Bookmark or link to: kobayashi.cjb.net. All other url`s could change!
News Archive    Translate Traducen
News August 2001
31 August 2001

New Trojan:
Lez Trojan

www.cmpnetasia.com:
New worm masquerades as Microsoft message. Read more

www.securiteam.com:
Lotus Domino DoS (Message Loop). Read more

www.securiteam.com:
Outlook Express 6 Attachment Protection Bypassing. Read more

www.securiteam.com:
Outlook2000 Animated Assistant & Password Protected Screen Saver Vulnerability. Read more

www.securiteam.com:
Respondus Stores Passwords Using Weak Encryption Methods. Read more

www.securiteam.com:
Access Violation in Windows 2000 IRDA Driver Can Cause System to Restart. Read more

www.securiteam.com:
Remote Buffer Overflow Vulnerability in HP-UX Line Printer Daemon. Read more

www.securiteam.com:
Vulnerabilities in Several Apache Authentication Modules. Read more

www.securitywatch.com:
Bugzilla v2.13 and older contains some serious security flaws. Read more

www.securitywatch.com:
Kazaa and Morpheus reveal sensitive information. Read more

www.zdnet.com:
Programmer claims to crack MS Reader. Read more

www.computerworld.com:
Defense agency, Veridian to pinpoint foreign hackers. Read more

www.reuters.com:
Report: Code Red Computer Worm Born in China. Read more

www0.siliconvalley.com:
U.S. report: Code Red computer worm born in China. Read more

www.newsbytes.com:
Design Flaw Stops InvalidSSL Worm. Read more

www.computerworld.com:
New virus targets and encrypts .exe files. Read more

www.newsfactor.com:
Expert Hacks Hotmail in One Line of Code. Read more

www.webfn.com:
Security expert hacks Microsoft's Hotmail easily. Read more

www.securitywatch.com:
Hacker + three lines of code = Hotmail breach. Read more

www.securityfocus.com:
The Blind Leading the Blind. Read more

www.newsbytes.com:
Virus Flood Raises Scrutiny Of Govt Network Security. Read more

timesofindia.indiatimes.com:
Country's first Cyber crime police station opens. Read more

europe.cnn.com:
Study: Many UK businesses prey to cybercrime. Read more

www.abc.net.au:
NSW Parliament hacking inquiry continuing. Read more

it.mycareer.com.au:
Police clear MP of hacking allegations. Read more

www.salon.com:
How do you fix a leaky Net? Read more

www.siliconvalley.com:
Researchers discover new method of stealth computing. Read more

timesofindia.indiatimes.com:
Internet can be used for stealth computing. Read more

dailynews.yahoo.com:
Is China's Guandong province ground zero for hackers? Read more

www.business.scotsman.com:
Web criminals dent business confidence. Read more

www.europemedia.net:
Elcomsoft to repeat controversial eBooks security talk in Amsterdam. Read more

www.reuters.com:
Accused Russian Programmer Hopes for Justice. Read more

www.2600.com:
SKLYAROV AND EMPLOYER ARRAIGNED, PROTESTS OCCUR NATIONWIDE. Read more

www.wired.com:
Sklyarov, Boss Plead Not Guilty. Read more

www.nandotimes.com:
Supporters of Russian hacker protest outside U.S. embassy. Read more

timesofindia.indiatimes.com:
US digital copyright review seeks changes. Read more

salon.com:
Copywrong? Read more

www.sunspot.net:
Chinese nationals held in attempted export of encryption devices. Read more

www.wired.com:
No Need to Alter DMCA -- Yet. Read more

www.nandotimes.com:
U.S. bids to outwit 'Great Firewall of China' web censors. Read more

30 August 2001

New Trojan:
Phoenix II 1.43

Trojan.JS.Offensive Cleaner by nexzus. Read more

www.netcomplett.de:
IDABlocker, CodeRed Log File Blocker. Read more

www.bitland.net:
Taranis, Switch Specific Sniffer. Read more

www.sophos.com:
WM97/Marker-GG is a Word 97 macro virus. Read more

www.securiteam.com:
@Home Network Subject to DHCP Hijacking. Read more

RUS-CERT Advisory
Vulnerabilities in several Apache authentication modules. Read more

Internet Security Systems Security Advisory
Remote Buffer Overflow Vulnerability in HP-UX Line Printer Daemon. Read more

www.securiteam.com:
Kazaa and Morpheus Expose Sensitive Information. Read more

www.securiteam.com:
AOLserver Vulnerable To Host Buffer Overflow. Read more

www.securiteam.com:
TrendMicro OfficeScan Corp Edition Remote File Reading Vulnerability. Read more

www.sfgate.com:
Russian hacker, company indicted. Read more

www.wired.com:
Sklyarov Plea-Bargain Bid Fails. Read more

www.wired.com:
Law Prof Cajoles Dmitry Allies. Read more

www.theregister.co.uk:
Win XP slays buffer overflow bugs. Read more

www.theregister.co.uk:
Internet Explorer 6 - one man's odyssey. Read more

www.newsbytes.com:
Don't Get Mad At SirCam, Get Even. Read more

sunspot.net:
Researchers discover new method of stealth computing. Read more

www.2600.com:
"FREEDOM DOWNTIME" SELECTED FOR WOODSTOCK FILM FESTIVAL. Read more

www.uniontrib.com:
Hackers-activists push their causes using technology. Read more

www.japantimes.co.jp:
Hackers denounce Yasukuni visit. Read more

www.securitywatch.com:
New Zealand expecting a wave of accidental hacking cases. Read more

www.thestar.com:
Prosecutor urges jail for teen hacker Mafiaboy. Read more

timesofindia.indiatimes.com:
Cybercrime hits two-thirds of British firms. Read more

news.cnet.com:
CBI demands action on cybercrime. Read more

www.siliconvalley.com:
Computer viruses topic at S.J. hearing. Read more

abcnews.go.com:
How Vulnerable Are Your Medical Records? Read more

29 August 2001

New Trojans:
NoXcape 2.0

Snid X2 1.2c

***
Another example of the ksh "here document" vulnerability by Larry W. Cashdollar:

Except it is for Netscape 6.01a on Solaris 2.x.  This creates the same
symlink vulnerability as the previous patchadd post.  Except your more
likely to destroy user files rather than system files. 

run-mozilla.sh creates a "here document" in function moz_usage().

#!/bin/sh
---snip--
.
.
.

moz_usage()
{

  cat << EOF

Usage:  ${cmdname} [options] [program]

  options:

-snip-
.
.
. 
EOF

Temp dir listing:

pangea #ls -l /tmp
-rw-r--r--   1 lwc     user        399 Aug 28 08:38 sh10040

Truss output:

1004:   stat64("/tmp/sh10040", 0xFFBEEDD8)              Err#2 ENOENT
1004:   creat64("/tmp/sh10040", 0666)                   = 3
1004:   unlink("/tmp/sh10040")                          = 0


Solution? Use echo or another shell.

***

www.securitywatch.com:
Some Java versions allow cookies to do nasty stuff. Read more

www.securitywatch.com:
SCO Unixes found vulnerable to a buffer overflow. Read more

www.sophos.com:
WM97/CopyMe-A is a Word macro virus. Read more

www.zdnet.com:
McAfee.com's Denial-Of-Service Prevention Efforts Could Fall Short. Read more

www.idgnet.co.nz:
Crimes bill targets hackers, DoS attacks. Read more

www.vnunet.com:
Red alert over virus variant. Read more

www1.chinadaily.com.cn:
Vigilance called for on computer viruses. Read more

www.vnunet.com:
Offensive virus breaks Windows. Read more

news.cnet.com:
Trojan horse goes on the offensive. Read more

europe.cnn.com:
'Offensive' Trojan horse can disable systems. Read more

www.zdnet.com:
Afraid of worms? Get a firewall. Read more

cryptome.org:
U.S. Department of Justice about Dmitry Sklyarov. Read more

www.salon.com:
Russian programmer indicted for cracking e-book security. Read more

www.vancouverprovince.com:
Montreal teenage hacker known as Mafiaboy needs structure, not jail says parents. Read more

www.ecommercetimes.com:
Hacker Breaches Payments Site Webcertificate.com. Read more

www.zdnet.com:
Microsoft releases security tool to protect IIS. Read more

www.nydailynews.com:
Cybercrooks on His Screen. Read more

www.securitywatch.com:
Defaced site blames Slashdot geeks. Read more

www.silicon.com:
How a software bug could land you 10 years in jail. Read more

web.lexis-nexis.com:
Program May Allow Hackers to Gain Data from Internet in Miami Area. Read more

