Slashdot Mirror
When Malware Authors Combine Efforts
An anonymous reader writes "Spammers, Hackers and virus writers are all teaming up according to some russian security researchers. This means that they reckon that weaknesses will be exploited in a matter of hours of being announced, rather thant the weeks and months that we're seeing now.
Scary stuff."
They couldn't get along!
Further, if I'm wrong, doesn't this announcement generate (or risk generating) more momentum in the "malware conglomerate" that's being reported?
::jafomatic
So where does this place public disclosure advocates? Are people going to demand that makers of affected software have a 24/7 programming staff ready to plug leaks just so weakenesses can de disclosed immedately? In light of this even I would favor not publicly disclosing weaknesses immediately!
Get a firewall, block all inbound and outbound traffic, unplug your ethernet cable and shut off your computer. It's that easy to protect yourself.
Is it just me, or does it seem that every story that lists the source as a "Russian Security Expert" is generally a load of crap?
-Phixxr
ungggghhhh
to lock down your enterprise with a File surveillence and security tool like i:scan... know what's happening before the user does...
I know what's on your hard dr
...make deep bugs deeper. FOSS philosophy applied to viruses. Yikes.
adam b.
Don't we know this already? Isn't it common knowledge? Department of Redundancy calling...
It might be time to switch back to the most stable and secure OS ever.
this wont have an effect on computer litirate people who know how to protect themselves ...and for those who dont know things wont change much ether....some people still have blaster on there box..they dont know or wanna know how to take care of there box
I don't think more people cooperating will really find new exploits, they will simply explore the ones they have already found. So, instead of an exploit coming out and than a derivative coming out a couple weeks later, we will see four or five derivates in quick succession of the original exploit.
Also, what "new" cooperation tools are malware writers using to communicate with each other? I'm fairly sure that IRC, Instant Messaging, VoIP, Bulletin Boards, and e-mail have all been standard communcation tools for these people. Maybe the groups now have more members.
-Teiresias
Oh my!
Isn't this the same as orginized crime. So a bunch of internet thugs orginize to advertise more stuff, because they realized it will be more effective if they worked togeth. Will this rise the cost of protection money to use the internet?
If something is so important that you feel the need to post it on the internet... It probably isn't that important.
Hacker: I'll form the head!
Scammer: I'll form the heart!
Pornographer: I'll form the right hand!
Spammer: I'll form the crotch!
All: Together, we are - ASSHOLETRON!
(catchy theme music here)
Could have seen this coming from a mile away. This is a business to these people. Think of this as just-in-time supply chain theory, or vertical integration by acquisition. Not surprising in the least.
Used to be (way back in 2003 or so) AdAware was all you needed (and Norton AV or a workalike)
But now, man some of the things I've seen are really nasty!
You wipe 'em out, they come back, they hide from searches, morph into other programs, I've even seen one (I shit you not, I've been in IT for 10+ years, never seen anything like this one!) that was active even when the infected drive was placed as a slave on another machine, it started right up and infected the new PC.
This goes way beyond simple syware, these people are teaming up and it's just the beginning.
So rise up, all ye lost ones, as one, we'll claw the clouds.
"They work in groups that exchange information with other groups on forums and Web sites."
erhmm....
ianase (i am not a security expert) but wouldn't that statement apply to, hmmmm....., oh i don't know.....THE INTERNET?? seriously, a broad, vague, statement like that suggests to me that this is mostly overreaction on the part of a group who could experience significant gains IF their statements were true.
fud? imho, yes.
The only way to get rid of a temptation is to yield to it.
-Oscar Wilde
Kinda makes you think twice about publicly announcing vulnerabilities in your software before you have time to fix them, does it not?
There's a Mercedes gap too. I want one and can't afford one, but it's not government's job to do anything about it.
Privacy is important, but isn't the general anonymity of the net a contributer to these sorts of problems?
It's a shame, but it seems some people are malicious in proportion to their anonymity.
