Spyware Warrior

Nightmaretony

http://news.yahoo.com/s/nf/57768;_ylt=AkYAyNTH6HbLA062Unn6LV4DW7oF
_________________
For this is the place
where dreams
and nightmares
are birthed
and bred

Nightmare Park

datababe · Posted: Wed Jan 23, 2008 7:23 am Post subject:

Still making the news:

http://arstechnica.com/news.ars/post/20080122-compromised-websites-serve-more-malware-than-malicious-ones.html

And illustrating an interesting (and kinda scary) trend:

mikey · Posted: Fri Jan 25, 2008 12:50 pm Post subject:

As related to the trends, Symantec paints a picture of the return of the drive-by condition; http://www.symantec.com/enterprise/security_response/weblog/2008/01/driveby_pharming_in_the_wild.html
_________________
-
W2K/2K3/XP/2K8/Vista/W7/RHE/DEBIAN/SUSE

Spyware/Adware is NOT freeware, it costs all of us dearly.

Mikey's Stuff

Fiddler and friends...essential web diagnostic, forensic, & development tools.
-

Oldfrog · Posted: Fri Jan 25, 2008 1:25 pm Post subject:

The astounding fact about the ITW attack described by Symantec is that the attack can only succeed if the broadband router still uses the default out-of-the-box administrative password. The router make wasn't specified but since the attack used an HTTP GET command I would imagine that the command is sent to an IP address. This would in turn require that the default LAN IP address was also being used. It shouldn't take a rocket scientist to figure that a password everyone knows isn't much security.