SEARCH RESULTS
 
Showing 1-7 of 7 records
1
 
Expand article

Holiday Storm Part 3

2007-12-26 23:43:00 by Russ McRee in HolisticInfoSec.org
 
...System For Hidden Files Scanning Drive C 1 C:WINDOWSsystem32cleanmgr.exe Hidden From API 2 C:WINDOWSsystem32clean.config Hidden From API 3 C:WINDOWSsystem32clean6c9-3320.sys Hidden From API 4 C:WINDOWSsystem32dllcachecleanmgr.exe Hidden From API SysAnalyzer says Loaded Drivers Driver File Company Name Description...
 
Tags: kernel31 api log, log, api, zhelatin-asx, sys, asx, rootkit, helios rootkit detector, zhelatin
 
 
 
 
Expand article

Storm keeps coming (4th variant)

2007-12-27 10:43:00 by Russ McRee in HolisticInfoSec.org
 
...System For Hidden Files Scanning Drive C 1 C:WINDOWSsystem32bldy.config Hidden From API 2 C:WINDOWSsystem32bldy3a80-61.sys Hidden From API Execute Duration (in seconds)=18 Loaded Drivers Driver File Company Name Description C:WINDOWSSystem32bldy3a80-61.sys Kernel31 Api Log Installing Hooks 4012d8 CreateFileA(C:WINDOWSSystem32bldy.config...
 
Tags: trojan, sys, kernel31 api log, api, zhelatin-asx, zhelatin, config, helios rootkit detector, driver file company
 
 
 
 
Expand article

Storm Worm's St. Valentine Campaign

The Article has images
2008-01-15 21:01:01 by HASH0x8b48dc8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...sys (MD5 - C4B9DD12714666C0707F5A6E39156C11), and creates the following registry entries HKEY LOCAL MACHINESYSTEMControlSet001EnumRootLEGACY BURITO1205-67D5 HKEY LOCAL MACHINESYSTEMControlSet001EnumRootLEGACY BURITO1205-67D50000 HKEY LOCAL MACHINESYSTEMControlSet001Servicesburito1205-67d5 HKEY LOCAL...
 
Tags: hkey local, burito1205-67d5 hkey local, burito1205-67d5, storm worm, binary drops burito, short term window, md5, propagation vector, email campaign
 
 
 
 
Expand article

Vulnerability in SNMP 3

2008-06-11 07:17:05 by HASH0x8b4c4bc in StillSecure, After All These Years
 
...sys admins that SNMP stands for security network management protocol, instead of simple NMP The SNMP zealots have always tried to counter the SNMP is not secure arguments by pointing to v3 as very security method and now this flaw is found. How many more will be found? In any event glad they found and fixed this. Now if they could just find...
 
Tags: snmp, snmp stands, snmp zealots, flaw, dennis fisher blogs, critical flaw, nac vendors, sys admins, security method
 
 
 
 
Expand article

Arnon Rotem-Gal-Oz on SOA Security

2008-07-14 13:40:01 by Gunnar Peterson in 1 Raindrop
 
...systems. Whether you are building RESTful systems, WS-* SOAs, EDAs or any combination of these architectural styles, If you wont treat the services boundary as a border and secure it you will be sorry Security in SOA should be considered at the "grand-scheme" level with issues like authertication, authorization but also at the single service...
 
Tags: soa, soa security, security, services, web services security, web services, security standpoint, arnon, gateway
 
 
 
 
Expand article

Show 028 - An Interview with Bill Cheswick

The Article has images The Article has audio podcast
2008-07-15 19:30:25 by rmacmich in The Silver Bullet Security Podcast
...sys admins. Gary and Bill discuss whether were winning or losing the computer security war, how security threats have evolved from pimply-faced teenagers to organized crime, whether we should move security into the cloud, and whether re-naming Christmas lights to solstice lights would bypass NJ holiday decoration ordinances Bill Cheswick AT&T...
 
Tags: bill, bill cheswick, computer security, computer security war, solstice lights, att research, holiday decoration ordinances, apache web server, term proxy
 
 
 
 
Expand article

Admins , Good Guys or "I am NOT an Idiot!"

The Article has images
2008-07-29 15:19:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
...sysadmin, for example So, what about controls? Ah, glad that you asked! "Controls" are for the bad guys; they are in place to prevent the bad guys from doing "an unspeakable evil" (tm) :-) on you. On the other hand, good guys are doing "the right thing" every time - why monitor them? It goes without saying that nobody ever moves between these...
 
Tags: terry childs, childs, guys, admins, terry childs story, bad boss, boss, underneath management, management
 
 
 
 
 
Showing 1-7 of 7 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia