esed nod32: Nisan 2011

30 Nisan 2011 Cumartesi

IT industry sleeps beneath a cloud

IT news traditionally goes in cycles. During July and August there is nothing and during December you can't find any sod to comment on anything. But the last 12 months have been like a hot July and no one is doing anything.

In the 1980s and 90s there was always something happening in the IT industry, new breakthroughs, spats between suppliers. The security industry was great to report as Dr Solomon slugged it out with McAfee.

No one reported storage. Face it, sticking data on hard-drives was pretty dull. Making data centres was just like concentrating all the dullness of all the wet Sundays in Norfolk for the last 30 years in one place. A PR trying to peddle press releases on printer ribbons had more of a chance, but that was only one and she was very nice.

nod32 full indir nod32 full download full nod32 download est nod32 serial

Trojan:W32/Generic

A trojan, or trojan horse, is a seemingly legitimate program which secretly performs other, usually malicious, functions. It is usually user-initiated and does not replicate.

esed nod32 keyleri esed nod32 key esed nod32 keys est nod32 key

Worm:W32/Downadup.A

Worm:W32/Downadup exploits a vulnerability in the Windows Server service to spread copies of itself across a network. The worm also attempts to download files from a remote server.

esed nod32 serial esed nod32 antivirus

Software firm says e-mails stolen in server breach

Ashampoo warns customers about potential for malware hiding in e-mails using the company name.

indir nod32 indir com nod32 nod32 keyleri nod32 keyler

Lab Matters - The Ups and Downs of Mitigating Botnets

In this edition of the Lab Matters webcast, malware researcher Tillmann Werner and Ryan Naraine discuss the ongoing battle to control the Conficker/Kido botnet and the need for the computer security industry to consider newer approaches to mitigating the botnet epidemic.

nod32 keyleri nod32 keyler nod32 key esed nod32 download

Lab Matters - Dissecting the Banking Malware Problem

Kaspersky Lab malware researcher Vicente Diaz joins the Lab Matters webcast to discuss the banking malware epidemic in Europe and offer suggestions for consumers doing business on the Web.

esed nod32 4 nod32 esed nod32 indir nod32

Bejtlich Joining MANDIANT as CSO and Security Services Architect

nod32 guncel key güncel key nod32

Gov't mydata apps plan raises privacy concerns

Apps will chart people's lives under government consumer scheme...

(silicon.com - Public Sector)

est nod32 key esed nod32 serial esed nod32 antivirus nod32 turkce

Are fraud reports related to Sony breach?

Sony PlayStation Network customers report fraud, but it's unclear if cases are related to the Sony data breach.

nod32 guncel key güncel key nod32 full nod32 esed nod32 keyleri

Suit Filed Over PlayStation Data Breach

A San Francisco-based law firm has filed a class action lawsuit against Sony Computer Entertainment America, after the company admitted that an attack by hackers had compromised the data of approximately 77 million PlayStation Network subscribers.

Calling it “one of the largest data breaches in the history of the Internet,” the firm that filed the suit alleges Sony was negligent in protecting and encrypting the private data — which may have included credit card numbers — of subscribers to the PlayStation 3 online network. The complaint alleges that due to the breach, some members have already begun to experience fraudulent use of their credit card information.

“We brought this lawsuit on behalf of consumers to learn the full extent of Sony PlayStation Network data security practices and the data loss and to seek a remedy for consumers,” said Ira P. Rothken, an attorney with Rothken Law Firm, which filed the suit April 27. “We are hopeful that Sony will take this opportunity to learn from the network vulnerabilities, provide a remedy to consumers who entrusted their sensitive data to Sony and lead the way in data security best practices going forward.”

est nod32 key esed nod32 serial esed nod32 antivirus nod32 turkce

Code Testing Tools Could Be Acquisition Targets in '08

Interest in building security into the development process could make code testing products into inviting buyout targets.

esed nod32 indir nod32 serial

Microsoft to help co-ordinate bug reports

News in brief: The company will work with other software makers...

