Bookmark or link to: www.kobayashi.cjb.net. All other url`s could change! |
News Archive Translate Traducen |
News August 2000 |
31 August 2000 New Trojans: CrazzyNet 3.7.8 by CrAzzyWak. Undetected 2.3 SE by KnoX_rw
ComputerWorld:
Lberty Trojan Checker
Wanted: |
30 August 2000 New Trojans: Subseven 2.1.4 DEFCON8 by Mobman. MultiBinder1.2.1 by The_Thinker. Weekly Microsoft Security Digest 2000/08/21 to 2000/08/27. Read more Weekly Linux Security Digest 2000/08/21 to 2000/08/27. Read more Weekly Solaris Security Digest 2000/08/21 to 2000/08/27. Read more Weekly Check Point Security Digest 2000/08/21 to 2000/08/27. Read more NAI: W32/NewsTick Virus. Read more
Surfing the Tsunami
A random sample of 8081 different secure web servers (servers running the SSL protocol) in active use on the Internet shows that 32% are dangerously weak.
TechWeb: |
29 August 2000 New Trojans: Exploiter 1.0 beta by apOcalaps. Infector 1.6a is the same as Infector 1.6, but with a different server. By coder FC. Create a shadow directory of the real one with trojan versions of the same files. Read more
Microsoft Security Bulletin (MS00-062):
NwFusion:
TheRegister: |
28 August 2000 New Trojans: Lamers Death 2.2 Stukach is a tiny little program, which can run hiddenly on some computer, keeping track of everything user types on the keyboard, and sending this information to you via e-mail. Of course, user never would know you are reading his e-mail and stuff, unless you would say him. FreeVeracity is a general-purpose data integrity tool for free platforms (e.g. GNU/Linux, FreeBSD, NetBSD, OpenBSD) that uses cryptographic hashes to detect changes in files. Link
NewsByte:
AustralianIT:
KoreaHerald:
ComputerUser: |
27 August 2000 New Trojans: Undetected 2.3a. New server by Knox_rw PC Invader 0.7 alfa7 by Heraldo J. A. Carneiro Filho
New PGP release
FresfMeat: Canada probes allegation that U.S. hacked secret files. Read more
CNN:
FCW: |
26 August 2000 FC has improved his Infector: Infector 1.6
By Evil Unca HeLLfiReZ: Virus Trap creates two 15kb test files (result.exe and result.com). The theory is that if any viruses are running on your computer, running these test files should be enough to infect result.exe/com with that virus - trapping it for analysis.
Microsoft Security Bulletin (MS00-060):
Microsoft Security Bulletin (MS00-061)
ComputerWeekly: Fake ID. Read more
PlanetIT:
BBC:
ComputerUser:
WIRED:
NewsBytes:
ComputerUser:
CNet:
CNet:
MSNBC:
SPTIMES:
NewsByte:
ComputerUser: |
25 August 2000 New Trojans: CrazzyNet 3.7.5 by CrAzzyWak. Asylum Multipager by Slim, modified by UXmaX. Exe binder: MultiBinder1.2 by The_Thinker
Peacefire.org:
UK.Internet:
Yahoo:
Individal.com: Ticketmaster hacked by music fans. Read more
SPTimes: |
24 August 2000 ISO has joined the crew. Welcome. Please take time to make a vote.
New Trojans: Exe Binder: MultiBinder 1.1 by The_Thinker.
CNNfn:
ZDNet:
ComputerUser: ZoneAlarm Firewall Spreads to Nets. Read more
ZDNet: |
23 August 2000 New Trojans: X-Console beta Lamers Death 2.1 Un-detected 1.1 muerte Thanks to WH� and ISO for sending me links.
Cross Site Scripting
TheAge:
ComputerUser:
Techweb:
GlobeTechnology:
WIRED:
PanetIT: |
22 August 2000 Trojans: Y3K RAT 1.3 by -/Chucky-\- and [Firelarm]. CrazzyNet 3.7.1 by CrAzzyWak. PC Invader 0.7 alfa6 by Heraldo J. A. Carneiro Filho.
Microsoft Security Bulletin (MS00-059): Weekly Executive Security Digest 2000/08/14 to 2000/08/20. Read more CrackPipe.c. Program to tunnel an IP, used to break through firewalls. (source)
Times of India:
PCWorld:
CNet:
Outrider Coputer Journal:
Telegraph.co.uk:
Washington Post:
Security Focus:
Sunday Times:
Irish Independent:
Mainichini:
ComputerWorld:
Technology Evaluation:
FCW:
Irish Independent:
Irish Independent:
San Francisco Chronicle:
ABCNEWS: |
21 August 2000 Trojans: NetDemon 1.0c by ][CrAsH][ (thanks to Sniper) and Peanut Brittle 0.2beta by eXodus WM Remote KeyLogger sends you the keystrokes of a remote computer. Netscape Communicator Java Security BUG Patch. Read more Update to Netscape 4.75. Read more Weekly Microsoft Security Digest 2000/08/14 to 2000/08/20. Read more Weekly Linux Security Digest 2000/08/14 to 2000/08/20. Read more Weekly BSD Security Digest 2000/08/14 to 2000/08/20. Read more Weekly Solaris Security Digest 2000/08/14 to 2000/08/20. Read more Weekly Check Point Security Digest 2000/08/14 to 2000/08/20. Read more
ComputerUser: |
20 August 2000 Trojan Skydance 2.291 beta Trojan Pc Invader 0.6 beta
LinuxToday:
TechWeb:
The-Times:
ZDNet: |
19 August 2000 New Moscow Mail Trojan 1.5. Thanks to "Kronos". Asylum Binder 1.0 by Slim. Distributed Denial of Service (DDoS) Attacks/tools by David Dittrich
The Irish Times:
CNN:
VNUNET:
VNUNET:
ComputerWorld:
