Security_Guy

Full-packet-capture society – and how to avoid it

January 13, 2014January 13, 2014 by halvar.flake

halvar.flake

After my previous post on the need for intelligence reform, this post discusses a concrete policy recommendation - but before that, I will describe what is at stake.I see our world on a trajectory into a dystopian future that is frightening and undesirable. Technological progress is deeply transforming our societies, and…

Continue Reading

Full-packet-capture society – and how to avoid it

January 13, 2014January 13, 2014 by halvar.flake

halvar.flake

After my previous post on the need for intelligence reform, this post discusses a concrete policy recommendation - but before that, I will describe what is at stake.I see our world on a trajectory into a dystopian future that is frightening and undesirable. Technological progress is deeply transforming our societies, and…

Continue Reading

Why Intelligence Reform is necessary

January 12, 2014January 12, 2014 by halvar.flake

halvar.flake

This is the first part of a two-part blog post on the need for intelligence reform.Why do I even feel entitled to an opinion?I have been dealing with the technical side of computer network attacks for more than 15 years, and have written exploits for about as long as the…

Continue Reading

Why Intelligence Reform is necessary

January 12, 2014January 12, 2014 by halvar.flake

halvar.flake

This is the first part of a two-part blog post on the need for intelligence reform.Why do I even feel entitled to an opinion?I have been dealing with the technical side of computer network attacks for more than 15 years, and have written exploits for about as long as the…

Continue Reading

Decoding Zeus 2.9.6.1 dynamic config

January 11, 2014 by Steven K

Steven K

I got a look on the zeus builder who was released by the MMBB guy on exploit.in, finally i'm decided to write something about it, so let's talk about the change in the config encryption.MD5: 0a05783316e7f765e731aadf5098564fThis version use AES instead of RC4 and can interact with the latest version of…

Continue Reading

Decoding Zeus 2.9.6.1 dynamic config

January 11, 2014 by Steven K

Steven K

I got a look on the zeus builder who was released by the MMBB guy on exploit.in, finally i'm decided to write something about it, so let's talk about the change in the config encryption.MD5: 0a05783316e7f765e731aadf5098564fThis version use AES instead of RC4 and can interact with the latest version of…

Continue Reading

Decoding Zeus 2.9.6.1 dynamic config

January 11, 2014 by Steven K

Steven K

I got a look on the zeus builder who was released by the MMBB guy on exploit.in, finally i'm decided to write something about it, so let's talk about the change in the config encryption.MD5: 0a05783316e7f765e731aadf5098564fThis version use AES instead of RC4 and can interact with the latest version of…

Continue Reading

Decoding Zeus 2.9.6.1 dynamic config

January 11, 2014 by Steven K

Steven K

I got a look on the zeus builder who was released by the MMBB guy on exploit.in, finally i'm decided to write something about it, so let's talk about the change in the config encryption.MD5: 0a05783316e7f765e731aadf5098564fThis version use AES instead of RC4 and can interact with the latest version of…

Continue Reading

Troj/WowSpy-A

January 10, 2014 by Steven K

Steven K

Recently a malware who target World of Warcraft got identified.This threat is known as Disker, Mal/DllHook-A or Trojan.Siggen5.64266 and can steal player accounts even if they use a Battle.net Authenticator.Yes, this is another post about password stealer mawlare...  There is no option to retain password on the WoW client.The method…

Continue Reading

Troj/WowSpy-A

January 10, 2014 by Steven K

Steven K

Recently a malware who target World of Warcraft got identified.This threat is known as Disker, Mal/DllHook-A or Trojan.Siggen5.64266 and can steal player accounts even if they use a Battle.net Authenticator.Yes, this is another post about password stealer mawlare...  There is no option to retain password on the WoW client.The method…

Continue Reading

Troj/WowSpy-A

January 10, 2014 by Steven K

Steven K

Recently a malware who target World of Warcraft got identified.This threat is known as Disker, Mal/DllHook-A or Trojan.Siggen5.64266 and can steal player accounts even if they use a Battle.net Authenticator.Yes, this is another post about password stealer mawlare...  There is no option to retain password on the WoW client.The method…

Continue Reading

Troj/WowSpy-A

January 10, 2014 by Steven K

Steven K

Recently a malware who target World of Warcraft got identified.This threat is known as Disker, Mal/DllHook-A or Trojan.Siggen5.64266 and can steal player accounts even if they use a Battle.net Authenticator.Yes, this is another post about password stealer mawlare...  There is no option to retain password on the WoW client.The method…

Continue Reading

Jolly Roger Stealer

January 2, 2014 by Steven K

Steven K

Friend Kafeine have already do a post on it, although someone recently sent me a url on my cybercrime tracker.. i give a f%$k• dns: 1 ›› ip: 178.162.193.24 - adresse: LOADER.ISTMEIN.DEBot statistic:CPU "Arhitecture"Task:Search module:HTTP:Mail:Create task:Task statistic:I haven't looked at a sample because i don't have it but sound very…

Continue Reading

Jolly Roger Stealer

January 2, 2014 by Steven K

Steven K

Friend Kafeine have already do a post on it, although someone recently sent me a url on my cybercrime tracker.. i give a f%$k• dns: 1 ›› ip: 178.162.193.24 - adresse: LOADER.ISTMEIN.DEBot statistic:CPU "Arhitecture"Task:Search module:HTTP:Mail:Create task:Task statistic:I haven't looked at a sample because i don't have it but sound very…

Continue Reading

Jolly Roger Stealer

January 2, 2014 by Steven K

Steven K

Friend Kafeine have already do a post on it, although someone recently sent me a url on my cybercrime tracker.. i give a f%$k• dns: 1 ›› ip: 178.162.193.24 - adresse: LOADER.ISTMEIN.DEBot statistic:CPU "Arhitecture"Task:Search module:HTTP:Mail:Create task:Task statistic:I haven't looked at a sample because i don't have it but sound very…

Continue Reading