(silicon.com - Security)

esed nod32 indir nod32 indir com nod32 nod32 keyleri

29 Nisan 2011 Cuma

Treacherous metadata in company documents

Office documents can contain metadata such as names, storage locations and version information about the software used to create them. An attacker can exploit this information for targeted attacks. The free tool Foca shows how talkative a company's downloadable documents are.

In recent weeks, reports of hacking attacks on companies have been mounting up. HBGary, RSA, Epsilon and Barracuda Networks are among the companies from which hackers have stolen highly sensitive data. The attack on RSA was a highly focused attack which targeted individual employees. The hackers appear to have collected information on target personnel on the web; social networks such as Facebook and Xing offering ideal forums for doing so.

Often unintentionally, files available to download from a company can also be a rich source of interesting information: Office documents, presentations, images and other files contain metadata such as the author, date and software used which can provide useful tips for carrying out targeted technical or social engineering attacks.

nod32 keyleri güncel güncel nod32 keyleri nod32 guncel keyler nod32 guncel key

Amazon cuts cost of hit songs to 69 cents (Digital Trends)

Digital Trends - Song downloads are cheap these days by any standards. And now they’ve just got a little bit cheaper.

full nod32 download est nod32 serial 64 bit nod32 esed nod32 4

Lab Matters - The Underground Economy and Ecosystem of the SMS-based cybercrime

In some Eastern European countries (Russia and Ukraine especially), there are legal loopholes that allow the use of SMS premium rate numbers anonymously. In addition, some Russian mobile operators allow people to transfer money from prepaid SIM cards to bank accounts or credit cards. When combined, these two things allow cyber-crime activity that generate illegal profits. In this issue of Lab Matters webcast, Kaspersky Lab malware researcher Denis Maslennikov discusses this component of mobile security and talks about the ways cyber-criminals are maliciously exploiting prepaid SIM cards and money transfers. Maslennikov also describes the main pillar of the underground economy and ecosystem of his type of fraud.

nod32 keyleri güncel güncel nod32 keyleri

Amazon apologizes for server outage, offers credit (AP)

AP - Amazon.com Inc. apologized Friday for a data-center outage that brought down major websites including Foursquare and Reddit and offered Web services customers a 10-day credit.

nod32 guncel keyler nod32 guncel key güncel key nod32 full nod32

Adware:W32/Apropos

This program delivers advertising content to the user. It is usually annoying but harmless, unless it is combined with spyware or trackware.

full nod32 esed nod32 keyleri esed nod32 key esed nod32 keys

Adware:W32/Apropos

This program delivers advertising content to the user. It is usually annoying but harmless, unless it is combined with spyware or trackware.

güncel nod32 keyleri nod32 guncel keyler nod32 guncel key güncel key nod32

Ubuntu 11.04 Released

For those of you watching Ubuntu's website recently, you may have noticed a new version of the popular and easy to use variant of Linux has been surfaced - Natty Narwal. It can be downloaded from the previously linked site free of charge. Among the various new features, the Unity interface is set as the default UI, and includes the launcher (an OS X like dock), the dash (a popup menu with user defined shortcuts), and workspaces (a virtual desktop manager). According to the Ubuntu website, the OS can boot in as little as 7 seconds (following POST).

Driving all of this eye candy is Gnome 2.32.1 (according to Ubuntu Vibes). If your current equipment is not capable of Unity, the classic desktop experience will kick in as to keep you moving along with minimal lag. Those of you wanting to experiment with Gnome 3, it cannot be installed via the Ubuntu repositories, and there have been reports of system instabilities post installation, though there is a workaround. If you're ready to install, there are 3 options for download, one for a CD/USB stick type installation, another to create a second boot partition alongside windows, and another for a standard standalone installation. The downloads are a one size fits all affair -- no longer is the Ubuntu Netbook edition or Desktop edition; there's just a single download for all platforms.

nod32 guncel key güncel key nod32

Google Android 2.3.4 Adds Video Chat (PC World)

PC World - Google on Thursday introduced video chatting capabilities to Android phones, akin to Face Time on Apple iOS devices, as part of version 2.3.4 of the mobile operating system. Other Android apps already offer video chatting capabilities, but Google has built the feature into the OS and also allows interoperability between Android phones and tablets and computers.

