced Microsoft Update Site can bring the IIS-Worm.Bady on your computers Hard Drive.
Amongst other, this link can be found on SecurityWatch.com, The Register and was also here in the news of yesterday.
If you visited this link, you can find the worm in your Temporary Internet Files. Delete the Temporary Internet Files.

www.securiteam.com:
DIP Exploit Code Still Works After 3 Years. Read more

www.securiteam.com:
Squid HTTPd Proxy Allows Insertion of Arbitrary HTML Code. Read more

www.securiteam.com:
SSH Secure Shell 3.0.0 Allows Passwordless Logons. Read more

www.newsbytes.com:
Vigilantes Prepare To Strike Back At Code Red Worm. Read more

www.miami.com:
Web virus variation is faster, stronger. Read more

www.defcon.org:
DEF CON 9 - Open Letter to the community. Read more

abcnews.go.com:
Government Jabs at Cyber Crime. Read more

www.gulf-news.com:
Hacker appeals conviction, prosecutor seeks tougher sentence. Read more

news.bbc.co.uk:
US targets cyber-crime. Read more

www.theregister.co.uk:
FBI becomes Copyright '911'. Read more

Jailed 'E-Pirate' a Cause C�l�bre. Read more

www.smh.com.au:
Hacker finds passwords to give BigPond a fright. Read more

it.mycareer.com.au:
Telstra accused of playing down hacker theft. Read more

www.sfgate.com:
Protecting your privacy as you surf the Web. Read more

web.lexis-nexis.com:
If Def Con is any measure, hackers are coming of age. Read more

22 July 2001

MoonPie 2.4 beta

Latinus 1.4 source

Blitz Network can launch a spoofed syn flood attack via slice2 from many different computers without logging on any of them. Read more

www.safemode.org:
Microsoft, Microsoft, Microsoft. The Redmond behemoth has been "Hacked by Chinese!" - but not at some obscure domain. No, in a stunningly ironic blow, the Code Red worm - which spreads through a month-old IIS buffer overflow exploit - infected and defaced � the Windows update site. Read more

www.theregister.co.uk Code Red bug hits Microsoft security update site.
Microsoft's own Windows Update site has fallen victim to the Code Red worm.
The fact that the Windows Update site, which provides a portal to product updates and security patches along with advice on critical updates, wasn't itself up to date with the latest security patches is richly ironic. Read more

www.securitywatch.com:
"Chinese" take Windows update site. Read more

www.securiteam.com:
Antivirus Scanners Spread New Zip Virus. Read more

www.newsforge.com:
Remote root exploit in SSH Secure Shell 3.0.0. Read more

www.securiteam.com:
Linux Man Malicious Cache File Creation Vulnerability (Exploit). Read more

www.securiteam.com:
Multiple Vendors Telnet Daemon Vulnerability. Read more

www.securiteam.com:
Full Analysis of the .IDA "Code Red" Worm. Read more

www.securiteam.com:
Not Filtering ';' Poses a Security Vulnerability in Forms that Post SQL Based Queries. Read more

www.securiteam.com:
HTTProtect Allows Attackers to Change the Protected Files Using Symlinks. Read more

www.securitywatch.com:
PHP eminently DoS-able. Read more

www.ciac.org:
Hewlett-Packard login Vulnerability. Read more

freshmeat.net:
Linux Port/Socket Pseudo ACLs 2.4.7-5 (2.4). Read more

www.techtv.com:
MS Bug Lets Worm Take Over Servers. Read more

www.nipc.gov:
"Ida Code Red Worm ". Read more

www.zdnet.com:
White House dodges 'Code Red' attack. Read more

www.securitywatch.com:
Sir Cam reveals your deepest secrets. Read more

www.securitywatch.com:
Cyber-rights community protests Sklyarov arrest. Read more

www.newsforge.com:
Subversives ready for budding career as 'ethical hackers'. Read more

21 July 2001

RUX The TIc.K 5.0

grcsucks.com:
Dissecting Steve Gibson GRC DoS Page by Cyrano de Bergerac. Read more

***
More about Steve Gibson:
grc.com:
Microsoft Seems to Feel that Windows XP Vulnerability is a Laughing Matter. Read more

www.noccc.org:
Main Meeting--Internet Security by Steve Gibson. Read more

www.theregister.co.uk:
Web-myth debunker's life threatened by Steve Gibson Groupie. Read more

indevelopment.org:
An interview with Steve Gibson. Read more
***

www.insecure.org:
Nmap 2.54BETA27 released. Read more

www.horsburgh.com:
nPULSE - Web-based network monitoring package for Linux and Unix. Read more

CERT Advisory CA-2001-20
Continuing Threats to Home Users. Read more

www.eeye.com:
A variant of the recent "Code Red" worm roaming the Internet.
This new worm DOES NOT attempt to hack Web pages and, unlike the original worm, it targets truly random IP addresses, resulting in much faster propagation.
In order to help minimize any further effects from the "Code Red" worm and the new variant, eEye has developed a free tool that helps users determine if a server is infected or is vulnerable to infection. The tool will also instruct the user on how to fix the infected machine, if needed. Download

sunspot.net:
Infection affects 225,000 computers worldwide. Read more

www.zdnet.com:
Sayonara, Code Red, for now. Read more

www.idg.net:
With new IIS worm, security practices questioned. Read more

it.mycareer.com.au:
New IIS worm puts network community on edge. Read more

europe.cnn.com:
Marsha Walton: A cyber-can of worms. Read more

www.wired.com:
Inept Virus Hits White House. Read more

www.pcworld.com:
Code Red Worm Spawns Offspring. Read more

www.reuters.com:
Experts: File-Deleting Sircam Email Virus Spreading. Read more

www.ciol.com:
�High risk� SirCam virus spreading fast. Read more

www.symantec.com:
W32.HLLO.Videoinf is a virus that overwrites .ht* and .exe files in the folder that it is executed from. It sends information from the computer on which it is run to an email address. On certain dates, the virus will modify the C:\Autoexec.bat file so that the hard drive will be formatted when the computer is restarted. Read more