... this will not only push software writers to consider putting more time into writing better software, but also underline the benefits of the open-source model.
Once done, they have a certain population size (vulnerable hosts) that can be almost instantly assaulted.
On the white-hat side, once the malware is noticed, it may take months to patch the initial security hole and even longer to patch the entire population of vulnerable hosts.
This is why vulnerability announcements are so important, the software that survives in the future will be the one with the shortest vulnerability to patch cycle. The others will die off ... only the strong survive!
However, this article is pleading that we should *not* be publishing vulnerabilities, "because it gives hackers a tool", and I disagree with this. Publishing vulnerabilities is a way to alert the public of exploits that are present. What we need to do is make the publishing of vulnerabilities more popular than it is so that the general public is aware of problems and alerted on how to fix them.
Beat the computer, program your life.
In Soviet Russia, Security Weaknesses exploits YOU!
Nonetheless, we can do 2 things to protect ourselves. First, download and install FireFox. Use it for all secure transactions (i.e. "https") on the web. Set the security on your Internet Explorer to "HIGH", disabling Java, JavaScript, ActiveX, etc. Use Internet Explorer only for casual browsing.
On my computer, Internet Explorer is slightly faster for casual browsing than FireFox because Explorer is more tightly integrated into the operating system.
Anyhow, the second thing that you can do to protect yourself and the rest of Western society is to join the boycott of products that are "Made in China". It is having an effect on the West Coast. The boycott includes products made in Hong Kong and Taiwan province. Hurt the Chinese economy, and you will slap the Chinese to attention, forcing the brutes to fix the problem with spammers, etc.
Is this scary? I suppose, but is it realistic to believe that this is a truely new development. Vulnerabilities get exploited and there's nothing that can be done about that. Consumers need to be aware of them so that they can attemt to deal with them while a advisory solution or patch is in the works.
Moreover developers aren't always aware of a vunerability and they need to be. If people don't know about a potential exploit, both companies/developers and consumers alike, they will be affected more severly.
I am invisble, and you can't see me.
Another group of people is obviously conspiring to take over. I wonder if this is all related to the "Vast Right-Wing Conspiracy"? Or was that the "Conspiracy of the Liberal Elite"?
Microsoft should use the business model that's brought them where they are today, create a "virus" department in Redmond and beat these guys at their own game.
I can see it now: Active Virus (TM)
1. Make OS.
2. Build-in holes.
3. Release patches.
4. Create virus.
5. Still profit!
"All great things are simple & expressed in a single word: freedom, justice, honor, duty, mercy, hope." --Churchill
Axis of evil... or was it Axis of email...
Mistaking hacker for cracker is acceptable on the general media, where people aren't very aware of such subtleties. But on Slashdot? C'mon, I know Slashdot is crawling with Windows users, wannabes and such, but this is getting offhand!
Stupidity is an equal opportunity striker.
Fellow slashdotter Bill Dog
Sorry but some times they need reminding.
- This and all my posts are public domain. I am a Physicist. I am not your Physicist. This is not Physically advice
Parent == TROLL!
These are the same guys who were predicting an "Internet Meltdown" a little while back -- I'd take their prognostications with a grain of salt ...
1 53 3213&tid=172&tid=95&tid=1
http://it.slashdot.org/article.pl?sid=04/08/25/
all you have to do is either:
.EXE, .VBS, .COM. actually stop opening attachments period.
..... then at least buck up and take it like a man. you use windows therefore you get assraped.
#1 SECURE YOUR DAMN WINDOWS MACHINE! i mean holy shit, firewalls, hello, patches, hello!!!!! anyone remember something called security?
#2 STOP opening attachments ending in
#3 stop using windows. yeah yeah, i know, i have heard it. but my games only run on or software X only runs on
#4 go outside. nature rocks, but it wont rock forever. i mean comon, the replublicans are not only destroying our economy buy writing checks no governenment can cash, and also that no enviornment can sustain.
there is absolutely no evidence provided in TFA! worrying over this is comparable to worrying about the bum with the sign reading "the end is near!" in times square... jesus christ.