nod32 guncel keyler nod32 guncel key güncel key nod32 full nod32

Other:W32/Generic

Other:W32/Generic is a Generic Detection for a wide range of malicious programs, such as trojans, worms and keyloggers.

esed nod32 indir nod32 indir com nod32 nod32 keyleri

Sony Hints at Compensation for PlayStation Network Hack (PC World)

PC World - Sony may offer users some form of compensation for the outage, now in its 8th day, of the PlayStation Network and Qriocity online services, its U.S. unit said late Thursday.

esed nod32 download nod32 serialleri esed nod32 indir nod32 serial

Most data breaches escape privacy watchdog fines

ICO keeps its big stick under wraps as not even one per cent of breaches attracts fine...

(silicon.com - Security)

esed nod32 key esed nod32 keys

Bejtlich Joining MANDIANT as CSO and Security Services Architect

nod32 serialleri esed nod32 indir nod32 serial nod32 güncel keyleri

28 Nisan 2011 Perşembe

Personal-safety GPS device presents security risk

Locator device can help you find your stolen car or keep track of your kids, but it can also beam information to would-be miscreants, researcher says.

esed nod32 keyleri esed nod32 key esed nod32 keys est nod32 key

Lab Matters - The Ups and Downs of Mitigating Botnets

nod32 guncel keyler nod32 guncel key güncel key nod32 full nod32

Review: Looxcie camera lets you capture hands-free video (Yahoo! News)

Yahoo! News - Post by Emily Price: Even the smallest camcorders can be bulky when it comes to holding them in front of you to shoot a video or putting them on a tripod near you while an event is going on. One ?

esed nod32 key esed nod32 keys

WikiLeaks releases secret Guantanamo prison files

Nearly 800 secret dossiers from Gitmo are being released over the next month, allegedly exposing what the U.K. Guardian newspaper calls "lie after lie" about the prison and its detainees.

esed nod32 key esed nod32 keys est nod32 key esed nod32 serial

Suit Filed Over PlayStation Data Breach

nod32 keyleri nod32 keyler nod32 key esed nod32 download

Cooking the Cuckoo's Egg

nod32 full indir nod32 full download full nod32 download est nod32 serial

PSN breach exposes records for millions (roundup)

A week after taking PlayStation Network offline, Sony finally explains it did so because of security breach that exposed personal information for potentially more than 75 million of its users.

esed nod32 serial esed nod32 antivirus

Endpoint security: How to erase printer threat

Plug security holes left by unsecured networked printers and multifunction peripherals...

(silicon.com - CIO Insights)

full nod32 download est nod32 serial 64 bit nod32 esed nod32 4

Geotracking controversy homes in on iPhone (roundup)

Apple comes under fire following a researcher's report that iOS version 4 software for the iPad and iPhone stores users' location data.

nod32 esed nod32 indir nod32 indir com nod32

Trojan-Downloader:W32/WinFixer

This type of trojan secretly downloads malicious files from a remote server, then installs and executes the files.

güncel nod32 keyleri nod32 guncel keyler nod32 guncel key güncel key nod32

27 Nisan 2011 Çarşamba

How police have obtained iPhone, iPad tracking logs

It's no secret to police investigators that the Apple iPhone keeps track of its owners' approximate location. And Android devices appear to do the same as well.

nod32 esed nod32

Nokia Trims Workforce In Anticipation of Phone 7 Shift (NewsFactor)

NewsFactor - As it prepares to load its phones with Microsoft's Windows Phone 7 operating system, Finnish cell-phone giant Nokia is ditching control of its Symbian platform and cutting 7,000 jobs in a major restructuring.

esed nod32 keyleri esed nod32 key esed nod32 keys est nod32 key

Review of Computer Incident Response and Product Security Posted

esed nod32 indir nod32 indir com nod32 nod32 keyleri

Code Testing Tools Could Be Acquisition Targets in '08

Interest in building security into the development process could make code testing products into inviting buyout targets.

