Slashdot Mirror
ShadowBrokers Releases NSA UNITEDRAKE Manual That Targets Windows Machines (schneier.com)
AmiMoJo shares a report from Schneier on Security: The ShadowBrokers released the manual for UNITEDRAKE, a sophisticated NSA Trojan that targets Windows machines: "Able to compromise Windows PCs running on XP, Windows Server 2003 and 2008, Vista, Windows 7 SP 1 and below, as well as Windows 8 and Windows Server 2012, the attack tool acts as a service to capture information. UNITEDRAKE, described as a 'fully extensible remote collection system designed for Windows targets,' also gives operators the opportunity to take complete control of a device. The malware's modules -- including FOGGYBOTTOM and GROK -- can perform tasks including listening in and monitoring communication, capturing keystrokes and both webcam and microphone usage, the impersonation users, stealing diagnostics information and self-destructing once tasks are completed."
I'm sorry, but the self entitled whining by Americans that some other entity might have hacked US machines, in the light of shit like this, is utterly pathetic.
Fuck you and your American Exceptionalism. You have literally made yourselves a fair target, by deciding everyone else is a fair target.
Americans are a special branch of childish whiny cunts who think it's fine when they do something, but decry it as evil when someone else does it to them.
Fucking country of snot-nosed wankers sitting around feeling entitled.
Self-destruction? A complete self-uninstall - no registry entries left behind, no temporary files, DLL's lurking in system32, no empty folders?
It's miracle software. NSA - sell your uninstaller and you can pay off the US National debt.
Recycle PCs and build a wireless community network www.hillsborough.org.nz
Uni Ted Rake?
Unit E D Rake?
Unit E Drake?
Unit Ed Rake?
Unite Drake?
United Rake?
Everyone ready for the next round of ransomware/malware? Here we go! Thanks NSA!
notice win10 is not on the list :) /duck
because NSA doesn't need undertake, spyware is baked in
except dumb remote access keystroke extensions.
We already know Windows security is crap which is why malware for Linux systems would be far more interesting.
Anons need not reply. Questions end with a question mark.
Computers are insecure. They run software. Software can do anything the programmers wants it to. The operating system doesn't matter either. Why do people expect computers or the Internet to be secure? They aren't.
they deserve what every they get. After almost 25 years of problems with Windows NT, I don't understand why anyone still uses it.
NSA for having their stuff stolen and published.
Microsoft for making the shipping the bugs that made it all possible.
The sad thing is that neither seems much concerned.
We all know he started from the bottom.
The most common vector is a PDF file.
Oh shit.
Just ask Slashdot.
Anybody that believes Microsoft's claims that Windows is secure needs this reality check.
Why do they need unitedrake when they have AMT? https://en.wikipedia.org/wiki/...
"Contact Software, Inc.
12345 Main Street â Suite 100
Phone 123.456.7890 â Fax 123.456.7890"
No city or state provided.
Seems legit.
2012R2 OK ?
Yea NSA has Linux covert malware, too. Since 2003 or so, based on "kis: kernel intrusion system" publically disclosed at Rubicon atlanta 2004.....
It's fawqin ereet++! -helo
I have downloaded the PDF manual. PDF document was either slightly modified or was an intentional fake news, because I noticed more than 5 red flags on why this PDF manual is so wrong or built as an intentional propaganda to mislead the public.
Good try, though.
Armed conflicts are an extension of these covert politics. Or what do you think would happen if a foreign nation would start to eliminate NSA and CIA operatives one by one for doing shit like this?
There would be yet another war to "bring freedom and democracy" on false premises. And after the war there would be still more youtube videos showing stupid tools coming back home from war, welcomed by their dogs.
No one in US is ignorant except the dogs.
If Win 10 turns out to be spyware for a governmental agency, I will be inclined to think of Microsoft as a threat equal to that of the proverbial enemy combatant. Why should I feel safe or indifferent with a warring faction like US basically targeting me as a point of interest, if that is how things are set up.
What a terrible world, no privacy and bad computer security. What is seems to be, with nation states having run amok, with wars and espionage, and maybe even worse things.
What does this one exploit?
What, you think I am opening a PDF on this computer? Are you nuts?
I have no access to a machine I can nuke after opening it.
Lies. APK can't remove his malware and spam
Want to do the same thing with out the users knowledge? Windows 10 has these features already included.
See subject: It's easy using startup area enumerators like AutoRuns 1st & ProcessExplorer (addtionally exposes libs called beneath services etc. in usermode which you rightclick on (use DLL View panel/subpanel) & 'freeze' (HLT instruction stream intercept) & delete it on disk - kill process, can't return).
Lastly vs. rootkits?
Windows bootup disks (CD/DVD whatever) have disable command vs. driver driven rootkits, & FDisk vs. bootsector originated ones...
APK
P.S.=> As to that last part? I use what the inventor of those 2 tools above all "The best Windows, ever" & he was right - it let's me do all that, no bullshit, easy - it works... apk
See subject: APK Hosts File Engine 9.0++ SR-7 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/ = Safe https://www.virustotal.com/en/file/e01211ca36aa02e923f20adee0a3c4f5d5187dc65bdf1c997b3da3c2b0745425/analysis/1433430542/
APK
P.S.=> Fact puts liars like you who stalk & harass me right away with ease & there's NOTHING you can do vs. it (but try to "downmod hide" these facts & I just repost it until you run DRY of your effete little 'downmodpoints' & I win, as always - & you KNOW it, lol)... apk
Will Kaspersky protect me from this?
Can anything stop your spam?