28 August 2001

New Trojans:
Alien Spy 1.0

Dreamscape

Dangerous temp file creation during installation of Netscape 6 by Larry W. Cashdollar
During installation of Netscape 6.01a for Solaris 2.7/8 Sparc, I noticed the file /tmp/admin.3842 was created with mode 644. As you already know if this package is installed by root in multiuser mode a malicious user could use this to overwrite system files etc..
Here is the dangerous code:
# grep tmp ns6install
cat >/tmp/admin.$$ <<EOF
/usr/sbin/pkgrm -n -a /tmp/admin.$$ ${pkg}.* 2>&1
/usr/sbin/pkgadd -n -a /tmp/admin.$$ -d `pwd` $pkg 2>&1
#

www.symantec.com Trojan.JS.Cover is a Trojan that arrives as an .html file. When opened, it displays garbage characters in the Web browser window. Read more

www.itworld.com:
'Offensive' worm spreading worldwide. Read more

Internet Security Systems Security Advisory.
Remote Buffer Overflow Vulnerability in HP-UX Line Printer Daemon. Read more

www.securiteam.com:
BSCW Symlink Vulnerability. Read more

vapid.dhs.org:
An account of Sawmill web log analyzer vulnerability discovery. Read more

gps.sourceforge.net:
Ghost PortScan. Read more

www.securiteam.com:
Hardware Defenses against SYN Flooding. Read more

www.theregister.co.uk:
Defending against SYN-flood DoS attacks. Read more

news.cnet.com:
Code Red the Dracula of worms? Read more

www.securiteam.com:
Sendmail Debugger Vulnerability Leads to Arbitrary Code Execution. Read more

www.securiteam.com:
IIS Lockdown Tool. Read more

www.theinquirer.net:
Hacker controlled Microsoft for seven days. Read more

www.wirelessnewsfactor.com:
Wireless Weekly Weigh-In: Viruses, Trojans and Worms - Oh, My! Read more

it.mycareer.com.au:
Hackers' bonfire of the vanities. Read more

www.ecommercetimes.com:
No Computer Worm is a Good Worm, Experts Warn. Read more

www.theregister.co.uk:
MS bugware blamed for 'inadvertent' hack. Read more

australianit.news.com.au:
Zombies invading homes over cable. Read more

english.peopledaily.com.cn:
Chinese Ministry Reports Situation of Code Red II. Read more

web.lexis-nexis.com:
Hotmail? More like hackmail. Read more

www.wired.com:
Cypherpunk Sentenced to 10 Years. Read more

27 August 2001

New Trojans:
Gift 2.0

RTB 666 1.63

www.securiteam.com:
WinWrapper Professional Remote File Disclosure Vulnerability. Read more

www.securiteam.com:
CBOS Web-based Configuration Utility Vulnerability. Read more

www.sunday-times.co.uk:
Waiting for the killer virus. Read more

www.sfgate.com:
High-speed Net users sitting ducks for hackers. Read more

investor.cnet.com:
Security firm discounts password threat. Read more

www.computeruser.com:
Judge: Cable ISP must give customer info to feds. Read more

www.sunday-times.co.uk:
Data-grab hackers steal credit card details in bulk. Read more

www.wirelessnewsfactor.com:
Is Wi-Fi Wearing No Clothes? Read more

www.stuff.co.nz:
Virus dangers need protection. Read more

timesofindia.indiatimes.com:
Afghan Taliban website hacked as Internet outlawed. Read more

www.stuff.co.nz:
NZ anti-hacking legislation: What happens next? Read more

www.siliconvalley.com:
Researchers say PDAs prone to hacker attacks. Read more

www.theinquirer.net:
WinXP professional hack starts. Read more

web.lexis-nexis.com:
Microsoft releases XP to computer makers. Read more

www.first.org:
14th Annual Computer Security Incident Handling Conference. Read more

www.nai.com:
McAfee Teams With Industry Leaders to Create End-to-End Solution For DDoS Attacks. Read more

www.nsa.gov:
Security-Enhanced Linux. Read more

26 August 2001

New Trojan:
NoXcape 1.1

Network Error

www.securiteam.com:
Hotmail LINK CSS Vulnerability (New Strain). Read more

www.securiteam.com:
Multiple Vulnerabilities in GroupWise Webaccess and NetWare Web Server. Read more

news.cnet.com:
Security firm discounts password threat. Read more

www.nzherald.co.nz:
Teaching job for hacker. Read more

www.zdnet.com:
Carnivore to add wireless to its menu? Read more

news.cnet.com:
New worm poses as helpful program. Read more

news.cnet.com:
Hacker cracks site, halts trade. Read more

www.chron.com:
Program now on Internet lets saavy hackers tap into wireless networks. Read more

jumpfn.123jump.com:
BUMBLING HACKER. Read more

web.lexis-nexis.com:
Microsoft releases XP to computer makers. Read more

25 August 2001

TriRat 1.0

Phoenix II 1.42

Stealth Proxy

www.pcworld.com:
'Offensive' Trojan Can Disable PCs. Read more

www.symantec.com:
VBS.Netlog.I. Read more

www.securiteam.com:
Forcing ICQ to Add Arbitrary Users to the Friends List. Read more

www.securiteam.com:
AVTronics InetServer DoS and Buffer Overflow Vulnerabilities. Read more

www.securiteam.com:
Adobe Acrobat Creates World Writable ~/AdobeFnt.lst Files. Read more

www.ciac.org:
Sendmail Debugger Arbitrary Code Execution Vulnerability. Read more

www.securitywatch.com:
Microsoft Outlook Web Access vulnerable to a DoS. Read more

www.techtv.com:
Kevin Mitnick Interview Transcript, Part 1. Read more

www.usatoday.com:
When good 'worms' go bad. Read more

www.securitywatch.com:
Weary alldas weathers more DDoS attacks. Read more

www.washtech.com:
FBI's 'Carnivore' Might Target Wireless Text. Read more

www.newsbytes.com:
FBI Could Tap Into Wireless E-Mail. Read more

news.bbc.co.uk:
Talks over fate of Russian programmer. Read more

www.computerworld.com:
Microsoft MCSE training faulted. Read more

dailynews.yahoo.com:
Hacker Cracks Site, Forces Trade Halt. Read more

www.canoe.ca:
Hacker invades MuchMusic's Web site. Read more

www.wired.com:
Paintball Co. Smeared by Hoax. Read more

www.wired.com:
India Hackers Face More Charges. Read more

www.theregister.co.uk:
Inept would-be hacker gets three years in jail. Read more

news.bbc.co.uk:
E-mail snoopers 'risk legal action'. Read more

24 August 2001

Spark

Latinus 1.5 source

www.symantec.com:
Trojan.Zeraf is a destructive Trojan horse that deletes critical system files. Read more

www.symantec.com:
Trojan.JS.Clid.gen. Read more

www.symantec.com:
VBS.Thea.A. Read more

www.securiteam.com:
The Perfect Read Receipt - Using HTML Tagging to Verify E-mail Reading ("Web Bugs"). Read more

www.securiteam.com:
BadBlue File Viewing Vulnerability. Read more

www.securiteam.com:
IrDA Semi-Remote Vulnerability. Read more

www.openssl.org:
WEAKNESS OF THE OpenSSL PRNG IN VERSIONS UP TO OpenSSL 0.9.6a. Read more

www.securitywatch.com:
Badblue leaks your script-files. Read more

www.securitywatch.com:
BSCW has a symlink-flaw that allows reading any file. Read more

www.securitywatch.com:
IRIX Telnet vulnerable to remote root compromise. Read more

www.securitywatch.com:
FreeBSD procfs file system under attack. Read more

www.gcn.com:
Protocol used for 802.11b standard is not strong enough for information at �official use only� security status, expert says . Read more

www.securitywatch.com:
ACM and Linux Magazine hacked. Read more

www.securitywatch.com:
The future of antivirus: computer programs that mimic white blood cells. Read more

news.cnet.com:
HP to sell secure version of Linux. Read more

www.theaustralian.news.com.au:
Banks face cybercrime threat: expert. Read more

www.computeruser.com:
Oklahoma paper distances itself from hacker flap. Read more

news.cnet.com:
Hacker program threatens wireless security. Read more

23 August 2001

Phoenix II 1.41

HoneyPot 1.1

GoboWrap 1.0b

www.ntsecurity.net:
Code Red Worm Variant on the Loose. Read more

www.securitywatch.com:
Hackers can kill processes through LPPlus Printing System. Read more

www.securitywatch.com:
Linux Netfilter DoS-vulnerability. Read more

www.securitywatch.com:
Dynu FTPD-server harbors a directory traversal flaw. Read more

www.securitywatch.com:
Hackers can reboot Win2000 by infrared. Read more

www.nikkeibp.asiabiztech.com:
IE's Security Hole Disables Windows Operation After Accessing Web Sites. Read more

www.ecommercetimes.com:
Are Viruses, Trojans and Worms on Wireless Horizon? Read more

investor.cnet.com:
U.S., Aussie security centers sign pact. Read more

www.salon.com:
The trouble with Hotmail. Read more

www.nzherald.co.nz:
New e-mail security danger follows spy file revelations. Read more

news.cnet.com:
Microsoft plugs Hotmail security hole. Read more

www.vnunet.com:
Researchers develop SSH cracker. Read more

paris.cs.berkeley.edu:
A white paper, entitled Timing Analysis of Keystrokes and Timing Attacks on SSH. (pdf)Download

hongkong1.cnet.com:
Russian programmer thanks supporters. Read more

www.silicon.com:
Hacker defaces World Cup site. Read more

www.nandotimes.com:
Hackers attack Japan's World Cup Web site. Read more

www.japantimes.co.jp:
Hacked auction site causes headaches. Read more

www.zdnet.com:
Hack insurer adds Microsoft surcharge. Read more

www.ocregister.com:
Learning to think like a hacker. Read more

www.pc-radio.com:
Statement in response to an article about me by Thomas C. Greene. Read more

news.bbc.co.uk:
Warning over wiretaps. Read more

22 August 2001

Bless 0.01

www.bitland.net:
Taranis is a tool to demonstrate the necessity of strong cryptography and authentication on local ethernet networks. Taranis will steal username / password pairs by redirecting traffic intended for the POP or IMAP server to the host running Taranis. Once this is achieved, the login information is saved to a file. Read more

gps.sourceforge.net:
GPS is a port scanner and a firewall rules disclosure (FWRD) tool, which uses IP spoofing, ARP poisoning and some other stratagems in order to perform a stealth and untraceble information collect. Read more

Microsoft Security Bulletin MS01-046
Access Violation in Windows 2000 IrDA Driver Can Cause System to Restart. Read more

www.securiteam.com:
Viewing Someone's Hotmail Account in Three Easy Steps. Read more

www.securiteam.com:
SlimFTPd Directory Traversal. Read more

www.securiteam.com:
Cerberus FTP Server Directory Traversal. Read more

www.securiteam.com:
Dynu FTP Server Directory Traversal Vulnerability. Read more

www.symantec.com:
Trojan.Offensive is a Trojan horse that comes in the form of an .html file. (It could also be a Web page on the Internet). When opened, the page displays one button that contains the text "Start." Read more

www.theregister.co.uk:
Virus poses as antivirus utility. Read more

www.securiteam.com:
Microsoft Releases Two Security Tools. Read more

www.ottawacitizen.com:
Hackers post code opening access to Hotmail content. Read more

home.kyodo.co.jp:
Computer problems caused by hacked Internet site. Read more

www.theregister.co.uk:
Is prosecuting hackers worth the bother? Read more

www.theregister.co.uk:
Mitnick joins Vegas hack investigation. Read more

www.zdnet.com:
IT workers aren't the Net police. Read more

www.individual.com:
FIBA Bankers Bring Red Worm Specialist to South Florida. Read more

computerworld.com:
Security vendors ally to study denial-of-service attacks. Read more

www.wired.com:
Wireless Networks in Big Trouble. Read more

www.computerworld.com:
Copyright law chills IT security research. Read more

21 August 2001

How to make a Dropper in C, ASM, and Delphi. Read more

How to code sockets under windows using asm. Read more

www.digizen-security.com:
Achilles is a tool designed for testing the security of web applications. Achilles is a proxy server, which acts as a man-in-the-middle during an HTTP session. A typical HTTP proxy will relay packets to and from a client browser and a web server. Achilles will intercept an HTTP session�s data in either direction and give the user the ability to alter the data before transmission. For example, during a normal HTTP SSL connection a typical proxy will relay the session between the server and the client and allow the two end nodes to negotiate SSL. In contrast, when in intercept mode, Achilles will pretend to be the server and negotiate two SSL sessions, one with the client browser and another with the web server. As data is transmitted between the two nodes, Achilles decrypts the data and gives the user the ability to alter and/or log the data in clear text before transmission. Read more

personal.ie.cuhk.edu.hk:
twhttpd is developed in a scenes to help the protection web servers (and web browser clients) by checking the HTTP protocol header data. The design has already put most modern web base attacks into consideration and hence can protect most web servers without very in-depth knowledge about the attacking techniques. Read more

airsnort.sourceforge.net:
AirSnort is a wireless LAN (WLAN) tool which recovers encryption keys. AirSnort operates by passively monitoring transmissions, computing the encryption key when enough packets have been gathered. Read more

rootcore.can-host.com:
The Bulgarian and Soviet Virus Factories. Read more

www.hal2001.org:
Pictures from HAL. Read more

www.vnunet.com:
Hackers hit Hotmail hole. Read more

www.newsbytes.com:
` Hotmail Security Hole Too Tiny For E-mail Spies - MSN. Read more

www.silicon.com:
30 seconds of virus hell that will change the web forever. Read more

www.securitywatch.com:
Worm researchers foresee infection in a Flash. Read more

www.ecommercetimes.com:
Will the Internet Ever Be Safe from Viruses? Read more

www.informationweek.com:
Is Windows XP's 'Product Activation' A Privacy Risk? Read more

www.newsbytes.com:
Russian Man Indicted On ISP Hacking Charges. Read more

www.zdnet.com:
Alliance takes on DDoS. Read more

www.theregister.co.uk:
FBI blows Code Red all-clear. Read more

www.computerworld.com:
Copyright law chills IT security research. Read more

20 August 2001

NT RootKit 0.40

www.securiteam.com:
HTML Form Protocol Attack. Read more

www.securiteam.com:
Cross Site Scripting and Memory Leak Vulnerabilities in ISA Server. Read more

www.securiteam.com:
Microsoft IIS ssinc.dll Buffer Overflow Vulnerability. Read more

www.securiteam.com:
glFTPD Vulnerable To a DoS Attack (* Attack). Read more

grc.com:
Windows XP Home Edition Must be Made More Secure. Read more

www.theregister.co.uk:
Hacking Hotmail made easy. Read more

www.securitywatch.com:
Microsoft: um, the XP firewall isn�t that great. Read more

www.vibrantmedia.com:
Novell Tight-Lipped About Security Patch Details. Read more

www.theregister.co.uk:
We won't tell you what this patch does, but apply it NOW. Read more

news.globetechnology.com:
Giving hackers a good name. Read more

linuxtoday.com:
Washington Post: Home Users Not Immune To Worms. Read more

linuxtoday.com:
O'Reilly Network: Apache::CodeRed. Read more

linuxtoday.com:
LinuxPR: Apache CodeRed Countermeasures with PHP: codeRedKiller! Read more

www.smh.com.au:
Inside the control room of a war on viruses. Read more

www.sfgate.com:
Positive results of Code Red. Read more

www.japantimes.co.jp:
Virus scare downs ministry computer. Read more

timesofindia.indiatimes.com:
White House fears another Code Red attack. Read more

news.independent.co.uk:
Now it's drive-by hacking. Read more

www.chron.com:
Student 'soldiers' help feds fight cyberterrorism. Read more

www.smh.com.au:
Hacker squad get the go-ahead on MPs' files. Read more

web.lexis-nexis.com:
Throwing The E-Book At Him;A programmer is prosecuted for enabling users to break the security in reader software. Read more