nod32 keyler nod32 key esed nod32 download nod32 serialleri

Match.com to screen for sex offenders

In response to a lawsuit from a woman who said she was sexually assaulted by a man she met on Match.com, the online dating service will start checking members against a national list of sex offenders.

esed nod32 serial esed nod32 antivirus

Trojan:W32/AntiAV

Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user's knowledge or permission. It does not replicate.

indir nod32 indir com nod32 nod32 keyleri nod32 keyler

Other:W32/Generic

Other:W32/Generic is a Generic Detection for a wide range of malicious programs, such as trojans, worms and keyloggers.

est nod32 key esed nod32 serial esed nod32 antivirus nod32 turkce

Cyber attacks rise at critical infrastructure firms

New report finds big increase in cyber threats for power, water, and electricity firms, but modest efforts to counter them.

nod32 full indir nod32 full download full nod32 download est nod32 serial

Rootkit:W32/Zxshell.B

Rootkit:W32/Zxshell.B is dropped by Backdoor:W32/Zxshell.A and basically functions as a protection mechanism for its main payload file.

güncel key nod32 full nod32

Nokia slashes 7,000 jobs in major strategy shift (AP)

AP - Nokia Corp. said Wednesday it will slash 7,000 jobs worldwide, through both layoffs and outsourcing, as it strives to cut costs and catch up with its top rivals in the smartphone market.

esed nod32 key esed nod32 keys est nod32 key esed nod32 serial

Worm:W32/NetSky.B

A standalone malicious program which uses computer or network resources to make complete copies of itself. May include code or other malware to damage both the system and the network.

nod32 guncel keyler nod32 guncel key güncel key nod32 full nod32

Trojan:Java/Rowindal

Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user's knowledge or permission. It does not replicate.

esed nod32 antivirus nod32 turkce nod32 full indir nod32 full download

26 Nisan 2011 Salı

Microsoft: Critical Vista Patch Coming

Microsoft plans to ship two patches on Jan. 8, 2008 to patch code execution vulnerabilities in its newest OS.

nod32 guncel key güncel key nod32

Reforming the DisGrace Period

Opinion: Another step has been taken on the long, plodding path to maybe addressing the problem of Domain Tasting.

nod32 keyler nod32 key esed nod32 download nod32 serialleri

Comparing Microsoft's Communication Methods

esed nod32 4 nod32 esed nod32 indir nod32

Trojan:Java/Rowindal

Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user's knowledge or permission. It does not replicate.

esed nod32 key esed nod32 keys est nod32 key esed nod32 serial

Credit Card Skimming and Pin Harvesting in an EMV World

On the 17th till the 20th of May, the Grand Krasnapolsky in Amsterdam will be home to the second annual Hack In The Box deep knowledge security conference, HITB2011AMS. In addition to bringing together a unique mix of security professionals, researchers, law enforcement and members of the hacker underground, this year’s conference also includes a new presentation on EMV security issues. A joint effort between Europay, MasterCard and Visa to ensure global interoperability so that Visa and MasterCard cards can continue to be accepted everywhere.

The EMV global standard for electronic payments is widely used for inter-operation between chip equipped credit/debit cards, Point of Sales devices and ATMs. Following the trail of the serious vulnerabilities published by Murdoch and Drimer’s team at Cambridge University regarding the usage of stolen cards, Daniele Bianco from Inverse Path and Adam Laurie, an independent network security researcher based in the UK, explore the feasibility of skimming and cloning in the context of POS usage.

nod32 güncel keyleri nod32 keyleri güncel

Trojan-Dropper:W32/Agent.DKIT

A trojan that contains one or more malicious programs, which it will secretly install and execute.

esed nod32 indir nod32 serial nod32 güncel keyleri nod32 keyleri güncel

Sony rebuilding servers, getting close to bringing PSN online

Earlier today Sony provided some more details around what the company is doing in regards to the PlayStation Network service outage. It appears that the company is indeed building out some additional infrastructure for PSN.