www.symantec.com:
Trojan.Assault.10 is a program that can be used to flood a single IP address with packets of data. Read more

www.eff.org:
Free Dmitry!
Protest Call Brings Adobe to the Negotiating Table. Read more

slashdot.org:
Dimitry's company sold password crackers to the FBI. Read more

www.newsbytes.com:
Civil Liberties Group Blasts Adobe For Aiding FBI In Arrest. Read more

www.reuters.com:
Supporters Rally Behind Arrested Russian Hacker. Read more

www.2600.com:
CALL TO ACTION: FREE DMITRY! Read more

www.pcworld.com:
Hacker's Arrest Prompts Protest Against Adobe. Read more

www.theregister.co.uk:
China shuts down 2,000 cybercafes. Read more

english.eastday.com:
2,000 Internet cafes closed. Read more

www.smh.com.au:
Subversives ready for budding career as 'ethical hackers'. Read more

news.cnet.com:
U.S. to cybercriminals: You're going down. Read more

www.ecommercetimes.com:
Busy Virus Week - A Sign of Things To Come? Read more

denver.bcentral.com:
Qwest targeted by hackers. Read more

web.lexis-nexis.com:
Chinese Hackers Attack Canoga Park Web-Based Food Supplier. Read more

www.securitywatch.com:
SubSeven gets busy on the Mac. (link fixed)Read more

www.zdnet.com:
Feds bulk up to fight cybercrime. Read more

20 July 2001

Phantom FTP server 2.0 (Backdoor.Phantom.20)

Trojan Construction Kit. An older one. Read more

Dropper. Read more

Red Worm Analysis by eEye Digital Security. Read more

CERT Advisory CA-2001-19
"Code Red" Worm Exploiting Buffer Overflow In IIS Indexing Service DLL. Read more

www.securiteam.com:
Exploit Code Released for the Small MSS Denial of Service. Read more

www.securiteam.com:
Directory Traversal and Path Globing Vulnerabilities in Several Archivers. Read more

www.securiteam.com:
Multiple Vulnerabilities in Un-CGI. Read more

www.attrition.org:
Denial of Service Database

www.idg.net:
With new IIS worm, security practices questioned. Read more

it.mycareer.com.au:
New IIS worm puts network community on edge. Read more

www.zdnet.com:
'Code Red' worm wreaking havoc. Read more

www.internetnews.com:
Code Red Spreads Across Web. Read more

www.crn.com:
Worm Aims To Attack White House Site. Read more

www.theregister.co.uk:
IIS worm made to packet Whitehouse.gov. Read more

www.individual.com:
Attack Worm Aimed At White House. Read more

www.zdnet.com:
'Network-aware' virus on the loose. Read more

www.mcafee.com:
W32/SirCam@MM Help Center. Read more

www.nwfusion.com:
Antivirus software vendors warn against Sircam. Read more

www.wired.com:
New Worm Keeps Them Guessing. Read more

www.wired.com:
Hacker Arrest Stirs Protest. Read more

www.netsurf.com:
Programmer Arrested After Giving Security Research Presentation. Read more

www.uniontrib.com:
Russian programmer arrested at hacker convention for alleged violation of copyright law. Read more

www.theregister.co.uk:
MS starting to retreat on WinXP product activation. Read more

www.ananova.com:
DefCon told of virus assault on mobiles. Read more

web.lexis-nexis.com:
7 DAYS; NEW HACKING TOOL CAUSES CONCERN. Read more

www.internetnews.com:
A Security Warning for Windows 2000. Read more

www.computerworld.com:
Hacker conferences highlight security dangers. Read more

europe.cnn.com:
Cyprus Internet attack from Europe? Read more

www.zdnet.com:
Europe may be source of Cyprus Net attack. Read more

www.guardian.co.uk:
Sign on the dot. Read more

19 July 2001

RTB 666 1.5

www.securiteam.com:
Messenger and Hotmail MITM Exploit (Arptool and Neaky). Read more

www.securiteam.com:
Xman Exploit Code Released. Read more

www.securiteam.com:
Xloadimage Remote Vulnerability (Exploit). Read more

www.securiteam.com:
Checkpoint Firewall-1 Information Leakage (SecuRemote, Exploit). Read more

www.securiteam.com:
Norton Antivirus 2002 Security Flaws. Read more

www.securiteam.com:
Multiple Vulnerabilities in Implementations of the Lightweight Directory Access Protocol (LDAP). Read more

www.securityfocus.com:
How Fast is Fast: Vendor Response to New Virus Reports. Read more

www.vnunet.com:
IIS virus triggers Red alert. Read more

www.newsbytes.com:
Code Red Worm Can Be Killed By Reboot. Read more

www.securitywatch.com:
SubSeven gets busy on the Mac. Read more

www.securitywatch.com:
Microsoft offers preliminary fix for Outlook ActiveX bug. Read more

www.newsfactor.com:
Bogus Alerts Highlight Phony Security Postings. Read more

www.iht.com:
Digital Law Nets E-Book Hacker. Read more

www.reuters.com:
CORRECTED: Russian Hacker Arrested After Las Vegas Convention. Read more

www.vnunet.com:
Game Seti match for fame seeking hackers. Read more

www.smh.com.au:
Bank site 'easy to hack'. Read more

www.telegraph.co.uk:
Hackers convention threatens mobile phone havoc. Read more

www.newsbytes.com:
Hong Kong Mulls Measures To Fight Computer Crime. Read more

www.theregister.co.uk:
Network ICE hits back over Gibson jibes. Read more

www.theregister.co.uk:
Network ICE CTO responds to further BlackICE criticisms. Read more

www.theregister.co.uk:
OfficeXP may break PGP. Read more

computerworld.com:
Microsoft dropping Java code from Windows XP. Read more

www.it-director.com:
People and Passwords. Read more

18 July 2001

Le Gardien 2. Thanks to ISO.

CERT Advisory CA-2001-18
Multiple Vulnerabilities in Several Implementations of the Lightweight Directory Access Protocol (LDAP). Read more

www.macuser.co.uk:
SubSeven Trojan hits Mac. Read more

www.securiteam.com:
Initial Analysis of the .IDA "Code Red" Worm. Read more

www.securiteam.com:
Sambar Web Server Allows Execution of Arbitrary Batch Files. Read more

www.symantec.com:
Backdoor.Darkirc. Read more

investor.cnet.com:
UPDATE 1-Russian hacker arrested after Las Vegas convention. Read more

news.excite.com:
Russian Hacker Arrested After Las Vegas Convention. Read more

www.zdnet.com.au:
FBI bust at hacker fest. Read more

news.cnet.com:
Russian crypto expert arrested at Def Con. Read more

www.wired.com:
Russian Adobe Hacker Busted. Read more

www.theregister.co.uk:
eBook security debunker arrested by Feds. Read more

www.zdnet.com:
Russian Mafia threatens Net. Read more

www.individual.com:
Russian Mafia Net Threat (Interactive Week INWK). Read more

it.mycareer.com.au:
NZ cracker found guilty on 5 charges. ead more

www.zdnet.com.au:
A rogue's gallery of DoS attacks. Read more

www.ecommercetimes.com:
Hacker Group: Software Will Make Censors 'Powerless'. Read more

www.zdnetasia.com:
Aussie expert: 90 percent of hackers are kids. Read more

www.wired.com:
Hackers Secure a Downgraded Storm. Read more

europe.cnn.com:
Security expert: Tighter measures needed. Read more

news.zdnet.co.uk:
Hackers steal vital data from Formula One team. Read more

www.abc.net.au:
Benetton falls victim to hackers. Read more

www.crn.com:
Fast-Spreading Worm Exploits Microsoft IIS Flaw. Read more

it.mycareer.com.au:
Bogus Microsoft bulletin links to trojan worm. Read more

www.newsbytes.com:
Phony E-mail Offers Cure For Magistr Worm. Read more

www.theregister.co.uk:
Hackers run amok during Defcon. Read more

www.theregister.co.uk:
WinXP product activation cracked: totally, horribly, fatally. Read more

computerworld.com:
Microsoft still struggling with Windows XP downloads. Read more

www.worldnews.com:
Bush Plans Different Cyber Security. Read more

europe.cnn.com:
Decoy PCs give hackers a security lesson. Read more

www.stuff.co.nz:
Jury split over computer hacker's guilt. Read more

www.nzherald.co.nz:
Jury finds half of hacking counts proven. Read more

www.businessweek.com:
Give Hackers Headaches. Read more

17 July 2001

A new version of Skydance, the Gibson version.
About Steve Gibson, Microsoft and Windows XP by Edrin. Read more

Update Georgi Guninski security advisory #49
The previously-released Outlook E-mail Security Update that is integrated into Outlook 2002 would prevent this vulnerability from being exploited via e-mail in all affected Outlook versions.
This claim is false.
The exploit works from email on Outlook XP (2002). Read more

www.securiteam.com:
Multiple Exploit Codes Released for the CFingerD Vulnerability. Read more

www.securiteam.com:
ColdFusion Server Zero Byte Overwrite and Read Delete Access Vulnerabilities (Patch Available). Read more

www.securiteam.com:
Vulnerabilities Found in Cisco SN 5420 Storage Routers. Read more

www.securiteam.com:
SimpleServer:WWW Command Execution Vulnerability. Read more

www.securiteam.com:
phpMyAdmin Vulnerability Leads to Local File Exposure and Arbitrary Command Execution. Read more

www.securiteam.com:
Weakness Found in OpenSSL PRNG Algorithm. Read more

www.newsbytes.com:
Malicious Web Attacks May Be New IIS Worm. Read more

www.newsbytes.com:
Lapse At SANS May Have Been Self-Inflicted. Read more

www.thestandard.com:
Hackers Are Developing Anti-Censorship Software. Read more

www.pcworld.com:
Hacking for a Better World. Read more

australianit.news.com.au:
Hacker back door into ISPs. Read more

www.vnunet.com:
Israeli m0sad hackers crack 480 sites. Read more

www.lasvegassun.com:
Las Vegas hacking party seems filtered, Def Con attendees say. Read more

www.idg.net:
Def Con, Black Hat: Hacker shows offer tips, tricks. Read more

www.nzherald.co.nz:
Hacker awaits verdict in 'Back Orifice' case. Read more

australianit.news.com.au:
Hacking 'a military risk'. Read more

cgi.usatoday.com:
Hackers scope out new prey More users of cellphones, handhelds now fall victim to hack attacks, viruses. Read more

www.lasvegassun.com:
Computer experts warn about holes in software. Read more

www.net-security.org:
Hacking for human rights. Read more

www.zdnet.com:
Which Is More Secure? -- Open Source Vs. Proprietary. Read more

web.lexis-nexis.com:
2001: The Year of the Worm;Fast-spreading code is the weapon of choice for Net vandals. Read more

web.lexis-nexis.com:
CIA keeps watch as hackers ply for hire Computer hackers. Read more

16 July 2001

Y3K Rat is a remote administration tool,which controls a remote computer.
This version is dedicated to MegaSecurity. By -/Chucky-\- and [Firelarm]. Read more

www.adonai.fr.st:
MEPForge. A Packet Forger under Win32 --Send Raw Packet: Igmp Udp Und Pup Idp Protocol.
By AdonAi and Del_Armg0. Read more

hackerzlair.org:
Windows 2000 Security?
Diary of a Windows 2000 hack and the dangers. Read more

www.cerberus-infosec.co.uk:
Analysis of the winhlp32.exe buffer overrun. Read more

www.headstrong.de:
WebClicker uses public proxies to create artificial banner ad clicks. Emulates complete browser HTTP transfer and can be used for banner/link exchanges and toplists as well. Read more