19 August 2001

Theef 1.31

cryptome.org:
Four Simple Cryptographic Attacks on HDCP. Read more

Code Red II disassembly

www.windowsitsecurity.com:
Multiple Vulnerabilities in Microsoft IIS 5.0 and 4.0. Read more

www.windowsitsecurity.com:
Multiple Vulnerabilities in Microsoft ISA Server 2000. Read more

www.windowsitsecurity.com:
Denial of Service Condition in Microsoft NNTP Service for Windows 2000/NT. Read more

www.securiteam.com:
Exploit Code Released For the Apache Server Address Disclosure Vulnerability. Read more

linuxtoday.com:
Caldera Security Advisory: security issues in ucd-snmp. Read more

computerworld.com:
Microsoft patches ActiveX hole in Outlook. Read more

maccentral.macworld.com:
The Code Red worm can cause minor Mac problems. Read more

europe.cnn.com:
Persistent viruses sound industry alarm. Read more

cryptome.org:
Joseph Burton is lead attorney for Dmitry Sklyarov. Read more

www.timesofindia.com:
Messenger is vulnerable to newer viruses. Read more

www.korealink.co.kr:
Ahnlab Wins Malaysian Online Security Education Contract. Read more

web.lexis-nexis.com:
High-tech snoops. Read more

18 August 2001

Black Angel 1.3

www.symantec.com:
Backdoor.Kaitex is a backdoor Trojan that connects to an IRC server using port 6667. Read more

lwn.net:
remotely exploitable memory overwrite vulnerability in the fetchmail-ssl package.. Read more

www.badguys.org:
Viruses in the Information Age. Read more

www.howstuffworks.com:
How Computer Viruses and Worms Work. Read more

www.pcworld.com:
Code Red Worm Crawls Again. Read more

www.msnbc.com:
Microsoft bundles patches to fix holes old, new in Internet Information Server. Read more

www.wired.com:
Does XP Have Firewall or Not? Read more

www.nandotimes.com:
Microsoft withdraws Windows XP security claim. Read more

www.siliconvalley.com:
Microsoft withdraws claim about new product's protection against viruses, hackers. Read more

www.theregister.co.uk:
Newsbytes hack seeks to embarrass EL Reg. Read more

www.sciam.com:
Surveillance by Design
WILL A NEW CYBERLAW BYPASS THE U.S. CONSTITUTION? Read more

www.newsbytes.com:
Netscape Sees Red As FBI Warns Of New Attack. Read more

news.cnet.com:
FBI: Early efforts nip Code Red worm. Read more

www.theregister.co.uk:
SecurityPortal flounders on titsup.com atoll. Read more

web.lexis-nexis.com:
CODE RED VIRUS NO BIG THREAT DESPITE REPORTS. Read more

www.newsbytes.com:
Security Software Spies On Workers. Read more

17 August 2001

Phoenix II 1.28

Microsoft Security Bulletin MS01-038
Outlook View Control Exposes Unsafe Functionality. Read more

Microsoft Security Bulletin MS01-045
ISA Server H.323 Gatekeeper Service Contains Memory Leak. Read more

www.securiteam.com:
NetCode NC Book Remote Command Execution Vulnerability. Read more

linuxtoday.com:
EnGarde Secure Linux Security Advisory: fetchmail-ssl memory overwrite vulnerability. Read more

www.symantec.com:
New worm likes NetBIOS. Read more

www.research.ibm.com:
The Generic Virus Writer. Read more

www.research.ibm.com:
The Generic Virus Writer II. Read more

www.boston.com:
Silence of a code cracker. Read more

www.ecommercetimes.com:
Researchers Reveal How They Bypassed Digital Watermarks. Read more

66.111.65.118:
50 hackers to take part in server-cracking contest. Read more

www.wired.com:
Dutch Cryptographer Cries Foul. Read more

www.thedigest.com:
Verizon Hit by Virus. Read more

www.wired.com:
SirCam: The Worm That Won't Die. Read more

www.theregister.co.uk:
Barry Fox promotes virus abuse on radio. Read more

web.lexis-nexis.com:
Hacker sneaks into Visa credit-card site; might have compromised data. Read more

news.bbc.co.uk:
Student spotted 'Trojan horse' hacker. Read more

16 August 2001

MoonPie 2.5 beta

www.remote.org:
Paper: HTML Form Protocol Attack.
This paper describes how some HTML browsers can be tricked through the use of HTML forms into sending more or less arbitrary data to any TCP port. This can be used to send commands to servers using ASCII based protocols like SMTP, NNTP, POP3, IMAP, IRC, and others. By sending HTML email to unsuspecting users or using a trojan HTML page, an attacker might be able to send mail or post Usenet News through servers normally not accessible to him. Read more

www.macfergus.com:
Censorship in action: why I don't publish my HDCP results. Read more

Microsoft Security Bulletin MS01-044
Cumulative Patch for IIS. Read more

CERT Advisory CA-2001-24
Vulnerability in OpenView and NetView. Read more

www.technetva.com:
HTTPort allows you to bypass an HTTP proxy, which is blocking you from the Internet. With HTTPort you may use the following software (just a sample list, not limited to !) from behind an HTTP proxy: e-mail, IRC, ICQ, news, FTP, AIM, any SOCKS capable software, etc. etc. Read more

www.bio.cam.ac.uk:
Frequently Asked Questions on Virus-L/comp.virus. Read more

www.cisco.com:
Cisco Systems Advises Industry On Security Against Possible Hacker Attacks. Read more

www.securiteam.com:
Various Problems in Baltimore's WEBsweeper Script Filtering. Read more

www.securiteam.com:
pcAnywhere Vulnerable to a DoS (Multiple Connections). Read more

www.securiteam.com:
NNTP Service in Windows Contains Memory Leak. Read more

www.securiteam.com:
TrollFTPD Security Vulnerability Leads to Root Compromise. Read more

www.securiteam.com:
Solaris Xlock Heap Overflow Vulnerability (Exploit, XUSERFILESEARCHPATH). Read more

www.securiteam.com:
SIX-Web board "Show Files" Vulnerability. Read more

www.securitywatch.com:
Long URLs incite overflow in IE6. Read more

www.newsbytes.com:
CyberCash Server Hit By Code Red II. Read more

www.theregister.co.uk:
MS patch-scanner for Win-NT, 2K, IIS, SQL. Read more

www.ecommercetimes.com:
Microsoft Fields New Complaints on Server, XP Security. Read more

www.crn.com:
Microsoft Releases New Security Tools. Read more

news.cnet.com:
Privacy group attacks Windows XP, Passport. Read more

www.telegraph.co.uk:
Hackers' convention gathers to goggle at bits and PCs. Read more

www.newsbytes.com:
Digital Copyright Act Muffles Dutch Crypto Scientist. Read more

europe.cnn.com:
Man arrested in Britain in hacking case. Read more

www.pcadvisor.co.uk:
Brit to be charged with worm abuse. Read more

news.cnet.com:
Viruses wiggle into IM chats. Read more

web.lexis-nexis.com:
Hacker Highway. Read more

www.theregister.co.uk:
Mystery of crashing HP printers solved? Read more

www.smh.com.au:
Recall Parliament for hackergate, Carr told. Read more

web.lexis-nexis.com:
Going underground to fight cyber crime;Viruses are one thing but how do you fight weapons that 'fry' computers? Read more

www.silicon.com:
Web firms could be bugging you. Read more

15 August 2001

Moses 1.1.0d

Microsoft Security Bulletin MS01-043
NNTP Service in Windows NT 4.0 and Windows 2000 Contains Memory Leak. Read more

www.symantec.com:
W32.HLLW.Hai is a worm written in C++. Read more

www.silicondefense.com:
Code Red Analysis pages. Read more

www.businessweek.com:
Video crypto standard allegedly cracked. Read more

www.theregister.co.uk:
MS patch-scanner for Win-NT, 2K, IIS, SQL. Read more

www.computerworld.com:
Lack of focus on security in professional training seen as factor in spread of viruses. Read more

news.zdnet.co.uk:
Worms find fertile ground in IM. Read more

news.bbc.co.uk:
Briton charged over computer worm. Read more

www.reuters.com:
FBI Announces Arrest of 24-Year-Old British Hacker. Read more

www.commentwire.com:
Microsoft: Code Red brings XP security fears. Read more

computerworld.com:
New Code Red Worm Slows Systems With Scans. Read more

www.computeruser.com:
Qwest gaining on Code Red worm. Read more

www.theregister.co.uk:
IT giants whacked by Code Red. Read more

www.forbes.com:
Code Red II virus attacks HK government servers. Read more

web.lexis-nexis.com:
Code Red Worm Withers But Warnings Remain. Read more

www.computeruser.com:
Hackers break into court records site. Read more

www.securitywatch.com:
1,000 web sites sabotaged in one of the biggest ever acts of defacement. Read more