Yesterday I speculated that Sony may be building out a new server farm to segregate the PSN service between the Website and the PS3 service. Last night, the European PlayStation Blog posted an update first revealing why its taking so long to get the service back up and running. According to the blog, Sony is working around the clock to re-build the PSN system. This will help strengthen PSN’s infrastructure and help keep it secure.

"We sincerely regret that PlayStation Network and Qriocity services have been suspended, and we are working around the clock to bring them both back online. Our efforts to resolve this matter involve re-building our system to further strengthen our network infrastructure. Though this task is time-consuming, we decided it was worth the time necessary to provide the system with additional security. We thank you for your patience to date and ask for a little more while we move towards completion of this project. We will continue to give you updates as they become available."

full nod32 esed nod32 keyleri esed nod32 key esed nod32 keys

Worm:W32/NetSky.V

A standalone malicious program which uses computer or network resources to make complete copies of itself. May include code or other malware to damage both the system and the network.

64 bit nod32 esed nod32 4 nod32 esed nod32

Android phones keep track of their owners, too -- but they ask (Appolicious)

Appolicious - There?s been much made out of the recently reported, but not so unknown, feature of Apple?s iPhone, which stores GPS location data in an unencrypted file, effectively tracking the iPhone?s user continually and saving the information indefinitely.

nod32 esed nod32

Bizarre pornography raid underscores Wi-Fi privacy risks

Lying on his family room floor with assault weapons trained on him, shouts of "pedophile!" and "pornographer!" stinging like his fresh cuts and bruises, the Buffalo homeowner didn't need long to figure out the reason for the early morning wake-up call from a swarm of federal agents. That new wireless router. He'd gotten fed up trying to set a password. Someone must have used his Internet connection, he thought.

"We know who you are! You downloaded thousands of images at 11:30 last night," the man's lawyer, Barry Covert, recounted the agents saying. They referred to a screen name, "Doldrum." "No, I didn't," he insisted. "Somebody else could have but I didn't do anything like that." "You're a creep ... just admit it," they said.

Law enforcement officials say the case is a cautionary tale. Their advice: Password-protect your wireless router. Plenty of others would agree. The Sarasota, Fla. man, for example, who got a similar visit from the FBI last year after someone on a boat docked in a marina outside his building used a potato chip can as an antenna to boost his wireless signal and download an astounding 10 million images of child porn, or the North Syracuse, N.Y., man who in December 2009 opened his door to police who'd been following an electronic trail of illegal videos and images. The man's neighbor pleaded guilty April 12.

nod32 full download full nod32 download est nod32 serial 64 bit nod32

Rogue:W32/SystemTool

This detection identifies a malicious program, typically used to deceive users into purchasing a fake application.

esed nod32 keyleri esed nod32 key esed nod32 keys est nod32 key

UBM Cancels GTEC, Bejtlich Considers Alternatives

nod32 serial nod32 güncel keyleri nod32 keyleri güncel güncel nod32 keyleri

25 Nisan 2011 Pazartesi

Spam on the Run: Notorious Spammer on the Lam

An indictment charges Alan Ralsky with using illegal e-mail to promote Chinese stock pump-and-dump scheme.

esed nod32 keys est nod32 key

Review of Cyber Attacks Posted

64 bit nod32 esed nod32 4 nod32 esed nod32

Exploit:W32/MSWord6.Gen

The identifies a Microsoft Word document that has been modified to perform an unauthorized, malicious action.

est nod32 serial 64 bit nod32 esed nod32 4 nod32

Trojan:Java/Rowindal

Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user's knowledge or permission. It does not replicate.

güncel key nod32 full nod32 esed nod32 keyleri esed nod32 key

Netflix 1Q earnings soar on gain of 3.6M customers (AP)

AP - Netflix Inc. attracted another 3.6 million customers to its video subscription service in the first quarter, the biggest growth spurt yet in a prosperous run that has established the company as a Hollywood power broker and Wall Street darling.

nod32 serialleri esed nod32 indir

Malvertizing Continued - Spotify's Ad Networks Outed

Over the past couple months, some advertising networks have been distributing ads that redirect browsers to sites hosting exploits.