Working link: FireWall-1 RDP Bypass Vulnerability Exploit Code. Read more

www.securiteam.com:
LMail Local Root Exploit. Read more

www.securiteam.com:
TrendMicro InterScan WebManager HttpSave.dll Buffer Overflow Vulnerability. Read more

www.guninski.com:
Georgi Guninski security advisory #49
MS Office XP - the more money I give to Microsoft, the more vulnerable my Windows computers are. Read more

ecommercetimes.com:
'Network-Aware' Viruses Spreading Fast - Report. Read more

news.cnet.com:
U.S. government wants a few good hackers. Read more

www.smh.com.au:
Computer invaders become gatekeepers. Read more

finance.individual.com:
Hackers advised against life of crime at DefCon jamboree. Read more

news.bbc.co.uk:
Hacking Las Vegas. Read more

www.stuff.co.nz:
Hackers advised against crime. Read more

www.nzherald.co.nz:
Security experts unveil plan to track hackers. Read more

web.lexis-nexis.com:
Masters of disguise. Read more

www.vancouversun.com:
Canadian system protects superpower secrets. Read more

15 July 2001

Little Witch FTP 1.0

Rat Cracker 1.60

Hostile Java

www.inflict.org:
A3I stands for AIM IM Image IP Sniffer. It is a GUI frontend that uses the netstat included with Windows to "sniff" the the IP address of the people you are connected to though AOL Instant Messenger's "IM Image" function. Read more

darkirc.fateback.com:
DarkIRC is a program that is to be used on your own box and your own irc server... it is to test your irc server's strength and anti flood system. DARKIRC is not to be used for illegal purposes (bot nets / dos attacks / flooding) and other illegal things like that. Read more

packetstormsecurity.org:
Distributed Denial of Service Defense Tactics. Read more

www.securiteam.com:
FireWall-1 RDP Bypass Vulnerability Exploit Code Released. Read more

www.securiteam.com:
Exploits Released for the Solaris Libsldap Buffer Overflow (LDAP_OPTIONS). Read more

net-security.org:
In the early hours of Friday morning, a defacer known as "Fluffi Bunni" defaced the website of SANS. As of this posting the site is still not responding. On the defacement, it asks "would you really trust these guys to teach you security?". Mirror

www.securitywatch.com:
Look mummy i'm on sans! Read more

web.lexis-nexis.com:
Masters of disguise.
The hackers are back with code that looks different every time. The hackers' new tool, known as polymorphic code, camouflages scripts so they can evade detection. Read more

computerworld.com:
Outlook e-mail vulnerability found; Microsoft criticizes 'bug hunter'. Read more

www.securitywatch.com:
You know Def Con is on when� Read more

www.securitywatch.com:
continuing the list of WoH defacements starting with the "E's". Read more
And now with the "O's". Read more

www.ciol.com:
'Honey Pot�: This tracker will nail a hacker. Read more

www.newsbytes.com:
Mass Site Defacement Relied On Cheap Trick. Read more

www.wired.com:
Hackers in Suits? Gadzooks! Read more

web.lexis-nexis.com:
Hackers and their opponents party in Las Vegas. Read more

www.pcworld.com:
Decoy PCs Trick Hackers Into Teaching Security. Read more

www.idg.net:
At Black Hat, ties seen tightening between hackers, legal officials. Read more

14 July 2001

Optix Lite 0.1 by th3 r1pp3rz

packetstormsecurity.org:
Tcpip_lib V3.2 is a library for Windows 2000 which allows constructing custom packets, IP spoofing, attacks, and more.
It uses sockets 2 and opens up a raw socket, allowing you to send raw IP headers, do IP spoofing, and play with the nuts and bolts of networking protocols. Download

www.laurentconstantin.com:
Lcrzo is a network library, for network administrators and network hackers.
Lcrzoex contains over 200 functionnalities to test an Ethernet/IP network (sniff, spoof, configuration, clients, servers, etc.). Read more

sourceforge.net:
StMichael is a LKM that attempts to detect and divert attempts to install a kernel-module backdoor into a running linux system. Read more

odin.prohosting.com:
UltimateRat Plugins. Read more

www.infosecuritymag.com:
Personal Firewalls Under Fire
"We hacked away at three personal firewalls to see how well they protect a remote system".
BlackICE Defender v2.5, WinRoute 4.1 and ZoneAlarm Pro 2.6 tested. Read more

A security consulting firm based in Irvine, California, Foundstone teaches an intensive, four-day Ultimate Hacking course for administrators, engineers, and other IT professionals charged with the increasingly difficult task of fighting digital intruders. In exchange for the $3,995 course fee, participants get to learn all the tricks of the hacking trade. Read more

www.securiteam.com:
Outlook View Control Exposes Unsafe Functionality (Exploit Code). Read more

www.securiteam.com:
Solaris Whodo Buffer Overflow Vulnerability (Exploit, SOR, CFTIME). Read more

www.securiteam.com:
Cisco IOS PPTP Vulnerability. Read more

www.securiteam.com:
VPN-1/FireWall-1 Format String Vulnerability. Read more

www.securiteam.com:
CGI Flat File Database Manipulation Vulnerability. Read more

www.theregister.co.uk:
Guninski finds new ActiveX security hole in OXP. Read more

www.symantec.com:
Trojan.VBS.PWStroy is a script that can modify the Autoexec.bat file so that drive C is reformatted when the computer is restarted. Read more

www.theregister.co.uk:
MS security chief talks raw sockets with the Reg.
MS Security Program Manager Scott Culp , has become a fan of Steve Gibson raw sockets coverage. Read more

www.antioffline.com:
Minimizing Denial of Sevice Attacks. Read more

www.antioffline.com:
Theories on new DoS Attacks v.1. Read more

web.lexis-nexis.com:
Alien virus invades PCs. Read more

www.pcworld.com:
Decoy PCs Trick Hackers Into Teaching Security.
Security conference highlights legal weapons, hacker insurance proposal, and 'honeypots' that lure intruders. Read more

www.computerworld.com:
At Black Hat, ties seen tightening between hackers, legal officials. Read more

www.computerworld.com:
Internet worm purports to be a Microsoft security alert.
The worm could eventually be used to prepare target machines for involvement in distributed denial-of-service attacks that can bring Web sites to their knees. Read more

www.vnunet.com:
Hackfest reveals worms getting smarter. Read more

www.itworld.com:
Black Hat Briefings: Internet too complex to secure. Read more

www.idg.net:
Internet too complex to secure, says exec. Read more

www.thestandard.com:
Wireless Drive-By Hacking. Read more

news.cnet.com:
Wireless networks wide open to hackers. Read more

www.pcworld.com:
Your Wireless LAN Can Be Hacked. Read more

investor.cnet.com:
Honeynet Project sweetens hacker bait. Read more

www.vnunet.com:
Hackers slam Bugtraq. Read more

www.ireland.com:
Verification of e-mail signatures gains ground. Read more

www.washtimes.com:
Separate events host computer pros, hackers. Read more

web.lexis-nexis.com:
EVERYONE IS A TARGET FOR HACKERS. Read more

www.antioffline.com:
Recently Slashdot was forced to remove a post off their site by Scientology.
This document seems to be hated by those looney Scientology retards. Read more

13 July 2001

MoonPie 2.2 beta

Analysis of the Buschtrommel Trojan by Magnus Mischel. Read more

Microsoft Security Bulletin MS01-038
Outlook View Control Exposes Unsafe Functionality. Read more

www.securiteam.com:
myCIO HTTP Server Directory Traversal Vulnerabilty. Read more

www.securiteam.com:
BasiliX Webmail Security Hole (DUMMY). Read more

www.efnet.org:
EFNet under a denial of service attack. Read more

www.theregister.co.uk:
IRC network comes under denial of service attack. Read more

www.newsbytes.com:
DDOS Attacks On The Rise - Efnet Latest Target. Read more

www.vnunet.co:
EFNet attacks may herald its last days. Read more

www.theregister.co.uk:
BTinternet users banned by IRC network.
BTinternet users have been banned from using a popular IRC network whilst the hunt for a vandal spreading a Trojan continues. Read more

www.symantec.com:
VBS.Blank.A is a Visual Basic Script that changes the current Internet Explorer home page to the \Windows\AboutBlank.htm. Read more

www.symantec.com:
W32.Malot.int is a mass-mailing worm. Read more

www.zdnet.com:
Marijuana worm too mellow to spread. Read more

www.vnunet.com:
Bug Watch: wise up to the wireless worm. Read more

www.vnunet.com:
Fake security bulletin hides Leave worm. Read more

www.ecommercetimes.com:
'Network-Aware' Viruses Spreading Fast - Report. Read more

www.freeos.com:
Exorcise FTP, Telenet And Other Evil Daemons. Read more

www.vulnwatch.org:
Non-Profit, Independent Vulnerability Disclosure List Created. Read more

www.newsbytes.com:
Hackers Launch New E-Mail List For Security Bugs. Read more

www.securityfocus.com:
Tool makes hackers obsolete. Read more

news.bbc.co.uk:
The hacker who sent Viagra to Bill Gates. Read more

www.2600.com:
HEARING IN DVDCCA CASE LATER TODAY. Read more

web.lexis-nexis.com:
One evil hacker puts all others to shame. Read more

news.cnet.com:
Wireless networks wide open to hackers. Read more

www.nst.com.my:
Laws to deal with computer crimes. Read more

www.washtimes.com:
Separate events host computer pros, hackers. Read more

www.economictimes.com:
Net has also revolutionised business frauds�. Read more

www.smh.com.au:
Warning on cyber terrorism. Read more

www.theregister.co.uk:
Can WinXP Product Activation be reverse engineered? Read more

www.licenturion.com:
Inside Windows Product Activation. Read more

www.theregister.co.uk:
WinXP Product Activation decoded and analysed. Read more

www.cw360.com:
Glitches block WinXP beta downloads. Read more

www.cw360.com:
XP or not XP? Read more

www.vnunet.com:
Safeway delivers porn by email. Read more

12 July 2001

Clandestine 1.0

Latinus 1.3 source

www.adonai.fr.st:
DaaTH, Designed to kill : Ftp Server Daemon SERV-U 2.5 (crash 3.0 too). Read more

www.geocities.com:
Babel, DDoS of Biblical proportions, by Floydman. Read more

www.securiteam.com:
Various Security Problems with Trend Micro's AppletTrap URL Filtering. Read more

www.securiteam.com:
Living Waterfalls Poses a Major Security Risk. Read more

www.securiteam.com:
Exploit Code Released for Solaris 'at' Arbitrary Command Execution (Format String). Read more

www.securityfocus.com:
Cfingerd local vulnerability (possibly root). Read more

www.theregister.co.uk:
DoS risk from Zip of death attacks on AV software? Read more

www.newsbytes.com:
Microsoft Addresses Encryption Flaw In Win2K. Read more

www.securitywatch.com:
Virtual business cards vulnerable to attack. Read more

www.itworld.com:
ISS warns of security flaw in RADIUS servers. Read more

www.pcworld.com:
Watch Out: Worms are Getting Smarter, Expert Warns.
Peer-to-peer networks may be breeding ground for the next generation of nasties. Read more

news.cnet.com:
Worm threat to worsen. Read more

www.itworld.com:
Worms will become dynamic, smarter. Read more

www.securitywatch.com:
Keep away from that Microsoft security bulletin! Read more

news.zdnet.co.uk:
Netscape ruling a boost for privacy. Read more

www.wired.com:
XP Not Privy to Computer Privates. Read more

ecommercetimes.com:
Hackers Convene Amid Signs Computer Security Is Eroding.
Hacker conventions, such as those being held in Las Vegas this week, are no longer considered the sinister gatherings they once were. Read more

www.worldnews.com:
Computer Guardians, Hackers Meet. Read more

www.securitywatch.com:
Suspects in Mumbai hack traced to cyber cafe. Read more

www.itworld.com:
Microsoft loosens grip on Windows configuration. Read more

www.datasync.com:
THE MICROSOFT CONSPIRACY INTERPRETATION OF "AMERICAN PI". Read more

www.securitywatch.com:
Mass attack on Chinese government sites. Read more

web.lexis-nexis.com:
Companies complacent about hackers, e-security threats: expert. Read more

web.lexis-nexis.com:
NET LIFE; Scrappy crackers hack first, and ask questions later. Read more

news.cnet.com:
Group sets cybercrime-fighting priorities. Read more

www.zdnet.com:
The war over 802.11x security. Read more

11 July 2001

Bushtrommel 1.21

mdcrack.multimania.com:
Bruteforce your MD5 Hashes. Read more

Georgi Guninski security advisory #48, 2001
FreeBSD 4.3 local root, yet Linux and *BSD much better than Windows
Systems affected:
FreeBSD 4.3 and probably earlier versions.
Risk: High
Description:
There is local root compromise in FreeBSD 4.3 due to design flaw which allows injecting signal handlers in other processes. Read more

www.securityfocus.com:
Chasing the Wind, Episode Eight: Still Waters. Read more
Chasing the Wind, Part Seven was earlier published. Read more

Internet Security Systems Security Alert Summary
July 9, 2001
Volume 6 Number 8. Read more

www.securiteam.com:
IBM Net.Data Show SQL Vulnerability. Read more

www.securiteam.com:
Opera Browser Heap Overflow (Session Replay Attack). Read more

www.securiteam.com:
Many WAP Gateways Do Not Properly Check SSL Certificates. Read more

www.securiteam.com:
Insecure Temporary Files Handling in Tripwire. Read more

linuxtoday.com:
EnGarde Secure Linux Security Advisory: OpenSSL PRNG Weakness. Read more

www.net-security.org:
Messenger/Hotmail passwords at risk. Read more

www.informationweek.com:
Security Flaw Found In Common DSL Modem. Read more

www.zdnet.com:
Living in a state of denial.
If service providers don't move faster to prevent distributed denial-of-service attacks, hackers and script kiddies can grab their suntan lotion and head for the beach this summer because there will still be ample opportunity to bring sites to a screeching halt once the season is over. Read more

www.zdnet.com:
Mob Stoppers.
One the most aggravating internet security threats today is a distributed denial-of-service attack � a flood of bogus network traffic that can effectively shut down a Web site. Far from going away, the phenomenon is evolving in different permutations, but new tools are emerging to help Internet administrators fight this vexing problem. Read more

www.wired.com:
Smoking Mad Over Pot Virus. Read more

www.theregister.co.uk:
Marijuana virus puts security to pot. Read more

www.newsbytes.com:
Bogus Microsoft Bulletin Spreads Internet Worm. Read more

ecommercetimes.com:
Hackers Convene Amid Signs Computer Security Is Eroding.
Hacker conventions, such as those being held in Las Vegas this week, are no longer considered the sinister gatherings they once were. Read more

www.chron.com:
Hackers and their trackers come together in Vegas. Read more

www.theregister.co.uk:
FireWall-1 users feel the heat from security bug. Read more

www.rediff.com:
Lashkar web site hacked. Read more

www.msnbc.com:
Government payroll system in Denver open to hackers, report says. Read more

www.rediff.com:
Two suspects picked up for hacking into Bombay police web site. Read more

www.zdnet.com:
Privacy: Win XP activation 'innocuous'. Read more

www.nandotimes.com:
Technology: Microsoft to enlist VeriSign security. Read more

web.lexis-nexis.com:
HACKERS' TOOL MAKES INNOCENT VICTIMS LAUNCH SPAM ATTACKS. Read more

web.lexis-nexis.com:
Hackers use emotions to infect computers. Read more

10 July 2001

Sequel 0.1 beta 1

download.insecure.org:
Nmap 2.54BETA26 released. Read more

CERT� Advisory CA-2001-17
Check Point RDP Bypass Vulnerability. Read more

www.securiteam.com:
Check Point FireWall-1 RDP Bypass Vulnerability. Read more

grc.com:
A Brief Summary of My Position on the Windows XP Raw Socket Controversy. Read more

www.theregister.co.uk
The Gibson letters
Thank God someone's finally exposing this charlatan. Read more
You both make good points, but we're still leaning in Steve's direction. Read more
Steve walks on water; you're a moron, and so's your old man. Read more
Reg temporarily disappoints Gibson fans/bashers. Read more

www.theregister.co.uk:
Steve Gibson picks a fight with Microsoft and The Register. Read more

www.chron.com:
Hackers and their trackers come together in Vegas. Read more

www.theregister.co.uk:
PoisonBOx hacks past security firm's 'honey pot'. Read more

it.mycareer.com.au:
CERT warns firewall leaves open door to attackers. Read more

www.zdnet.com:
Security firms asleep at the firewall. Read more

thestar.com.my:
Security hole plagues Win2000. Read more

www.securitywatch.com:
IIS plus .gov equals trouble. Read more

www.securitywatch.com:
Directory traversal bug plagues BasiliX Webmail. Read more

www.idgnet.co.nz:
Anti-child porn virus on the loose. Read more

www.symantec.com:
W32.Mineup.Worm. Read more

www.securitywatch.com:
Brazilian posse hacks UNESCO site. Read more

www.computerworld.com:
Big, Ugly Security. Read more

www.idg.net:
Top 10 Security Mistakes. Read more

news.zdnet.co.uk:
Cisco patches security flaws. Read more

www.theregister.co.uk:
How to own a Cisco router in one easy step. Read more

www.nikkeibp.asiabiztech.com:
Microsoft Teams with China Software Firm on Data Security Protection. Read more

news.cnet.com:
Microsoft to tap VeriSign for security. Read more

europe.cnn.com:
Eli Lilly cites human error for e-mail gaffe. Read more

www.individual.com:
Multi-nation cybercrime pact gets OK (ZDNet News ZDNN). Read more

www.vnunet.com:
US Government admits security blunder. Read more

www.zdnet.com:
U.S. military backs open-source security. Read more

09 July 2001

NeuroticKat 1.1

www.adonai.fr.st:
KAbAL, a M.S. Net-Meeting Attack tool.
KAbAL can crash nt and win2k unpatch netmeeting version very fastly, even if not common port are used. Read more