ComputerWorld: |
18 August 2000 Trojan BackAge 3.0.1 by Ne-O-Sk8.
Retina has the ability to scan, monitor and fix vulnerabilities within a network�s Internet, Intranet, and Extranet. Thus, giving the network administrator complete control across all
possible points of attack within an organization.
CNet:
FT.com: Security gates held open for "Love" virus, mutants. Read more ILOVEYOU Virus Rides Again - As A Resume. Read more
NandoTimes:
CNet: Napster fan hacks dozens of sites. Read more
CANOE: |
17 August 2000 Trojan Lamers Death 2.4. Thanks to "NoTrojan". IE executes arbitrary files thru Microsoft Network X-Exejoiner and Icon changer by Lazarus
NewdByte:
ABCNEWS:
CANOE:
Ecommerce:
CNET:
CNET:
NetworkWorldFusion:
CNN: |
16 August 2000 New: Trojan SniperNet 2.2 by Real Sniper. Thanks to the Trojan Sign. Using publicly available tools and sniffers in hacking by Timo Aterma and Johannes Kleimola. Department of Computer ScienceHelsinki University of technology Backdoors in U**x Systems by ManiaX Killerian Trojan horse hiding under Linux by Iron Code The Gentle Art of Trojan Horsing under Windows by EXo. Collecting Information from Remote Sites by ManiaX Killerian. Attacking Windows 9x with Loadable Kernel Modules by Solar Eclipse. From Trojan Horses to Worms: Understanding Various Malicious Threats. Read more
TROJ_PERSONAL_ID Microsoft Security Bulletin MS00-058 announces the availability of a patch that eliminates a vulnerability in Internet Information Server that ships with Microsoft� Windows 2000. Under certain conditions, the vulnerability could cause a web server to send the source code of a web file to a visiting user. Microsoft is committed to protecting customers' information, and is providing the bulletin to inform customers of the vulnerability and what they can do about it. Read more
VNUNET:
PCWorld:
MSNBC: |
15 August 2000 Trojan Undetected 2.2 - Lot of functions - Server only 20 k Remote OS detection via TCP/IP Stack FingerPrinting
PCWORLD:
WIRED NEWS: Sniffers and Anti-Sniffing. Read more
News.FT.com:
Computer User: Next: viruses that cripple cities. Read more
Guardian Unlimited:
Inside China:
InfoWorld:
IDG.NET: |
14 August 2000 Barrio Trojan 4.0. Thanks to "Explorer".
TROJ_QAZ.A.
Security Portal:
Security Portal:
Security Portal:
Security Portal:
IDGNET: Security Auditor's Research Assistant (SARA) is a third generation Unix-based security analysis tool. Read more
ZDNet:
ComputerUser:
Security Portal: |
13
August 2000 Trojan Skydance 2.25 beta by Edrin. HPTeam Mail Trojan 0.02 norasby Lynx.
Microsoft:
CERT� Advisory CA-2000-16 Microsoft 'IE Script'/Access/OBJECT Tag Vulnerability.
Farm9:
Linux Today: 32% of SSL Servers are insecure by Eric Murray
ZDNet:
CNET:
IDG:
Windows IT Security: |
12 August 2000 New Moscow Troyan. Final release 6.
Wanted:
Re-Release - Microsoft Security Bulletin (MS00-056) NAI: W32/Sysid.worm Virus - This is a 32bit Internet worm for Windows9x/NT systems. It was written in Delphi and then compressed using ASPACK. This trojan does not appear to have a damaging payload however does contain an email routine using MAPI application OUTLOOK. Read more CERT� Advisory CA-2000-15 Netscape Allows Java Applets to Read Protected Resources. Read more. Sophos: XM97/Barisada-C Virus - this virus has a payload which will attempt to clear all active sheets if the user does not correctly answer a series of questions. Read more
VNUNET: UK Linux group slams Sophos virus threat claims. Read more.
FreshMeat"
CNN:
ZDNet:
CNN:
ZDNet: |
11 August 2000 Trojan Nirvana 2.0a. Thanks to The Trojan Sign Brown Orifice Netscape exploit is vulnerable itself. Read more
Microsoft Security Bulletin (MS00-049) re-release.