Spotify's advertising network was most recently outed (note that it is the third party banner ads rotating through the client's ad frames). Most of the redirections we have been been monitoring have sent users to a variety of servers in the .cc TLD. We have been working with providers to ensure the ads aren't on their networks, but the groups have been active in rotating malvertizing banners through multiple networks.

esed nod32 keyleri esed nod32 key esed nod32 keys est nod32 key

Obama jabs Republicans at Facebook town hall

The president takes questions from employees and Web participants on topics like the economy, immigration, and health care. He also takes aim at Republicans' deficit reduction plan.

indir com nod32 nod32 keyleri nod32 keyler nod32 key

Match.com to screen for sex offenders

nod32 serialleri esed nod32 indir nod32 serial nod32 güncel keyleri

Using TS RemoteApp as an attack vector

So in today's session at SMBNation that I spoke at, I showed how to use TS RemoteApp with TS Gateway on SBS2008 to deliver remote applications through Remote Web Workplace. It is one of the most cool features in the Windows Server 2008 operating system. But we have to remember what its doing.

Part of the conversation we had was on the difference between local desktop display in TS RemoteApp vs just having a full desktop to the Terminal Server. One issue that came up was that as a RemoteApp, you can't run other applications.

Well, that is not actually true. If you think that, then a TS RemoteApp has the ability to be an attack vector for you. What do I mean? Well below is a screen shot of what happens if you hit CTRL-ALT-ENTER with the cursor focused on the RemoteApp window (in this case MS Paint running remotely):

At this point, you can run Task Manager.... then hit File->Run and run something else. In my case, I showed a few people afterwards how to start cmd and start exploring the network. Now, you will only have the privileges of the user account logged in as, but it is still something you have to be careful about. If you think a RemoteApp bundle prevents access to other application sor the network... you are wrong.

So is this bad? No. Is it really an attack vector? No. You just need to understand that when allowing ANY type of Terminal Services based access, you have to restrict the policies and access accordingly. No matter if its local or remote. Running a TS RemoteApp bundle of Office will display on the local desktop, but is STILL running on the Terminal Server. So it will be browsing the network the Terminal Server is connected to as the local net. It will also browse your own drives mapped via tsclient. So you have to remember that.

Hope thats useful. A TS RemoteApp bundle does NOT mean you won't have access to the TS desktop when displaying remotely on your personal desktop. And that's not a bad thing. TS Remote App is a convenient way to extend the workspace to your local machine, anywhere in the world. No pun intended. That's its power... and the benefit. Great remote productivity enhancement in Windows Server 2008. Use it. (Safely of course)

güncel key nod32 full nod32

April's Patch Tuesday (APT) coming your way

This month, Microsoft is releasing 17 bulletins to address 63 security vulnerabilities across a wide range of Windows products. Out of these vulnerabilities, 12 are rated critical and 51 important.

About half of these vulnerabilities are being patched with the MS11-034 bulletin. They all involve Elevation of Privilege vulnerabilities in the Windows kernel.

Elevation of privilege vulnerabilities have gained a lot in popularity as Windows 7 and the use of sandboxes have been gaining traction. These vulnerabilities could be used for instance to circumvent UAC and immediately give a program full admin privileges without warning.

With Microsoft's newer products there's been somewhat of a trend where the number of EoP vulnerabilities outweigh the number of Remote Code Execution vulnerabilities. This trend is likely to persist over the coming months.

Microsoft will also be releasing two advisories this month. One for Windows and one for Office.

nod32 turkce nod32 full indir nod32 full download full nod32 download

US disables botnet, turns off malware remotely

News in brief: US authorities take legal action to seize international botnet...

(silicon.com - Security)

esed nod32 key esed nod32 keys est nod32 key esed nod32 serial

22 Nisan 2011 Cuma

How police have obtained iPhone, iPad tracking logs

Among law enforcement and computer forensics specialists, it's no secret that the iPhone and other iOS devices keep track of their owner's location. In fact, it's a software sales pitch.

est nod32 key esed nod32 serial esed nod32 antivirus nod32 turkce