How can you trust such a non-trustable source anywany?
This will probably get modded troll, but please hear me out:
/.! Please check the definition of news:
Damn it
News
- Information about recent events or happenings, especially as reported by newspapers, periodicals, radio, or television.
- A presentation of such information, as in a newspaper or on a newscast.
- New information of any kind: The requirement was news to him.
This is not news! It's simply common sense that certain classes of people are going to conspire and associate with each other to some degree. Perhaps if the article was about a particular group of some importance, or interest it would be news, instead it's just another redundant research paper telling us what we already know. Outside of tech news, please imagine the headline "Safe crackers combine forces with bank robbers" appearing on the front page of any respectful publication, that's how stupid I think this is.
"good 'ol days"?????
You mean, "pissourpantsohshithereitcomeseverybodyrun 'ol days"!!!!
Hackers teaming up is nothing new.
.....please dont flame me I use linux I swear!
Most virus's are open source.
Quite possibley their the orignal open source community.
We all keep our PCs secure.. or should do. Then we make money off it, by fixing the PC's belong to who don't...
It's win-win for us. Lose-lose for the newbies.
I like muppets.
I can't beleive that I here this sort of talk time to time. People who are ignorant enough to beleive that anouncing vunerabilities are causing machines to be hacked.
Stupid stupid stupid.
Announcing vunerabilities is a GOOD THING. Otherwise most people won't know about it. Some of these spammers/virus makers/worm makers/script makers are as skilled as programmers as your going to find anywere and are perfectly capable of
discovering these vunerabilities on their own.
What we have to worry about is well funded, and well trained professional programmers being paid to find lots of people's computers to exploit will begin outstripping the white hats capabilities to discover these vunerabilities FIRST.
Beleive me, there are a lot of software out their that maliciously attacks computers in ways that MS and freinds are unaware of.
While not technically an OS, Windows 3.x flies on a Pentium 3 using Windows 9x's built in DOS (7.1) via a patch to the IO.SYS called OSR2fix. By default, NO ports are open on Windows for Workgroups 3.11 when I run the ShieldsUp test on grc.com. Among the other versions of Windows hooked to the Internet, Windows 95 is probably the next most secure operating environment with only port 139 open by default. Windows XP (again, unfirewalled) naturally has the most ports open.
die, microsoft, Die, DIE!
pr0n - keeping monitor glass spotless since 1981.
Although your user ID has crossed the six digit barrier, I would like to reward you with an honorary 5 digit UID for your fine work pointing out the old Slashdot vs. the new Slashdot. On the old Slashdot, it would've been cracker, but now... well, it's just sad.
Spam! Hack! Virus! Go Russians! By your powers combined, I am captain pain in the ass!
echo $SIG
Oh no, someone call the Superfriends!
P-1 CUR ALLOC=8,058,044,651 CALL GREGORY
LongTail SSH Brute Force analysis tool is here!
Any one else remeber when hackers were just the type of people that hang out at slashdot? The kind of peopel that might hack into your system, but wouldn't break anything, and then leave a friendly note explaining how to secure it? Now it seems the only image the public associates with the hacker sterotype is jerks like this writing spyware/virus/ddos bot/spam relay/etc crap. =(
like somehow using economic warfare to make someone pay attention isn't a rational thing to suggest?
This circumstance does have some advantages; by tying themselves together financially they open the possibility for one to be traced from the other.
It also opens the participants to criminal conspiracy charges. Can you say RICO, motherf***er?
"This is why vulnerabilities are so important," said Kaspersky. "We are against anyone who publishes vulnerabilities because it gives hackers a tool."
This pushes security discussion underground, but doesn't stop the bad guys, just leaves the administrators vulnerable and unaware. Very easy to spread this sort of propaganda however... hopefully it doesn't lead to laws being passed.
Cwm, fjord-bank glyphs vext quiz
If the attackers are getting that organized, they presumably can find their own vulnerabilities, instead of relying on published ones like the script kiddies.
I can't imagine how "slightly faster for casual browsing" justifies using Explorer. If anything, to maximize security, one should never use Explorer for casual browsing, and only use it to run Windows Update and perhaps other sites mandatory to doing one's job which use ActiveX controls. Otherwise use Firefox.
And for even better security, get a computer pre-installed with Safari.
I know I will be instantly flamed and modded as troll, but I'm starting to feel disgusted about this good versus bad scenario that's being used since 09/11 (or 11/09 for the rest of the world). Freedom versus Terror. The "good ones" versus the "bad ones".
Bad industry, in my opinion, is making use of software patents to suffocate small business. Bad Industry, in my opinion, is to spread lies about FOSS software out there. DMCA. DRM. WinXP (sorry...).
I just think that, outsourcing jobs back and forth and don't letting these hard-working jobless people create their own business, is the cause of this.
Too bad Microsoft created a crappy OS. Let's make money out of it (just like anti-virus companies, anti-spyware companies and others do).
I was going to use my name on this post... but I will post as AC. And, no, I'm not a "malware" developer. Just someone that find its funny for the software industry to blame the "bad guys" for all their mistakes.
quite an exposure
By the time someone with enough motivation (read funding) to write an article on a vulnerability does so, the bad guys have already written exploits. Why? For the same reason...they get paid!
The published articles allow the moderately tech savvy user to protect themself. Additionally, it forces the software makers' hand to close the vulnerability faster than if they had no pressure at all. Ultimately, this is our only way of shaming large companies into creating proper software and delaying the releases until they've created a more hardened product.
Yes, hanging out the dirty laundry of vulnerabilities makes it easy for the junior hackers to create something out of nothing, but I'd rather we all know about the problems at the same time than a few sophisticated spam hackers knowing about the problems for an indefinite amount of time.
Never go to sea with two chronometers; take one or three.
Probably not all that different, really. And there's also the possibility he may have been doing IT in the porn industry for much of it.
//Information does not want to be free; it wants to breed.
... no worries about catching any Win32 virii. :)
until even Firefox will be useless, because see they are gaining market share in leaps and bounds, which makes them a target for malware and exploits now. It's only a matter of time until only lynx will be safe.
//Information does not want to be free; it wants to breed.
Cost of a download of a linux distribution and a few cd-rs.
Small and medium size network need to rely on a Managed Network Infrastructure provider like Vistawiz (http://www.vistawiz.com) to defend themselves from such attacks, versus doing such intelligent fight inhouse.
By joining up, the malware author does exactly the opposite of what he needs to do to stay anonymous. It is easier to catch someone who communicates with colleagues about the very thing which he needs to keep private. By conversing about virii/trojans/etc, it is far easier for law-enforcers to monitor and hunt down these cybermischiefs and bring them to justice, Bill Gates's feet, a /. horde, etc.
Maybe it's just me, but it sure seems that a lot of the "doom and gloom" virus warnings come out of Kapersky.
Wasn't it just 6 months ago or so that they were warning of a big attack day from the script kiddies out there (Was a... Friday, or a Saturday it was supposed to happen - Can't recall which off-hand). It never happened, but you wouldn't have believed that from their press release.
Don't get me wrong... Kapersky's not the only one who feels that there's greater cooperation between the various virus/spyware/trojan writers out there, but they seem to always be the one using "shock" type campaigns to announce such things.
Perhaps they're hoping that one of these "apocolypse now" stories will someday come true, and then they'll get a bunch of new customers because they'll be the ones who foresaw the problem and tried to warn the world.
Or perhaps they're the ones writing the virus's in order to drive up demand for their anti-virus products... Who really knows at this point, but I don't see the McAffee's or Nortons of the world putting out these types of press releases. It's always Kapersky. Odd...
