Home Malware

Malware

• Hacker Uses XSS and Google Street View Data to Determine Physical Location
  
  
  
• CAnCAn te iubim, CA CA tine nu gasim. Superfete.cancan.ro e de rahat
  Toata comunitatea RST iubeste la nebunie CAnCAn.ro datorita faptului ca fura tot ce prind pe internet si nici macar nu dau sursele. Dupa ce au fost apostrofati de doua ori in aceeasi zi (1, 2), tot nu au avut bunul simt sa isi modifice stilul de a fura/lucra asa ca, cel putin in cazul lor, [...]
  
  
• Deface (?!?) pe Cotidianul.ro
  Odata cu schimbarea anotimpului apar si chestiile interesante in domeniul hacking. Cum frigul ne tine mai mult in casa, iata ca vin si demonstratiile de forta ce de multe ori sunt destul de amuzante. Astazi cotidianul.ro a fost spart datorita unei vulnerabilitati Sql Injection ce le-a permis atacatorilor sa modifice continutul unei pagini in ceea ce [...]
  
  
• Virusi in clipuri video [how to]
  Articol preluat cuvant cu cuvant de la adresa http://rstcenter.com/forum/24854-video-virus.rst Autor: B7ackAnge7z Prefață: Acest articol trebuia să apară pe RST la începutul lunii aprilie, dar cu părere de rău, tot nu găseam timp să-l scriu, iar la un moment dat am crezut ca nici nu mai are rost să o fac. Însă astăzi, observând că eroarea găsită de mine [...]
  
  
• Cyber-Bullying – palma parinteasca a noului mileniu
  Jessi Slaughter este o copila de clasa a 7-a cu prea mult timp liber si cu acces la internet, ce a reusit involuntar sa devina o asa zisa victima a internetului. Faptul ca parintii nu si-au educat si supravegheat plodul nu e un subiect demn de luat in discutie de presa, in media din intreaga [...]
  
  
• Christopher “moot” Poole: The case for anonymity online
  
  
  
• Wtf Avira?
  Think evil, be evil. Simply Google. Actually a stupid mistake coming from Avira antivirus product. You know guys,  maybe you should block every html code next time. It would be easier than banning 0px iframes. I’m moving back to nod32 antivirus.
  
  
• Some old story about tagged.com
  In 2009 I started to invest some time in adult affiliate programs and my needs for traffic increased day after day. After few days of researching I found some traffic sources to test my ideas, but one of the most important websites used last year by me and my friends was Tagged.com. When everything started,  javascript [...]
  
  
• Pwning cam girls for fun
  Sometimes making fun of people using xss tricks can be very entertaining. Today I will talk about xlovecam.com, a belgian adult videochat website with huge amount of traffic from France. Our purpose is to make models believe that their accounts are suspended. For them this means a lot of money and time wasted. Some real examples: http://img339.imageshack.us/img339/5881/buahahahaq.png [...]
  
  
• Tabloshit
  http://www.libertatea.ro/stire/hacker-de-temut-dar-are-doar-doua-clase-289571.html O invit pe don’soara Cristina Scortariu sa vina si la mine in cartier ca sa vada persoane de o anumita etnie, ce nu au fost la scoala in viata lor, cum trimit servere de ProRat pasaricilor cu care vorbesc pe messenger. Accept chiar sa fiu platit pentru ca am pus-o in contact cu acesti diavoli [...]
  
  

Trend Micro - Newest Malware Advisories

Latest malware advisory from Trend Micro

• ANDROIDOS_SMS.B
  Unknown: ANDROIDOS_SMS.B
  
  
• WORM_MEYLME.B
  Malware: WORM_MEYLME.B
  
  
• TROJ_PIDIEF.WM
  Malware: TROJ_PIDIEF.WM
  
  
• TROJ_FAKEAV.KAX
  Malware: TROJ_FAKEAV.KAX
  
  
• TROJ_AZAH.A
  Malware: TROJ_AZAH.A
  
  
• TROJ_TDSS.KAX
  Malware: TROJ_TDSS.KAX
  
  
• TROJ_TDSS.FAT
  Malware: TROJ_TDSS.FAT
  
  
• TROJ_BANLOAD.VCA
  Malware: TROJ_BANLOAD.VCA
  
  
• ADWARE_ZANGO
  Grayware: ADWARE_ZANGO
  
  
• TROJ_FAKEAV.FNZ
  Malware: TROJ_FAKEAV.FNZ
  
  

BitDefender - Real-time Virus Reporting

BitDefender - Real-time Virus Reporting

• Exploit.CplLnk.Gen
  Exploit.CplLnk.Gen
  
  
• Protecci%F3n de contrase%F1a:
  Protecci%F3n de contrase%F1a:
  