CERT� Incident Note IN-2001-07
W32/Leaves: Exploitation of previously installed SubSeven Trojan Horses. Read more

www.nipc.gov:
"New Scanning Activity (with W32-Leaves.worm) Exploiting SubSeven Victims ". Read more

www.vmyths.com:
They call it 'messiah complex' for a reason.
Steve Gibson: "I forced Microsoft into a Kobayashi Maru scenario." Read more

vmyths.com:
Will raw sockets create "serious problems for the ordinary user with a DSL connection?" Read more

vmyths.com:
Gibson applauds Microsoft security, fears Linux will destroy Internet. Read more

vmyths.com:
Aureate DLLs Trojan.
Various 'alerts' claim Aureate Media (now known as Radiate) gathers personal data on Internet users via covert software. Read more

www.securiteam.com:
New DoS: Creating Small Packets Causes a Large Overhead. Read more

www.securiteam.com:
Remote Buffer Overflow in Several RADIUS Implementations. Read more

www.securiteam.com:
POPRelayD Relay Authentication Vulnerability. Read more

www.securiteam.com:
Make Your BSD a TCP/UDP Black Hole. Read more

linuxtoday.com:
Red Hat Security Advisory: xinetd. Read more

www.individual.com:
Microsoft Bug Report Page Is Missing. Read more

cryptome.org:
Final resolution on Echelon adopted on 3 July by the European Parliament. Read more

news.cnet.com:
Congress fears European privacy standards. Read more

jumpfn.123jump.com:
TEENAGE HACKER ESCAPES PRISON. Read more

www.computeruser.com:
Hacker goes on defacement spree in Australia. Read more

www.securityfocus.com:
Mass web banking hack probed. Read more

web.lexis-nexis.com:
Full arsenal of defenses needed to protect computer privacy. Read more

www.individual.com:
Lilly discloses e-mail addresses of Prozac patients, blames programming error. Read more

08 July 2001

Theef 1.23

www.securiteam.com:
Citrix NFuse True Path Revealing. Read more

www.securiteam.com:
Xvt Buffer Overflow Vulnerability (-T, -name). Read more

www.securiteam.com:
Authentication Error in Windows 2000 SMTP Service Could Allow Mail Relaying. Read more

www.securiteam.com:
Remote Command Execution Vulnerabilities in SquirrelMail. Read more

www.securiteam.com:
Using PHP Securely. Read more

Vulnerability Test.
SMTP Authentication Error
Summary: Checks if the remote mail server can be used as a spam relay. Read more

windowsxp.narod.ru:
Windows XP, IE 6.0. Read more

www.securitywatch.com:
Friday's defacement shame parade: NASA, Washington Court, etc. Read more

www.securitywatch.com:
Fast cars, faster viruses. Read more

finance.news.com.au:
Online brokers 'terrorised'. Read more

slashdot.org:
Aussie Bill Would Ban Hacking Tools, Virus Code. Read more

news.cnet.com:
U.S. scrutinizes security hole at privacy site. Read more

news.zdnet.co.uk:
IT directors not gambling on security. Read more

www.thestandard.com:
Cybercrime Skyrockets, Say Security Reports. Read more

07 July 2001

PSYchoFiles 1.8

www.securiteam.com:
Cisco IOS HTTP Authorization Exploit Code. Read more

news.independent.co.uk:
Hacker learns internet deception isn't child's play. Read more

www.siliconvalley.com:
Hacker sentenced to probation, psychiatric care. Read more

www.computerworld.com.au:
Cybercrime bill 'draconian and dangerous'.
Under the bill, which proposes seven new computer offences carrying jail terms of up to 10 years, it is illegal to possess hacker toolkits, scanners and virus code. Read more

finance.news.com.au:
Online brokers 'terrorised'. Read more

www.newsbytes.com:
U.K. Student Given Three Years Probation For Hacking. Read more

www.zdnet.com:
Gates' credit-card hacker sentenced. Read more

www.guardianunlimited.co.uk:
Welsh teen hacker sentenced. Read more

06 July 2001

M2 Trojan 1.5

Microsoft Security Bulletin MS01-037
Authentication Error in SMTP Service Could Allow Mail Relaying. Read more

RuX FireCracker v 2.0, "discovered" by Astonsoft disables most popular firewalls. Read more
See our news of 30 june.

www.symantec.com:
Trojan.Billrus.Texto. Read more

www.tuxedo.org:
Hacker Jargon. Read more

www.idgnet.co.nz:
Security specialist succumbs to hackers. Read more

www.linuxsecurity.com:
Defaced Commentary: Evil Angelica. Read more

www.ananova.com:
Teenage hacker to be sentenced for internet 'crusade'. Read more

www.theinquirer.net:
Big Brother Web site falls apart. Read more

www.zdnet.com:
Hacker posts code to exploit MS bug. Read more

www.computeruser.com:
Attack program exploits new Microsoft bug. Read more

news.cnet.com:
Oracle patches high-risk security hole. Read more

www.blackhat.com:
The Black Hat Briefings, July 11-12th Las Vegas. Read more

www.individual.com:
Euro Parliament Plans September Vote On Echelon Protest. Read more

webserv.vnunet.com:
Strewth! Aussie hacker on the rampage. Read more

www.newsbytes.com:
Hacker Goes On Defacement Spree In Australia. Read more

www.siliconvalley.com:
Report: Lilly inadvertently divulged IDs of 600 Prozac users in e-mail. Read more

www.newsbytes.com:
Eli Lilly Has Net Privacy Lapse. Read more

dailynews.yahoo.com:
U.S. Military Pursues Higher-Tech Security. Read more

www.theregister.co.uk:
Government, military scramble for encryption technology. Read more

web.lexis-nexis.com:
Shssh, secrecy! bootcamp top traumas solved. Read more

web.lexis-nexis.com:
INSTANT MESSAGES OPEN TO HACKERS. Read more

05 July 2001

HomeUNIX 1.0

www.dwheeler.com:
Flawfinder is a program that examines source code looking for security weaknesses. Read more

www.securiteam.com:
Oracle 8i SQLNet Header Vulnerability. Read more

www.securiteam.com:
Cisco Multiple SSH Vulnerabilities. Read more

www.securiteam.com:
LiteWebServer JSP Source File Discolsure. Read more

www.securiteam.com:
BisonFTP Server Directory Traversal Vulnerability (BDL files). Read more

www.securiteam.com:
CesarFTP Vulnerable to a Buffer Overflow (HELP command). Read more