I guess people would be much more secure if they switched to Linux and configured a good SELinux policy. One that prevented webbrowsers and e-mail clients from modifying binary files like shared libraries and applications.It could also prevent files that was downloaded by webbrowsers or e-mail clients to be executed by root. Make sure that only approved applications that really needs it are allowed to open sockets or connect to the internet. That would make life very difficult to most virus developers.
Today, Red Hat Fedora Core 3 turns on SELinux by default. Unfortunately the policy is mostly targeted at servers. Perhaps they (and other Linux distros) should target the desktop as well in their upcomming releases.
The problem is probably that most windows users will not go the Linux road. Instead they are likely to apply TCPA strategies that not only will lock out virus writers but also the owner of the computer.
God is REAL! Unless explicitly declared INTEGER
"C'mon, I know Slashdot is crawling with Windows users, wannabes and such, but this is getting offhand!"
Mistaking "offhand"(sic) for "out of hand" is acceptable on Slashdot, where people aren't very aware of such subtleties. But IN the general media?
(Off-hand means "casually dismissive", ie "I can't stand Fry's, their off-hand attitude is getting out of hand")
Them commies over in Russia are the ones who are working together to hack the world and undermine good clean capitalist values! Of course the researchers know about it, THEY are the ones DOING it!!! Never trust a Russki. That's what my uncle told me. He was in Nam and he knows the score. He sida the problem with kids these days is that they have no sense of what it means to be an American. First and foremost you need to stand up proud and acknowledge that we never fell victim to commies here because we stood our ground. If some dirty reds came over here to start causing trouble, you better believe I'd lay down my life to support good christian capitalist Americans! Remember, don't EVER trust Russkis. Never.
Instead of chasing down the lone cracker who created the GreatNewVirus, authorities can now pley members against each other in order to infiltrate a group. They can offer rewards for ratting out other members, or bribe them with reduced charges/punishment in exchange for squealing. This is a good thing.
Computers are useless. They can only give you answers.
-- Pablo Picasso
... or perhaps it's hiding in desktop.ini? I can think of a few clever places to hide something like this.
Honestly, if you still have a Windows box hooked to the net, whether it's behind ten firewalls and under 3 different antivirui, you deserve whatever kind of horrific disease you get.
Windows needs Palladium. Not tomorrow or the day afterwards. Today.
Right now.
... the patch for Sasser when it came out. Then I burned it to a CD and transferred the patch off of Windows Update onto an XP box. There was absolutely NO way I was going to take the chance of exposing that XP box by logging on to the net to get the update directly.
I will never understand the "let's bury our heads in the sand" defense to security problems.
.. or naivety to believe that no one else has already found it.
It is either arrogance or naivety to want to surpress the vulnerability information from flowing...
Arrogance to think that only "good" people can find it
It is either arrogance or naivety to want to surpress the vulnerability information from flowing...
.. or naivety to believe that no one else has already found it.
Arrogance to think that only "good" people can find it
I will never understand the "Let's bury our heads in the sand" defense to security problems.
Comment removed based on user account deletion
... the binary pattern
0x01 0x01 0x20 0x05
has been found in many executable files on many different and diverse operating systems.
Users are strongly cautioned not to use their computers on January 1st, 2005!
[Editor's note: many more executables also match the less restrictive byte patterns
0x01..0x12 0x01..0x31 0x20 0x05
Using your computer on any day in 2005 may be dangerous!]
Because a cracker is a black-hat form of hacker, but one can be a hacker without being a cracker?
Cracker is a more accurate definition, and certainly this otherwise paints a bad name for hackers. But realistically, given the use of hackers to describe such users perhaps a better name for white-hat hackers would be appropriate...
"We are against anyone who publishes vulnerabilities because it gives hackers a tool."
Oh, bullshit!
I have heard this time and time again. Once again, the assumption is that virus writers and spammers only write after an exploit has been discovered and shown to them. I heard this after Blaster, I heard this after Slammer and, damnit, my firewall logs showed that these things were being exploited before any description of the vulnerabilities was released!
The problem is that you only see incompetents writng defective software that exploits the holes after they are found. I am of the opinion that competent writers have already taken advantage of the vulnerabilties before they were published; many times that is how they get found in the first place. Being competent, they wrote exploits that didn't advertise themselves after infecting a mchine.
To advocate NOT publishing vulnerabilties just prevents people from protecting themselves from being infected. For instance, both Blaster and Slammer did not require a patch from Microsoft to stop infection: simple port blocking at the firewall was sufficient. Would you have systems unprotected while Microsoft determined a way to patch?
It's nice to have a clunker around, though, it would be nicer if I could try getting online with it... Anyone know of any WFW 3.11-compatible DSL dialers (PPPoE)?
Moll.
What you hear in the ear, preach from the rooftop Matthew 10.27b
That's right keep them secret, keep them safe. So only the crackers and the uber-geeky know. And the little hairy foot developer can carry the exploit to mount doom before the evil minions of 50R0|\|666 get their hands on it.
How will we know what ports to block, what mutex to push via GPO, and what tools to use to prevent these attacks if we don't know about them beforehand?
1) spread fear, its good for business. ... We need to cooperate to prevent this.")
2) create some fucked up 'axis of evil' shit to help further #1. ("Virus writers are combining their efforts with hackers and spammers to launch Swiss Army knife-like malware attacks on users")
3) throw in some fuzzy math for effect. ("The company said that it was seeing 200 new viruses a day.")
4) take a random stab at preventing free speech. ( "They work in groups that exchange information with other groups on forums and Web sites
5) and finally, say something really stupid that goes against something tried and true thats trusted in the industry - in this case, the idea of Full Disclosure. ("We are against anyone who publishes vulnerabilities because it gives hackers a tool.")
and to think i actually used to respect their work. maybe they should just stick to coding and save the PSA's for when they have a smarter PR rep.
just my 2 cents.
smattawichu
Certainly. I personally use Trumpet Winsock on WfW 3.11. Some others use the dialer that comes with IE 3.03. Either should work fine on WfW.
But there is no way to actually verify that "Malware authors" are actually cooperating more now than in the past.
It clearly a "panic and run to us for help" article.
In these days of 0-day exploits, I just can't take the chance that someone will find a hole in ssh and create a Warhol-worm before I can install a patch. I sleep better now...
PHEM - party like it's 1997-2003!
A lot of these people already work for organized crime in Russia, Ukraine, and other countries in that region (and some countries in Asia too from what I hear). Organized crime sees the Internet as just another venue where they can run protection rackets. The hackers and script kiddies they employ on the Internet are synonymous to the ruffians and thugs they employ in real life to intimidate/beat people into going their way and paying up.
Yea - another reason why outsourcing is hurting us.. with so many programmers out of work in US and other places due to outsourcing, it's no WONDER there is never a lack of individuals that will jump on the chance to make a quick $25,000 by writing a virus...
Rent, Mortgage, and Car payments have to be made, and when one is 3 months behind in their rent and facing evictions, OF COURSE they are going to accept such an offer.
Use an e-mail alias. If your e-mail address is, for example foobar@someserver.com, create an alias for that mail account called, say, foo.bar@someserver.com, and use that e-mail address on public forums, registrations and web pages. When the spam gets to be too much, just cancel the alias and create another one.
I'm amazed that noone has figured this out yet. The defense against these viruses is software heterogeniety. Who cares if there's an Outlook virus if they're using Thunderbird? Or Firefox if they're using Opera? What we need to do is get enough people using enough different types of software to make it no longer worth an attacker's while to write virii -- hell, most web designers can't even get a moderately complex CSS to work properly on more than two browsers, you think anyone's going to write a virus that works cross-platform?
Just junk food for thought...
I have the RIGHT to know if the software I am using has a vulnerability, and I have the RIGHT TO KNOW IMMEDIATELY after its discovery so that I can take what ever steps are necessary to reduce or eliminate risks to my data, even if that means accessing the internet from a PC not connected to my network and running a LiveCD on that PC.
Rest assured, the black hats probably already KNOW about the vulnerability and are exploiting it to the fullest, even while proprietary software houses (MS) bludgeon security companies into silence. Some ID holes, for example, have been leaking for months and a few for years, yet MS refuses to acknowledge them, much less patch them, electing to grind more $$ from its upgrade mill. It's no wonder people got fed up and are switching to FireFox in droves. Many are also switching to Linux in droves too.
NO BUSINESS has the right to keep news of their vulnerabilities SECRET to protect their public image and/or bottom line. It should be an illegal act punishable by fines for the corporation and imprisonment for the CEOs, for aiding and abeting theft.
If this is true, it's a prime opportunity for law enforcement to infiltrate the newly-forming groups. Furthermore, unlike The Lone Hacker, these groups are going to be much more vulnerable. If just one of them is identified, the entire network will get done. As an added bonus for investigators, a confederation of specialised individuals will either:
1. contain some individuals that by virtue of not specialising in protecting their identities are going to be easier to catch
or
2. use best-of-breed tools produced by those specialising in staying anonymous and cleaning up their tracks. This is a double-edged sword for while it will make it harder to get the first individual in the chain, once you have one, you have them all.
Never mind that once they get caught, they're double screwed because not only will they get charged with whatever crimes they perpetrated, they will also be charged with conspiracy charges of all sorts. Given the current political climate, I wouldn't be surprised if terrorism charges were somehow included as a bonus >:)
This is not a flamebait or a troll.
I always had the suspicion that
virus writers worked together with antivirus firms, gee,, there won't be any need of antivirus if there were no viruses. I'm tempted to say that people inside Kaspersky are of the black hat kind.
..the world where you have to download worms and viruses, while updates and patches spreading like hell...
;)
_this_ would be scary
First, this article is mostly about security exploits and virus authoring, not spyware/adware.
In order to really liken this to organized crime, there would have to be some profit motive, so as to make the racket a worthwhile venture. For instance, if they were creating viruses and also selling anti-virus software, you could then demand protection money. It doesn't sound like these folks are offering protection to anyone, it's just a bunch of punks that collectively form SUPER-PUNK. If you were going to liken this to any crime form, it would be something more along the line of a hate group or terrorist organization. However it really pisses me off when people do that, so let's not.
I know this has been stated MANY times before in various ways, but if "closed source" truly is effective in preventing malware/hacks/virii simply because the source isn't available for anyone's inspection - then why do we see all the security flaws popping up with IIS? Meanwhile Apache has comparable market-share and usage world-wide on the net as a web server, and it is considered far more secure?
By the same token, Linux and BSD have been chosen as the platform many commercial firewall/router products are based on, despite being open-source. If open-source really had a "disadvantage", security-wise, by the mere fact that it's freely available code - then wouldn't you think companies like Netgear or Cisco/Linksys would steer clear of them in security-related network appliances?
Of course "exploits are expected to come out within hours of disclosure" - but that seems like a pretty general statement to me. Far more people with malicious intent are capable of slapping together some code based on a documented flaw than figuring out a previously undiscovered flaw and exploiting it. If you disclose a Linux or BSD security flaw, I'd say it's just as likely to be exploited quickly as a Windows flaw.
http://shit.slashdot.org/article.pl?sid=04/12/09/1 710212
Back when I did serious work (1997 or so), IT guys (LOTS of them former hackers and PC-geeks) had an informal code of ethics, which came down from the 'Hacker Dictionary' guys long, long ago. To reiterate:
'Hackers', while perfectly willing to use any means to tear apart and re-verse engineer software, hardware of any kind, etc. were ethically constrained from causing damage through their knowledge. Harassment of the powers that be, yes. The presentation of unpleasant facts, yet.
BUT, exploitation of knowledge for personal gain, definitely NOT. This doesn't just mean writing viruses, cracking systems for profit, breaking copyrights protection, etc.