www.wired.com:
As Ethicists, They Don't Hack It. Read more

securitytracker.com:
The Matrix Screen Saver for Windows Lets Physically Local Users Bypass the Password Mechanism and Access the System. Read more

www.smh.com.au:
MPs' House rules frustrate police hunt for hackers. Read more

www.computerworld.com:
McAfee's Web services patent raises questions. Read more

www.idg.net:
So much for secure e-mail. Read more

www.silicon.com:
Big Brother is watching you surf. Read more

14 August 2001

NetDevil 1.0

www.cs.berkeley.edu:
A Warhol Worm: An Internet plague in 15 minutes! Read more

www.securiteam.com:
Sambar Telnet Proxy Multiple Vulnerabilities (DoS, Buffer Overflow). Read more

www.securiteam.com:
Abusing Poor Programming Techniques in Web Server Scripts (SQL Statements). Read more

www.edvicesecurity.com:
Various problems in Baltimore's WEBSweeper Script filtering. Read more

www.edvicesecurity.com:
Various problems in Trend Micro AppletTrap Script filtering. Read more

linuxtoday.com:
Caldera Security Advisory: Linux - Telnet AYT remote exploit. Read more

linuxtoday.com:
Conectiva Linux Security Announcement: windowmaker. Read more

www.ntsecurity.net:
Code Red Reveals New Security Hole in IIS. Read more

www.hindustantimes.com:
Crack the code. Read more

www.computing.vnunet.com:
Hackers at Large 'on best behaviour'. Read more

www.computerworld.com:
Hackers hit Los Alamos public information site. Read more

www.securitywatch.com:
Did Japan attack New Zealand research institute's computers? Read more

www.newsbytes.com:
Hackers Break Into Court Records Site. Read more

www.securitywatch.com:
Microsoft retracts assurance over Hotmail's virus defense. Read more

news.ft.com:
Russian hacker case to test US cyber law enforcement. Read more

news.ft.com:
High-tech credit card scam spreads. Read more

www.abc.net.au:
Claims of stonewalling in hacking investigations denied. Read more

www.smh.com.au:
MPs' House rules frustrate police hunt for hackers. Read more

www.wired.com:
Hackers: Wake Up and Be Useful. Read more

news.bbc.co.uk:
Hackers make house calls. Read more

www.sfgate.com:
Hacker remembered as computer age hero Wau Holland fought to free information. Read more

www.thepost.kiev.ua:
Report: Ukrainian parliamentary mail may contain Sircam virus. Read more

industry.java.sun.com:
Emprise, Summa And FBI to Hold Computer Security Seminar 'Threat from Within' Addresses Internal Security Concerns. Read more

www.ottawacitizen.com:
Privacy Ontheline
Every click you make Every file you take I'll be watching you. Read more

13 August 2001

Titanic

packetstormsecurity.org:
Denial of service on FreeBSD using fragmented IPv4 packets. Read more

www.securiteam.com:
GetAccess Authentication Program Gives Access to All. Read more

www.securitytracker.com:
phpBB Bulletin Board bb_profile.php Bug Lets Remote Users Obtain Administrative Access to the Bulletin Board. Read more

www.securiteam.com:
Vulnerability in 'otrcrep' in Oracle ('a' Parameter). Read more

www.securitywatch.com:
Solaris Xlock harbors buffer overflow. Read more

www.thestandard.com:
Smarter Worms Are On Their Way. Read more

news.independent.co.uk:
Chris Gulker: What if we could get the Code Red worm to turn? Read more

iwsun4.infoworld.com:
Persistent viruses sound industry alarm. Read more

hongkong1.cnet.com:
US doesn't buy Korean Code Red III claim. Read more

news.24.com:
No 'Code Red III' - experts. Read more

web.lexis-nexis.com:
For home users, Code Red isn't worth a panic attack. Read more

www.latimes.com:
Power Grid Vulnerable to Hackers. Read more

www.ctnow.com:
Security Experts Warn on Wireless. Read more

it.mycareer.com.au:
NSW pollies stonewalling hacking probe: report Hacking. Read more

www.norwaypost.no:
National plan for e-mail protection. Read more

eastbay.bcentral.com:
Hacker's arrest incites copyright debate. Read more

www.thetimes.co.uk:
Privacy dispute threatens XP launch. Read more

12 August 2001

Algus 6.0

acidlab.sourceforge.net:
Analysis Console for Intrusion Databases. Read more

www.computerworld.com:
Security experts question release of Code Red worm's exploit data. Read more

www.newsbytes.com:
Security Firm Blamed For Code Red Costs. Read more

Full details of the IIS buffer overflow by eEye Digital Security. -CodeRedII Worm Analysis

www.securiteam.com:
SurgeFTP Administrative Account Can be Easily Brute Forced. Read more

www.securiteam.com:
Security Vulnerability found in /usr/bin/locate (Exploit Code). Read more

www.securiteam.com:
Vulnerabilities in Cisco SN 5420 Storage Routers. Read more

www.securiteam.com:
Local Security Vulnerability in 'dbsnmp' Binary (ORACLE_HOME). Read more

www.securiteam.com:
SNMPd Log Files Buffer Overflow Problem. Read more

linuxtoday.com:
Debian Security Advisory: 3 security problems in imp. Read more

www.securitywatch.com:
Buffer overflow affects Netkit in.telnetd 0.17 and lower, too. Read more

www.ananova.com:
Jail warning to visitors at hackers' conference. Read more

www.newsbytes.com:
Global Hacker Event Not Safe For Code Red Creator. Read more

www.hal2001.org:
HAL 2001. Read more

www.net-security.org:
Special coverage: Hackers At Large 2001. Read more

braddock.com:
How to anonymously get root access on a quarter million machines overnight. Read more

www.theregister.co.uk:
Hacking IIS -- how sweet it is. Read more

linuxtoday.com:
MachineOfTheMonth: Hacking the hacker. Read more

www.thawte.com:
Learn about SSL encryption on your Apache Server! Read more

linuxtoday.com:
Two on PGP: August keyanalyze Report Released, FBI ordered to reveal PC snooping technique. Read more

www.securitywatch.com:
New FBI chief accused of lying over claims he knew nothing of key-logging. Read more

www.reuters.com:
Experts Cast Doubt on 3rd Version of Code Red Virus. Read more

www.computeruser.com:
Code Red III alert in Korea may be false alarm - expert. Read more

www.theregister.co.uk:
Japan arrests woman for email snooping. Read more

news.independent.co.uk:
Houdini of the hackers lets on about how he duped the hi-tech world. Read more

11 August 2001

Dark FTP 1.5 Linux

www.net-security.org:
Special coverage: Hackers At Large 2001. Read more

download.insecure.org:
Nmap 2.54BETA29 released. Download

www.symantec.com:
Trojan.VirtualRoot is a Trojan horse program that is dropped by the CodeRed II worm. Read more

xforce.iss.ne:
Internet Security Systems Security Alert Summary. Read more

www.securitywatch.com:
Solaris holds xlock heap overflow. Read more

www.securitywatch.com:
Prestige ADSL Router suffers less-than-prestigious security. Read more

www.idg.net:
Researchers break wireless LAN encryption algorithm. Read more

www.zdnet.com:
Data guardians swamped by hacking blitz. Read more

www.securitywatch.com:
FBI says Code Red has hallmarks of a professional job. Read more

www.nandotimes.com:
Code Red II worst virus ever to hit China. Read more

abcnews.go.com:
South Korea Hit by New Code Red Worm. Read more

www.ireland.com:
Korea estimates 43,000 Code Red II attacks. Read more

www.securitywatch.com:
Associated Press joins list of Code Red II victims. Read more

www.nst.com.my:
Centre detects 2,503 computer hacking cases since 1997. Read more

www.zdnet.com:
Net worm picks up speed in China but infections low. Read more

www.securitywatch.com:
World of Hell advertises world of harmony. Read more

www.chicagotribune.com:
Web site hacker is sentenced to 6-month term. Read more

news.cnet.com:
IE 6 central to Passport privacy boost. Read more

www.theregister.co.uk:
The Code Red hype Hall of Shame. Read more

www.newsbytes.com:
Deface Road Runner, Save the Whales? Read more

www.securitywatch.com:
Studios hire Brit to solve Hollywood horror hacking. Read more

www.wired.com:
Remembering a Hacker's Hacker. Read more

10 August 2001

MoonPie 4.0 beta

www.symantec.com:
VBS.AutoExec.Trojan is a simple Visual Basic script that modifies the C:\Autoexec.bat file. Read more