www.securiteam.com:
LiteServe Exposes CGI Source Code (8.3 filename). Read more

www.securiteam.com:
Multiple Vendors Vulnerable to LNK File Directory Traversal. Read more

www.securiteam.com:
Solaris Mailtool Buffer Overflow Exploit Code (OPENWINHOME). Read more

www.securiteam.com:
Linux Allows Reading from Execve()ed Setuid Memory. Read more

www.securiteam.com:
Xdm Cookies Fast Brute Force. Read more

www.theregister.co.uk:
Magistr continues three month reign as top virus. Read more

www.theregister.co.uk:
Unicode bug restyled as DoS tool. Read more

www1.odt.co.nz:
Hacker success `terrifies'. Read more

it.mycareer.com.au:
Cracker targets Australian Web servers. Read more

jumpfn.123jump.com:
OTS calls in police over hackers. Read more

www.zdnet.com:
OS X flaws draw hackers' eyes. Read more

iwsun4.infoworld.com:
Euro report 'downplays Echelon dangers,' say Greens. Read more

www.wired.com:
Echelon Furor Ends in a Whimper. Read more

www.smh.com.au:
Bush facing EU condemnation over spy network. Read more

04 July 2001

Theef 1.22

grc.com:
Microsoft Does Not Understand Security.
What This Means About the Future of Denial of Srvice? Read more

www.pgp.com:
Vulnerability in Oracle 8i TNS Listener. Read more

www.securiteam.com:
LPRng and Tetex Temp Files Race Vulnerability (UID LP Exploit). Read more

www.securiteam.com:
Exploit Code for the Buffer Overflow in XInetD Released (log.c). Read more

www.securiteam.com:
SmallHTTP Server Vulnerable to DoS (Long URL). Read more

www.securiteam.com:
vWebServer ASP Viewing and DoS Vulnerabilities (ASP Source, DOS Device, Long URL). Read more

www.securiteam.com:
TrendMicro InterScan VirusWall SmtpScan.dll Buffer Overflow. Read more

www.securiteam.com:
TrendMicro InterScan VirusWall HttpSaveCVP.dll Buffer Overflow. Read more

www.securiteam.com:
Exploit Code Released for the Crontab -e Vulnerability (.swp). Read more

www.securiteam.com:
Active Web Classifieds Authentication Failure Allows Arbitrary Code Execution. Read more

www.securiteam.com:
GNATS Allows Viewing Files and Arbitrary Code Execution (gnatsweb.pl). Read more

freshmeat.net:
remote vulnerability scanner 4.8. Read more

www.theregister.co.uk:
Unicode bug restyled as DoS tool. Read more

www.pcworld.com:
Usenet May Be a Virus Minefield. Read more

www.zdnet.com:
OS X flaws draw hackers' eyes. Read more

uk.news.yahoo.com:
�650,000 - Now that's what we call an expensive hack. Read more

www.internetnews.com:
Of Hackers, Spies and E-Terrorists. Read more

www.informationweek.com:
Getting Inside The Criminal Mind. Read more

news.zdnet.co.uk:
Crackers suspected of rigging Big Brother vote. Read more

www.wired.com:
Most Hacking Hides Real Threats. Read more

www.zdnet.com:
Hackers May Profit From Spam. Read more

www.vnunet.com:
Britney hacker faces the music. Read more

www.ananova.com:
Hacker fined for crashing Emirates' computer system. Read more

www.nzherald.co.nz:
Jurors witness hacking demonstration. Read more

www.vnunet.com:
User group proposes OS security standards. Read more

www.newsfactor.com:
Tech-Savvy Teens Swamp Police with Fake IDs. Read more

www.securitywatch.com:
UNICEF Pakistan defaced! Read more

www.zdnet.com:
Windows XP enters final testing. Read more

03 July 2001

Moonpie 2.0

www.securiteam.com:
Exploit Code Released for the MS Windows 9x NETBIOS Password Verification Vulnerability. Read more

www.securiteam.com:
MacOS Personal Web Sharing DoS (Long Password). Read more

www.newsbytes.com:
Microsoft Does Not Understand Security.What This Means About the Future of Denial of Service. Read more

www.vmyths.com:
Aboout Raw Sockets. Read more

www.newsbytes.com:
XP Critic: Microsoft Misses The Point On Security. Read more

www.nzherald.co.nz:
Computer hacking trial opens. Read more

australianit.news.com.au:
Tougher online crime law. Read more

it.mycareer.com.au:
Hackers force business to muster the experts. Read more

www.gulf-news.com:
Computer whizkid fined for hacking into Internet system. Read more

www.ireland.com:
British hacker fined in Emirates. Read more

02 July 2001

Theef 1.21

news.com.au:
Defence prepares for cyber-war. Read more

www.theage.com.au:
Cyber warfare on rise: Defence. Read more

www.newsfactor.com:
'Peekabooty' Anonymous Web Browser Delayed. Read more

www.theregister.co.uk:
Microsoft fails to renew its digital certificate. Read more

www.siliconvalley.com:
Albuquerque teen accused of hacking NASA computer. Read more

news.bbc.co.uk:
Briton guilty of Dubai hacking, Read more

www.accessatlanta.com:
Computer upgrade mixes porn with Legislature's site. Read more

biz.yahoo.com:
Net Crime-Stoppers. Read more

www.thetimes.co.uk:
How secure is your money in cyberspace? Read more

www.montrealgazette.com:
Beware of the spy in your PC. Read more

01 July 2001

Internal Revise 1.0

Little Witch 4.2

www.securiteam.com:
Cisco IOS HTTP Authorization Vulnerability. Read more

www.securiteam.com:
A-FTP Anonymous FTP Server Remote DoS Attack. Read more

www.securiteam.com:
Format String Vulnerability in KAV* for Sendmail. Read more

www.securiteam.com:
Anti-Spam and Security Fix Available for Formmail.pl. Read more

www.computeruser.com:
Microsoft battles another Win2K password. Read more

www.nandotimes.com:
New Mexico teen charged in NASA computer attack. Read more

www.siliconvalley.com:
Albuquerque teen accused of hacking NASA computer. Read more


Copyright� MegaSecurity.org