Personally, I also took it to mean that one should not cynically exploit the ignorance of the public (and your bosses!) to line your own pockets. I put this in the category of war-profiteering or worse. I believe people in the medical professions might be familiar with this situation all so.
I got OUT of IT because I felt it was my mission to make the systems I was resposible for useful and secure; moreover, I spent a large part of each day trying to educate my users so that my job would be easier. I COULD have milked the job and told my people some bullshit that fed their mushroom-ness. I could have done the same to my bosses. I'd probably still be there and pulling in 60-70K a year, too.
Professional ethics used to mean something in the wider geek community. I don't believe that paranoia and greed will destroy it from within, but...
- - 'Go ahead, make my tea.' - Doow Tsae T'nilc -
Close. Actually, the two things you should do are:
1) Download and install Firefox.
2) Delete Internet Explorer (if you can).
On my computer, Internet Explorer is slightly faster for casual browsing than FireFox because Explorer is more tightly integrated into the operating system.
On my computer, I'm running Linux. IE is NOT integrated into the operating system. You can't see it, but I'm doing the Superior Dance.
If IE is integrated into your OS, there is a third thing you should do.
3) Upgrade to Linux or Mac.
I can't understand why everyone isn't more enraged by the fact that 80% of spam now comes from zombie Windows PCs. Lack of security hurts us all. As a society, we're far too complacent about PC security. We should take the attitude that a person's right to run an unpatched Windows box attached to a high speed cable ISP does not supercede the right of a million internet users not to drown in illegal V1aGr@ and warez spam.
>> My ultraviolent Linux switch video.
Ethernet socket driver for a simple ethernet card.
Trupmet winsock or similar to bind to the 0x60 DOS socket.
$20 router connected to your DSL to do the PPPoE login, as well as a bit of firewalling to any computers internally.
I would never suggest using a PPPoE utility on the computer when routers are so cheap and useful. Most DSL modems even have the router logic built-in nowadays.
Depending on which public you mean, this will actually work out to "within a few days of disclosure to the cracker public" and "before disclosure to the public in general, including to the company that makes the stuff".
Come to think of it, there are already examples. And I'm with the guy who says it's time to start working on a class-action suit against Microsoft for helping us push ourselves into this position.
"Also, what "new" cooperation tools are malware writers using to communicate with each other? I'm fairly sure that IRC, Instant Messaging, VoIP, Bulletin Boards, and e-mail have all been standard communcation tools for these people. Maybe the groups now have more members."'
Add VPN's and P2P to that soup. Distributed cracking tools, yum. Ain't technology grand?
I know I am going to hear from the Chinese karma police on this one, but does anyone have a list of all the Chinese IP space?
Perhaps we could start a grass-roots effort to disallow access from countries whose goverments aren't being responsible when it comes to their citizens respecting the rights of others in the online community?
Anyone have a list they could post or link to?
Sophos wants us to update our anti-virus software 8760 times a year. Once an hour every day, every year per computer (!) just to keep up with all of the variants of viruses.
mi2g? Well, they started calling vmyths a hate site. They need no further comment.
Use Evolution instead of Outlook? Bewa
Os life
1. Make OS.
2. Save money on doing the tests On the OS.
3. Add spyware to OS Yep Windows XP ships with Spyware.
3. Release Patches to fix exploted holes.
4. Stop providing updates after next os is developed
5. Virus writes have a party forcing update to the new OS.
This is to really Profit.
Have a router already; think something's wrong with it as it has been unable to connect to my provider lately.
Moll.
What you hear in the ear, preach from the rooftop Matthew 10.27b
Boycott? Here. Suck.
Ewps my bad, not front page content, rather the link in your .sig. The article's still date-stamped 3 days late...
Cole's Law: Thinly sliced cabbage
Yeah, good point. This is probably just another of those homeland-security hype projects. Criminalizing technology; exaggerating shadowy bogeymen.
It always was the hackers getting the exploit as soon as possible for the fun of it, or even sooner for criminal purposes. If spammers happen to be the paymast this time around... Nothing new here. Absolutely nothing new.