www.symantec.com:
VBS.Millennium is a simple Visual Basic script worm that spreads using mIRC. Read more

www.symantec.com:
W32.Annoying.Worm. Read more

www.securiteam.com:
Microsoft Passport Account Hijacking (Hacking Hotmail and more). Read more

www.securitywatch.com:
Windows Media Player susceptible to crash. Read more

www.securitywatch.com:
IIS patch + URL redirection = crashing. Read more

www.treachery.net:
EARLY BIRD -- A realtime Code Red attempt reporting utility. Read more

www.pcworld.com:
Microsoft Sees Red: Worm Infects Its Own Servers. Read more

computerworld.com:
Microsoft fails to patch servers, hit by Code Red. Read more

www.newsbytes.com:
Microsoft's Hotmail Is Red Hot From Worm. Read more

www.netimperative.com:
Hotmail hit as MSN on Red alert. Read more

finance.individual.com:
Microsoft Hotmail servers invaded by Code Red worm. Read more

www.lasvegassun.com:
Code Red II computer worm spreads in nation. Read more

www.washtech.com:
Worm Sneaks Up on Firms Urging the Public to Download Fix. Read more

www.ecommercetimes.com:
Code Red Virus 'Most Expensive in History of Internet'. Read more

europe.cnn.com:
'Code Red' impact felt at major companies. Read more

DJ Code Red Worm Spreads, Affects AP, Qwest, Microsoft. Read more

www.dawn.com:
Code Red worm to cost US $2bn. Read more

content.techweb.com:
WORM OFFERS VALUABLE LESSON -- 'Code Red' attack could help heighten security awareness. Read more

www.chron.com:
Code Red II worm disrupts AP services. Read more

www.globeandmail.ca:
AT&T blocks residential Web sites. Read more

europe.cnn.com:
New virus spreads using Acrobat files. Read more

www.news24.co.za:
Virus help a click away. Read more

www.informationweek.com:
Not Everything Is Peachy With PDFs. Read more

www.wired.com:
The Hunt for the Worm Writers. Read more

www.ecommercetimes.com:
Virus Detectives Face Daunting Challenge. Read more

web.lexis-nexis.com:
FBI doubts amateurs are behind Code Red. Read more

www.smh.com.au:
Hunt reveals hacking tools in MP's computer. Read more

www.newsfactor.com:
Troubled Dot-Coms May Expose Confidential Client Data. Read more

www.smh.com.au:
Staff kept suspicious software under wraps. Read more

chicagotribune.com:
Web site hacker is sentenced to 6-month term. Read more

computerworld.com:
New wireless LAN vulnerabilities uncovered. Read more

www.rsasecurity.com:
RSA Security Unveils Cryptographic Software for Secure Cable Broadband Internet Access. Read more

www.bernama.co:
2,503 Cases Of Breach Of Computer Systems Reported. Read more

news.bbc.co.uk:
Hollywood hits back at hackers. Read more

www.ananova.com:
US judges to force cyber snooping issue. Read more

09 August 2001

Simple Trojan 1.0

www.symantec.com:
VBS.Natas is a Visual Basic Script (VBS) virus that overwrites all files that are in the same folder as the virus. Read more

www.symantec.com:
VBS.Noon. Read more

www.symantec.com:
Trojan.Bat.Live4 is a Trojan horse. It attempts to delete system files, files on drive A, and .doc files that are in the C:\My Documents folder. Read more

www.securiteam.com:
Multiple Vulnerabilities in Avaya Argent Office. Read more

www.securiteam.com:
Remote Vulnerabilities in Macromedia ColdFusion Example Applications. Read more

www.securiteam.com:
phpNuke Vulnerable to Multiple Security Holes (Administrative Privileges, DoS). Read more

english.peopledaily.com.cn:
'Red Code II' Lands in China, Dutch Hackers Claim Bug Intriguer. Read more

www.reuters.com:
Net Worm Picks Up Speed in China but Infections Low. Read more

www.timesofindia.com:
Code Red II worms through Japanese systems. Read more

afr.com:
Worm hits Qwest, Microsoft Hotmail, AP. Read more

www.ananova.com:
Microsoft's Hotmail is victim of Code Red worm. Read more

www.abc.net.au:
Brazilian Govt computers attacked by 'Code Red' worm. Read more

news.cnet.com:
Worms prompt AT&T to unplug customer sites. Read more

www.netsurf.com:
Mutated Code Red II Worm. Read more

www.idg.net:
Damage from Code Red worms continuing to add up. Read more

it.mycareer.com.au:
How the Worm turned with hype from anti-virus software companies. Read more

www.belfasttelegraph.co.uk:
Hacking worm has ability to cause havoc. Read more

news.zdnet.co.uk:
Hackers dig in for Euro festival. Read more

www2.linuxjournal.com:
Thought Crimes, Databases, Kernel Hacking and Other News from the O'Reilly Open Source Conference. Read more

www.computerworld.com:
New virus developed that spreads using Acrobat files. Read more

seattletimes.nwsource.com:
Microsoft appeals case it once said was a victory. Read more

news.bbc.co.uk:
FBI ordered to reveal bugging trick. Read more

www.bergen.com:
Judge wants explanation of computer bug system. Read more

news.zdnet.co.uk:
Hackers not so funny off the silver screen. Read more

news.zdnet.co.uk:
Schoolboy's book on ethical hacking an online hit. Read more

www.wired.com:
Judges: Don't Monitor Our PCs. Read more

08 August 2001

Moses 1.1.0 c by Psyon

michael.toren.net:
Tcptraceroute is a traceroute implementation using TCP packets. Read more

timesofindia.indiatimes.com:
Dutch hackers claim authorship of Code Red II. Read more

www.securityfocus.com:
Chasing the Wind, Part Nine: Smoke and Mirrors. Read more

www.abc.net.au:
Code Red virus version claimed by Dutch hackers. Read more

linuxtoday.com:
Trojan in Aide Distribution at ftp.linux.hr. Read more

news.cnet.com:
New virus travels in PDF files. Read more

www.net-security.org:
OUTLOOK.PDFWorm. Read more

www.securitywatch.com:
New VBS worm can be smuggled inside PDF file. Read more

www.symantec.com:
VBS.PeachyPDF@mm. Read more

www.symantec.com:
CodeRed.v3. Read more

www.newsbytes.com:
Code Red II Puts The Crunch on Cable Modems. Read more

timesofindia.indiatimes.com:
Code Red II worms its way deeper into the Net. Read more

www.individual.com:
Code Red Copycat Worm Packs A Malicious Punch. Read more

www.newsbytes.com:
Code Red Cuts Off Qwest DSL Service. Read more

www.economictimes.com:
'Code Red II' crashes dinner for Net experts. Read more

www.accessatlanta.com:
More virulent worm infects global servers. Read more

dailynews.yahoo.com:
Meaner Code Red Internet Worm Surfaces in China. Read more

www.newsfactor.com:
Virulent Code Red II Reportedly Hits China. Read more

www.drudgereport.com:
IBM INTERNALS SHOW JAPAN HIT HARD BY 'CODE RED 2'. Read more

www.newsforge.com:
F*** you, Code Red. Read more

it.mycareer.com.au:
Hackers ready for a HAL of a party. Read more

news.cnet.com:
Dutch festival debugs hacker image. Read more

www.viruslist.com:
Detection of a File Virus. Read more

www.miami.com:
Tips for fighting virus at home. Read more

www.viruslist.com:
SirCam Is the Real Red Scare. Read more

www.nikkeibp.asiabiztech.com:
Sircam Computer Virus on the Rise, Japan's IPA Reports. Read more

www.pcworld.com:
AT&T WorldNet Offers to Trap Viruses at Entry. Read more

news.bbc.co.uk:
Russian programmer gets bail. Read more

www.nzherald.co.nz:
Government to patrol cyber-beat. Read more

www.worldnews.com:
FBI Defends Surveillance Operation. Read more

www.denverpost.com:
Privacy and technology. Read more

www.thetimes.co.uk:
Paranoia is The Bunker mentality. Read more

web.lexis-nexis.com:
Hacker Deletes All Data on Tallahassee, Fla., Jewelry Retailer's Web Site. Read more

07 August 2001

23 v0.3 by WOW.

www.sys-security.com:
XProbe, Active Operating System Fingerprinting. Read more

hackingtruths.box.sk:
The Unoffical Guide To Ethical Hacking. Read more

xforce.iss.net:
Internet Security Systems Security Alert
Resurgence of "Code Red" Worm Derivatives. Read more

xforce.iss.net
Multiple Buffer Overflow Vulnerabilities in Raytheon SilentRunner. Read more

www.securiteam.com:
ARPNuke, Windows Network Nuker. Read more

www.securiteam.com:
Security Flaw in Indentix BioLogon Client for Windows. Read more

www.securiteam.com:
Outlook 2000 Rich Text Information Disclosure. Read more

www.securiteam.com:
phpBB Security Hole Leads to Root Compromise. Read more

www.securiteam.com:
Tivoli Management Framework Security Compromise. Read more

www.securiteam.com:
Roxen Vulnerable to URL Decoding Attack. Read more

www.securitywatch.com:
NT4ALL exploit runs roughshod over Windows SP6a. Read more

www.securitynewsportal.com:
Internet Security: a difficult balance between hype and paranoia. Read more

www.idg.net:
Code Red II includes dangerous 'backdoor' Trojan. Read more

www.securitywatch.com:
Code Red honeypot + SMTP logger/alerter. Read more

news.bbc.co.uk:
Code Red 'was never a threat'. Read more

www.computerworld.com:
Security Statistics. Read more

timesofindia.indiatimes.com:
Code Red variants strike more terror. Read more

www.siliconvalley.com:
Net security experts carve up Code Red II worm over dinner. Read more

timesofindia.indiatimes.com:
After Code Red, its Code Red C now. Read more

asia.cnn.com:
New 'Code Red' worm entices Web hijackers. Read more

www.zdnet.com:
New Code Red: Worse than the first? Read more

www.vnunet.com:
Code Red wriggles into version two. Read more

www.smh.com.au:
Now it's a can of worms as Code Red II slides in back door. Read more

www.reuters.com:
Korea Government Computers Hit by Code Red Worm. Read more

www.politechbot.com:
Why the "Code Red" worm is a red herring. Read more

www.time.com:
Why Worms Like Code Red Are Good For You. Read more

www.siliconvalley.com:
Russian programmer released on bail in copyright case. Read more

www.silicon.com:
DefCon hacker free as a bird. Read more

abcnews.go.com:
Russian programmer arrested at hacker convention is freed on $50,000 bail. Read more

www.fcw.com:
FedCIRC plans patch-release system. Read more

www.2600.com:
"FREEDOM DOWNTIME" TO BE SHOWN AT HAL. Read more

web.lexis-nexis.com:
Companies Hacked on Average Six or More Times Per Year. Read more

web.lexis-nexis.com:
Washington Is Unprepared to Fight Cybercrime. Read more

06 August 2001

Mini Oblivion 0.1 by Stan

www.securiteam.com:
Code Red II - New Non-variant Code Red Worm - Analysis. Read more

www.securiteam.com:
Denial of Service Vulnerability in SHOUTcast Server (User Agent, Host). Read more

news.excite.com:
Code Red Foreshadows Evolution of Cyber Threats. Read more

www.chron.com:
More dangerous worm than Code Red detected. Read more

www.newsbytes.com:
Code Red Author Cuts Wide Swath, Leaves No Fingerprints. Read more

www.silicon.com:
Code Red: New variant detected. Read more

www.ireland.com:
Mutant versions of Code Red worm detected. Read more

www.theregister.co.uk:
Son of Code Red is born. Read more

finance.individual.com:
Britain issues alert over new computer worm. Read more

www.nandotimes.com:
New strain of 'Code Red' worm leaves computers vulnerable to hacks. Read more

news.bbc.co.uk:
Nastier new worm threatens internet. Read more

www.wired.com:
Code Red Returns. Read more

www.ananova.com:
New Code Red threat. Read more

www.news24.co.za:
Code Red a grim omen. Read more

www.wired.com:
It's a Dread to Patch Code Red. Read more

www.computeruser.com:
SirCam worm determined to stick around. Read more

www.msnbc.com:
Sircam worm still spreading files. Read more

www.newsbytes.com:
Ukrainian Agents Quiz Site On Sircam Breach . Read more

it.mycareer.com.au:
Hackers hiding behind home PCs. Read more

it.mycareer.com.au:
Hackers ready for a HAL of a party. Read more

freesklyarov.org:
Free Dmitry Sklyarov! Read more

www.computerbuyer.co.uk:
eBook hacker supporters to petition US embassy. Read more

www.smh.com.au:
Politicians' secret files raided by hacker. Read more

www.theadvertiser.news.com.au:
Hacker could bring down Carr Govt: Greens. Read more

it.mycareer.com.au:
Carr calls for hacker to be sacked, charged. Read more

www.abc.net.au:
Inquiries begin into hacking of NSW Opposition's files. Read more

it.mycareer.com.au:
Police to question MP over hacking. Read more

www.lasvegassun.com:
How to Fend Off Internet Viruses. Read more

www.nandotimes.com:
Cuban Communist Party's Web site back up after hacker attack. Read more

www.msnbc.com:
Severe computer security holes reported at Commerce Department. Read more

www.computeruser.com:
Commerce computer security lacking. Read more

www.nandotimes.com:
Rights group claims China restricting freedom on the Web. Read more

05 August 2001

NeuroticKitten 0.1 by aka_katnhat

www.securiteam.com:
SSH Secure Shell 3.0.0 Vulnerability Scanner. Read more

www.securiteam.com:
Poor Security on Default Windows 2000 Server Installation Could Lead to Unauthorized Database Access. Read more

www.securiteam.com:
Netaddress Security Issue Solved (Passwordless Logon). Read more

www.securiteam.com:
Vulnerability Found In 'oracle' Binary. Read more

linuxtoday.com:
SuSE Security Announcement: xmcd (SuSE-SA:2001:025) . Read more

www.sfgate.com:
Security flaw makes wireless networks vulnerable Widely used system hacked with ease. Read more

www.eetimes.com:
Cipher attack delivers heavy blow to WLAN security. Read more

www.worldnews.com:
Internet Brings Dangers New and Old. Read more

www.zdnet.com:
SirCam's worm cocktails pack a wallup. Read more

www.ecommercetimes.com:
Viruses Cause Traffic Spike at Anti-Virus Sites. Read more

www.chron.com:
Hackers beware: Honeynet is on to you and recording every move. Read more

www.sunday-times.co.uk:
Hacking by sacked staff costs US firms billions. Read more

04 August 2001

Remote Hak 0.0.5 Alpha by HaKKa & _Jedi_

hypoclear.cjb.net:
The Linksys "EtherFast 4-Port Cable/DSL Router" is subject to a security flaw in its design. Read more

www.securiteam.com:
Linksys EtherFast Security Vulnerability (Username and Password Disclosure). Read more

www.securiteam.com:
Mathematica License Manager Hostname Spoofing. Read more

www.securityfocus.com:
Building Anna Kournikova: An Analysis of the VBSWG Worm Kit. Read more

www.sophos.com:
W32/Parrot-A is an email-aware worm and companion virus. Read more

www.theregister.co.uk:
Sex starved virus writers go for revenge. Read more

www.securitywatch.com:
Heard the one about the worm�Read more

www.silicon.com:
Techies sing to free jailbird hacker. Read more

news.globetechnology.com:
Hackers under attack over copyrights. Read more

www.usatoday.com:
Top corporate wireless system vulnerable to hackers. Read more

www.guardian.co.uk:
Early birds who catch the email worms. Read more

www.pcworld.com:
Stealth Fighters. Read more

www.guardian.co.uk:
Internet at risk as virus attacks grow. Read more

www.theregister.co.uk:
Hotmail fails to block SirCam worm. Read more

www.securitywatch.com:
SirCam troubles some TrendMicro ISVW users. Read more

www.usatoday.com:
Dangerous 'Sircam' virus keeps spreading. Read more

www.silicon.com:
Virus leaks Ukraine President's documents to press. Read more

www.computerworld.com:
Experts: Most Code Red attacks coming from Asia. Read more

computerworld.com:
Code Red puts Microsoft in hot seat. Read more

timesofindia.indiatimes.com:
Code Red impact may spread beyond US. Read more

www.vancouversun.com:
Code Red worm 'an ugly thing:' U.S. Army. Read more

www.gulf-news.com:
CodeRed begins to hit UAE computers; worst still ahead. Read more

www.ecommercetimes.com:
Code Red Worm Containment Costs Exploding. Read more

web.lexis-nexis.com:
COMPUTER SECURITY Companies Bracing For Code Red, But Is It Tip Of Iceberg? Read more

