| View previous topic :: View next topic |
| Author |
Message |
datababe
Warrior
Joined: 13 Dec 2004
Last Visit: 10 Oct 2012
Posts: 217
Location: Inside your head
|
 Posted: Fri Jan 19, 2007 9:52 am Post subject: The Perfect Storm |
 |
|
http://isc.sans.org/diary.html?storyid=2071
| Quote: |
| Nothing new to have a disaster followed up by a simple e-mail virus claiming to be a video of the event. |
Unfortunately not.
"video.exe"...? Not exactly subtle, is it?  |
|
| Back to top |
|
 |
aBenG
Warrior
Joined: 06 Apr 2006
Last Visit: 28 Feb 2012
Posts: 297
Location: Darkest UK
|
|
| Back to top |
|
|
quietman7
Warrior Addict
Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA
|
| Posted: Mon Jan 22, 2007 2:38 am Post subject: |
|
|
Storm Worm starts to use Rootkit techniques
| Quote: |
| These variants are now detected as W32/Stormy.AB and Trojan-Downloader.Win32.Agent.bet |
http://www.f-secure.com/weblog/archives/archive-012007.html#00001089
_________________
Microsoft MVP - Consumer Security 2007-2012 
Member of UNITE, Unified Network of Instructors and Trusted Eliminators |
|
| Back to top |
|
|
quietman7
Warrior Addict
Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA
|
| Posted: Tue Jan 23, 2007 4:42 am Post subject: |
|
|
| Quote: |
| ...The bot machines are now communicating over UDP port 7871, instead of port 4000...the new version of the threat has fully fledged rootkit capabilities, albeit not very sophisticated...It is now capable of hiding several files and registry keys by hooking several kernel functions and patching the tcpip.sys system driver to hide its ports from commands, such as netstat -o or netstat -b.... |
symantec.com/weblog
_________________
Microsoft MVP - Consumer Security 2007-2012
Member of UNITE, Unified Network of Instructors and Trusted Eliminators |
|
| Back to top |
|
|
franthy
Junior Member
Joined: 09 Aug 2006
Last Visit: 25 Feb 2008
Posts: 40
Location: Denmark
|
|
| Back to top |
|
|
quietman7
Warrior Addict
Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA
|
| Posted: Wed Jan 24, 2007 5:08 am Post subject: |
|
|
'Storm' Trojan Hits 1.6 Million PCs; Vista May Be Vulnerable
| Quote: |
| The goal of the Trojan seems to be to acquire a large botnet, or collection of compromised PCs, that can be used to send traditional scam spams or for later identity mining...The Trojan horse that began spreading Friday has attacked at least 1.6 million PCs...In addition, it appears that Windows Vista...is vulnerable to the attack... |
_________________
Microsoft MVP - Consumer Security 2007-2012
Member of UNITE, Unified Network of Instructors and Trusted Eliminators |
|
| Back to top |
|
|
quietman7
Warrior Addict
Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA
|
| Posted: Fri Feb 16, 2007 4:40 am Post subject: |
|
|
Update: Storm' Worm Touches Down on IM
| Quote: |
| The Trojan virus that was responsible for countless spam e-mails sent around the globe has spawned a new variant that is using AOL Instant Messenger, Google Talk and Yahoo Messenger to proliferate... |
_________________
Microsoft MVP - Consumer Security 2007-2012
Member of UNITE, Unified Network of Instructors and Trusted Eliminators |
|
| Back to top |
|
|
|