Microsoft Security Bulletin (MS00-055)
Microsoft Security Bulletin MS00-056
PCWORLD:
PCWORLD:
The Register:
CNN: |
10 August 2000 Trojan PC Invader 0.5 beta Silent delivery and installation of an executable on a target computer. Disable ActiveScripting and ActiveX Controls
The Washington Times:
TechWeb:
PCWorld:
ZDNet: Protesting Hacker Out on Bail. Read more. |
9 August 2000 E-mail Trojan Barrio 3.06 is an update for version 3.05. - Dial-Up password - Cached resourses - Crypted passwords from E-Type Dialer - Everything that was pressed in some windows (Login request e.t.s.) To configure trojan you should run "btrcfg.exe". You need to type your E-Mail address and a SMPT server Dragon IDS - from Network Security Wizards. A packet based IDS that searches for over 600 different network attacks at fully saturated 100 Mb/s speeds. Runs on Linux, OpenBSD, FreeBSD and Solaris. All of the signatures are completely open and writing new signatures is easy. Dragon collects complete attack information - raw packet dumps, the response for the server under attack and follow activity from suspicious hackers. Free demo.
Planet IT: NewsByte:
RootPrompt:
RootPrompt:
Security Portal:
DigiCrime, Inc.
ResearchBuzz: |
8 August 2000 Senna Spy Fenasoft 2000 Virus This a true virus. Next version, that will come out soon, will have worm and trojan features. Read more
Brown Orifice Spy. Free acces to infected users. Read more
|
7 August 2000 BO infects users through webpages. Dan Brumleve has discovered a serious security flaw in Netscape browsers. Because of the way Netscape handles java, it is possible for a malicious web site operator to run a hostile java applet on a client machine. To demonstrate this vulnerability, Dan has written a piece of code (Brown Orifice) which can turn Netscape browsers into a web server, and serve up the entire directory tree from root. Since this application is written in java, it works cross on most operating systems, including Linux. Dan has made the source code available for inspection at his web site. Read more. Sources. Weekly Microsoft Security Digest 2000/07/31 to 2000/08/06. Read more. Weekly Linux Security Digest 2000/07/31 to 2000/08/06. Read more. Weekly Solaris Security Digest 2000/07/31 to 2000/08/06. Read more. |
6 August 2000 Trojan Backage 3.0. Thanks to TLSecurity.
VNUET:
VLAD is a free, open source tool that
checks for the common security vulnerabilities on the SANS Top Ten list. Adding a small function (Autostart) to Shell32.dll by LaZaRuS Top Secret Messenger (TSM) is a powerful and secure public-encryption add-on for instant messengers, such as America Online's ICQ. Read more. Nmap 2.53 Russian Released: Link
Digital Mass:
Wired News:
ZDNet:
PlanetIT:
BusinessWeek:
CNN:
PlanetIT:
Security Watch:
Bookstore: |
5 August 2000 E-mail trojan HPTeam 0.02 RAS
The Korea Herald:
PCWORLD.COM:
WWW.Cisco.Com: IDzap provides a free anonymous web surfing service and Comprehensive list of resources for anonymous use on the internet. Link.
ComputerWorld:
Security Focus:
Register:
Washington Times:
Digitalmass: |
4 August 2000 Trojan CAFEiNi 0.9 -can kill more than 20 Windows antiviruses and antibackdoors from memory -doesn't installs itself into registry (when can) -written in Visual C++ (smaller and faster than Delphi) -you can control remote computer by telnet (eg. from Unix) -works on Windows 95/98 and also Windows NT/2000 -with CAFEiNiclient you can control multiple computers (eg. open CD-ROM doors on 10 computers with one button click) -full multitasking (eg. you can upload and download files in one time from multiple computers) -some new backdoors commands (especially with desktop) -automatic update of server by http
Windows IT Security: Free Macro AntiVirus Techniques by Chengi Jimmy Kuo
Microsoft Corp will give personal firewall vendors advanced access to code for future Windows 2000 Service Packs to avoid repetition of the bug that this week disabled firewalls for more than 3.5 million users using the Redmond, Washington-based company's latest operating system. Read more.
Windows About: |
3 August 2000 Noob is a HTML based trojan that can bypass firewalls. Read me Download Noob 3.01. IDcide Privacy Companion is a free browser add-on that alerts you if you are being monitored online. Find out who might be tracking you.
Microsoft Security Bulletin (MS00-053):
Help Net Security:
Microsoft:
Wired:
ABC News:
Computeruser:
Hackers pick security holes.
Fox News:
ZDNet:
Info World:
Israels business Arena: |
2 August 2000 Trojan PC Invader 1.0
IDG.net:
IDG.net:
JavaWorld: Java security evolution and concepts, Part 2: Java security. Read more.
Vnunet:
Worldtribune: |
1 August 2000 Trojan CC Invader 2 Out of order SMTP DATA command can be used to bypass firewall protection Weekly Microsoft Security Digest 2000/07/24 to 2000/07/30. Read more. Weekly Linux Security Digest 2000/07/24 to 2000/07/30. Read more. Weekly Solaris Security Digest 2000/07/24 to 2000/07/30. Read more.
ZDNet:
PC World:
|
Copyright� MegaSecurity.org