www.securitywatch.com:
D�j� vu: Pentagon takes down Web sites. Read more

www.thestandard.com:
Up and Down on the Worm Beat. Read more

news.globetechnology.com:
Don't depend on luck for virus evasion. Read more

news.globetechnology.com:
China's digerati proud, boastful. Read more

www.silicon.com:
Virus top ten: SirCam leads the charge. Read more

www.silicon.com:
Virus leaks Ukraine President's documents to press. Read more

www.newsfactor.com:
SirCam Virus Blamed in Leak of Secret Documents. Read more

www.worldnews.com:
Internet Brings Dangers New and Old. Read more

allafrica.com:
Hats Off to the Hackers. Read more

www.smh.com.au:
6,000 attempted hacks a week gets home user a bit annoyed. Read more

www.theregister.co.uk:
South Africa plans hardline Internet snooping legislation. Read more

news.zdnet.co.uk:
Encryption foils Internet child porn prosecutions. Read more

www.lasvegassun.com:
Commerce Computer Security Lacking. Read more

www.theregister.co.uk:
Haxploitation: the complete Reg guide to hackers in film. Read more

www.theregister.co.uk:
Microsoft enlists Psycho Killer to promote WinXP. Read more

03 August 2001

www.securemac.com:
Subseven for Macintosh. Read more

www.securityfriday.com:
PromiScan Ver 0.23 searches for promiscuous nodes on the local net. Read more

winfingerprint.sourceforge.net:
Winfingerprint v0.2.0 - Advanced remote windows OS detection. Current Features: Determine OS using SMB Queries, PDC (Primary Domain Controller), BDC (Backup Domain Controller), NT member server, NT Workstation, SQLServer, Novell Netware Server, Windows for Workgroups, Windows 9X, Enumerate Servers, Enumerate Shares including Administrative ($), Enumerate Global Groups, Enumerate Users, Displays Active Services, Ability to Scan Network Neighborhood, Ability to establish NULL IPC$ session with host, Ability to Query Registry (currently determines Service Pack Level & Applied Hotfixes). Read more

members.bellatlantic.net:
SSH 3.0.0 vulnerability scanner - Scans for BugtraqID. Read more

www.securiteam.com:
InterScan VirusWall Standard and CVP Edition are Unable to Detect SIRCAM (Patch Available). Read more

www.securiteam.com:
Multiple Windows-Based FTP Servers Vulnerable to DoS under Windows 98. Read more

www.securiteam.com:
Linux Kernel IP Masquerading Vulnerability. Read more

www.securiteam.com:
SuSE sdbsearch.cgi Security Weakness. Read more

www.securiteam.com:
KRB5 TelnetD Buffer Overflows. Read more

www.securiteam.com:
Quake 3 Arena Security Vulnerability (CHAR 255, Exploit). Read more

www.stuff.co.nz:
Code Red worm attack blunted. Read more

www.freep.com:
Code Red worm meets its match. Read more

news.bbc.co.uk:
Code Red infections growing. Read more

www.vnunet.com:
Code Red worm gathers pace. Read more

news.cnet.com:
FAQ: The Code Red threat. Read more

news.cnet.com:
Code Red crawls back into action. Read more

www.newsbytes.com:
SirCam Worm Determined To Stick Around. Read more

www.reuters.com:
Sircam Virus Exports Documents, Still Spreading. Read more

news.cnet.com:
SirCam worm still spreading documents. Read more

news.cnet.com:
Report: Worm nabs secret Ukrainian files. Read more

news.cnet.com:
Code Red seen moving beyond U.S. Read more

investor.cnet.com:
Commerce Department vulnerable to hackers. Read more

www.fcw.com:
FBI to play �I spy�. Read more

news.cnet.com:
Appeals court rejects Microsoft, DOJ requests. Read more

news.cnet.com:
Commerce Department vulnerable to hackers. Read more

02 August 2001

Metal Trojan 2.7

www.securiteam.com:
Mathematica License Manager DoS. Read more

www.securiteam.com:
Multiple Remote DoS Vulnerabilities in Microsoft DCE/RPC Daemons. Read more

www.securiteam.com:
1st Choice FTPPro Stores Passwords Insecurely. Read more

www.securiteam.com:
Command Execution Vulnerability in phpMyAdmin. Read more

www.siliconvalley.com:
'Code Red' worm soils Internet. Read more

news.globetechnology.com:
Enemy at the keyboard. Read more

www.iht.com:
'Code Red' Internet Bug Not Chinese, Expert Says. Read more

www.nationalpost.com:
'Malicious' computer bug works on a monthly cycle. Read more

news.zdnet.co.uk:
FBI accused over Code Red virus confusion. Read more

news.bbc.co.uk:
Code Red cost tops $1.2bn. Read more

finance.individual.com:
Code Red Hits Servers, Seen Remaining a Menace. Read more

www.miami.com:
Code Red virus re-emerges. Read more

www.latimes.com:
'Code Red' Alert May Have Averted Disaster. Read more

news.cnet.com:
Microsoft takes heat for Code Red. Read more

www.fcw.com:
Worm carries larger warning. Read more

abcnews.go.com:
�Code Red� Continues Spread, Pentagon Shuts Web Sites. Read more

computerworld.com:
Code Red Aug. 1 relaunch fizzles, for now. Read more

www.siliconvalley.com:
Net security fends off worm attack. Read more

computerworld.com:
Update: Code Red gaining ground, officials say. Read more

news.bbc.co.uk:
Code Red infections growing. Read more

www.newsbytes.com:
Govt. Experts Rally ISPs To Fight Code Red Worm. Read more

news.cnet.com:
Russian hacker supporters ask Adobe to aid in defense. Read more

www.silicon.com:
'Free Dmitri' campaign takes case of hacker to US embassy. Read more

www.businessweek.com:
Revenge of the Downsized Nerds. Read more

www.wired.com:
Senator Targets School Hackers. Read more

www.theregister.co.uk:
Senator's Net-legislation would jail school-kids. Read more

web.lexis-nexis.com:
Europe fights cybercrime. Read more

01 August 2001

RTB 666 1.6

www.securiteam.com:
ZoneAlarm Pro's MailSafe Insecurity. Read more

www.sentry-labs.com:
Security Hole Lets Lycos Run Arbitrary JavaScript. Read more

www.securiteam.com:
Cold Fusion CFRETHROW Exploit. Read more

www.securiteam.com:
Security Hole Found in PHPLib prepend.php3. Read more

www.2600.com:
SKLYAROV UPDATE: PROTESTORS TURN ATTENTION TO DOJ. Read more

www.vnunet.com:
Hacking tool comes back for the Mac.
The infamous Sub7 Trojan horse has made another comeback, this time on the Mac. Read more

www.washingtonpost.com:
FBI Using High-Tech Gadgets. Read more

www.theinquirer.net:
World too dependent on Microsoft. Read more

www.cisco.com:
Cisco Security Advisory: "Code Red" Worm - Customer Impact. Read more

www.theregister.co.uk:
Code Red Tribulation is nigh, Steve Gibson warns. Read more

www.wired.com:
Code Red: Is This the Apocalypse? Read more

news.independent.co.uk:
'Worm' infection threatens Net. Read more

Code Red computer virus hits Switzerland. Read more

www.microsoft.com:
Government and Industry Groups Warn "Code Red" Internet Worm Ready for Serious Strike; Urge Preventative Measures. Read more

www.abc.net.au:
Code Red a no-show so far. Read more

itn.co.uk:
FBI warns world on latest virus threat. Read more

www.vancouverprovince.com:
Experts say Code Red computer worm won't lead to widespread economic chaos. Read more

www.sunspot.net:
Experts still wait for full fury of 'Code Red'. Read more

www.thetimes.co.uk:
5 minute briefing: hackers. Read more

www.wired.com:
Tribute to Hippie Hacker Holland. Read more

www.sfgate.com:
EU group denounces U.S. spying E-mail, faxes being monitored. Read more

www.computerworld.com:
Hack attack targets Verizon, AT&T wireless users. Read more

news.bbc.co.uk:
Hackers to the honey. Read more

www.ecommercetimes.com:
Security Experts Catch Hackers with Honey. Read more

it.mycareer.com.au:
Crackers deface Samsung's Australian website again. Read more

www.suntimes.com:
Hackers using colleges to steal files. Read more


Copyright� MegaSecurity.org