  
• Trojan.Generic.2787166
  Trojan.Generic.2787166
  
  
• Cookie.2o7
  Cookie.2o7
  
  
• Cookie.Weborama
  Cookie.Weborama
  
  
• Trojan.Generic.4704835
  Trojan.Generic.4704835
  
  
• Gen:Win32.Malware.bmGfamfw5ok
  Gen:Win32.Malware.bmGfamfw5ok
  
  
• Win32.Brontok.AX@mm
  Win32.Brontok.AX@mm
  
  
• Adware.Generic.67243
  Adware.Generic.67243
  
  
• Prot%E9g%E9 par mot de passe :
  Prot%E9g%E9 par mot de passe :
  
  

LinuxSecurity.com - Security Advisories

The central voice for Linux and Open Source security news.

• Slackware: 2010-253-01: mozilla-firefox: Security Update
  LinuxSecurity.com: New mozilla-firefox packages are available for Slackware 12.2, 13.0, 13.1, and -current to fix security issues. [More Info...]
  
  
• Slackware: 2010-253-02: mozilla-thunderbird: Security Update
  LinuxSecurity.com: New mozilla-thunderbird packages are available for Slackware 13.1, and -current to fix security issues. [More Info...]
  
  
• Slackware: 2010-253-03: seamonkey: Security Update
  LinuxSecurity.com: New seamonkey packages are available for Slackware 12.2, 13.0, 13.1, and -current to fix security issues. [More Info...]
  
  
• Mandriva: 2010:172: kernel
  LinuxSecurity.com: Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel: Buffer overflow in the ecryptfs_uid_hash macro in fs/ecryptfs/messaging.c in the eCryptfs subsystem in the Linux [More...]
  
  
• Debian: 2107-1: couchdb: untrusted search path
  LinuxSecurity.com: Dan Rosenberg discovered that in couchdb, a distributed, fault-tolerant and schema-free document-oriented database, an insecure library search path is used; a local attacker could execute arbitrary code by first dumping a maliciously crafted shared library in some [More...]
  
  

Packet Storm Security Advisories

Packet Storm Last 10 Advisories

• USN-978-1.txt
  Ubuntu Security Notice 978-1 - Several dangling pointer vulnerabilities were discovered in Thunderbird. It was discovered that the XPCSafeJSObjectWrapper (SJOW) security wrapper did not always honor the same-origin policy. Matt Haggard discovered that Thunderbird did not honor same-origin policy when processing the statusText property of an XMLHttpRequest object. Chris Rohlf discovered an integer overflow when Thunderbird processed the HTML frameset element. Several issues were discovered in the browser engine. David Huang and Collin Jackson discovered that the tag could override the charset of a framed HTML document in another origin. Paul Stone discovered that with designMode enabled an HTML selection containing JavaScript could be copied and pasted into a document and have the JavaScript execute within the context of the site where the code was dropped. A buffer overflow was discovered in Thunderbird when processing text runs. Peter Van der Beken, Jason Oster, Jesse Ruderman, Igor Bukanov, Jeff Walden, Gary Kwong and Olli Pettay discovered several flaws in the browser engine.
  
  
• USN-975-1.txt
  Ubuntu Security Notice 975-1 - Several dangling pointer vulnerabilities were discovered in Firefox. Blake Kaplan and Michal Zalewski discovered several weaknesses in the XPCSafeJSObjectWrapper (SJOW) security wrapper. Matt Haggard discovered that Firefox did not honor same-origin policy when processing the statusText property of an XMLHttpRequest object. Chris Rohlf discovered an integer overflow when Firefox processed the HTML frameset element. Several issues were discovered in the browser engine. David Huang and Collin Jackson discovered that the tag could override the charset of a framed HTML document in another origin. Paul Stone discovered that with designMode enabled an HTML selection containing JavaScript could be copied and pasted into a document and have the JavaScript execute within the context of the site where the code was dropped. A buffer overflow was discovered in Firefox when processing text runs. Peter Van der Beken, Jason Oster, Jesse Ruderman, Igor Bukanov, Jeff Walden, Gary Kwong and Olli Pettay discovered several flaws in the browser engine.
  
  
• USN-985-1.txt
  Ubuntu Security Notice 985-1 - Alasdair MacGregor discovered that mountall created a udev rule file with world-writable permissions. A local attacker could exploit this under certain conditions to cause udev to execute arbitrary commands as the root user.
  
  
• ESA-2010-016.txt
  RSA Access Manager Agent version 4.7.1 with RSA Adaptive Authentication Integration contains a potential vulnerability that could be exploited by malicious people to bypass authentication restrictions.
  
  
• ESA-2010-015.txt
  A vulnerability exists in EMC Celerra which can be exploited to gain unauthorized access to root NFS export on EMC Celerra NAS. NAS Code versions 5.6.50 and below are affected.