See APK is a liar. He continues to spam and he is malware on the human race. He can't address the point I made so instead he decides to prove he is a spammer and can't wait to trot out his child's toy of security solutions. As always APK lost, more so when he says he wins because at that point he has admitted he doesn't have a real argument. He whines like a mule although I would rather listen to one of those all day than have to see APK's spam. I didn't downmod you that was someone else who was probably sick of seeing you crap some words onto a page. No one should downmod you because it prevents others from seeing you for the bullshitter you are. No go write to Kim Komando and see if she might endorse your software as I would advise anyone to believe her on security issues over you which isn't saying much.
Are you suggesting that Windows VMs are only supported if the virtualisation platform is Hyper-V? I wonder how all the VMware users manage to get Windows support.
You're too stupid to understand how virus, worm, rootkit work. Go away!
Malwarebytes hpHosts' hosts/RECOMMENDS me!
Aryeh Goretsky/ESET/NOD32: hosts = good security http://it.slashdot.org/comments.pl?sid=7442373&cid=49747129/
Oliver Day (SYMANTEC/SECURITYFOCUS) http://www.securityfocus.com/columnists/491/ "Host file accessing the Internet - particularly browsing the Web - is actually faster... Spybot Search & Destroy offer lists of known malicious servers to add a layer of defense against trojans & other forms of malware"
OReilly hosts security -> http://oreilly.com/pub/a/windows/2004/03/30/hosts.html/ & hosts speed -> http://www.oreillynet.com/pub/a/network/excerpt/winxphacks_chap1/index1.html?page=3/
Steve Gibson endorses hosts https://www.grc.com/sn/sn-045.htm/
APK
P.S.=> China = imitation = flattery http://www.theregister.co.uk/2017/04/26/boffins_supercharge_the_hosts_file_to_save_users_plagued_by_dns_outages/
I'm going to continue using the Host File Engine. Your software is well written, functional. The Host File Engine performs exactly as promised by mmell
his hosts program is actually pretty good by xenotransplant
his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources by alexgieg
(APK's) work, I've flat out said it's good by BronsCon
I've tried his hosts file generating software. It works by bmo
APK your posts on this & the hosts file posts, and more, have never been in error &/or bad advice by BlueStrat
Your premise that hostfiles are a good way to deal with advertising & malvertising is quite valid by JazzLad
I like your host file system by Karmashock
(NEED MORE? Ask!)
* It's recommended/hosted by Malwarebytes' hpHosts!
APK
P.S.=> China imitated me http://www.theregister.co.uk/2017/04/26/boffins_supercharge_the_hosts_file_to_save_users_plagued_by_dns_outages/ ... apk
See subject: You're lucky I didn't choose to write them (instead choosing to write ware protecting vs. them APK Hosts File Engine 9.0++ SR-7 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/
* ... & I've used the technique I noted on 1,000's of systems worldwide to remove them (worked every time without fail).
APK
P.S.=> All you have is your off-topic UNIDENTIFIABLE do-nothing anonymous "ne'er-do-well" bs stalking me & downmods of my posts to try "hide them" - too bad I run you DRY of those 'downmodpoints' by reposting https://yro.slashdot.org/comments.pl?sid=11101321&cid=55180995/ utterly NULLIFYING your sorry ass, lol... apk
"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)
/.ers clearly disagree along with https://yro.slashdot.org/comments.pl?sid=11101321&cid=55187331/
* Would you like more? Ask & "ye shall receive" (to your public dismay).
APK
P.S.=> Of course, an UNIDENTIFIABLE anonymous do-nothing "ne'er-do-well" WORM like you can't manage those things (but I can & DO, with ease) - all you have is your effete easily nullified overriden 'downmodpoints' I run you DRY of easily by "yours truly" reposting to do so... apk
Apparently APK needs to lie some more. China didn't imitated him but he really wants to believe that his work is worth copying so he just keeps repeating the lie hoping that it will become the truth.
See subject: China did hosts hardcoded favorites in hosts AFTER me for avoiding DNS being down/exploited (I did it before them). This also avoids DNS request log tracking, lightens DNS loads (bonus), & speeds up your websurfing where you spend MOST OF YOUR TIME online at, resolving faster properly from local system ram avoiding DNS turnaround time for resolutions too.
APK
P.S.=> You haven't done better & all you can do is attempt to laughably stalk & harass me by UNIDENTIFIABLE anonymous troll posts - typical for a do-nothing "ne'er-do-well" like you (when you run out ouf 'downmodpoints' which I always run you DRY of inevitably & I simply repost nullifying your WEAK efforts as always, lol - you can't win vs. me, ever)... apk
First, I don't do that & Second, you PROJECT you do. You WISH I were fruity but you've been disappointed: I'm not a homosexual.
APK
P.S.=> Of course, you're welcome to give me guff directly to my face in person vs. UNIDENTIFIABLY anonymously as you do, cowardly whimp... apk
See subject: It's easy to remove any malware type using startup area enumerators like AutoRuns 1st & ProcessExplorer (addtionally exposes libs called beneath services etc. in usermode which you rightclick on (use DLL View panel/subpanel) & 'freeze' (HLT instruction stream intercept) & delete it on disk - kill process, can't return).
Lastly vs. rootkits?
Windows bootup disks (CD/DVD whatever) have disable command vs. driver driven rootkits, & FDisk vs. bootsector originated ones...
APK
P.S.=> As to that last part? I use what the inventor of those 2 tools above all "The best Windows, ever" & he was right - it let's me do all that, no bullshit, easy - it works... apk
See subject: HOW can I be "in the closet" when I told you I was not a homosexual?
APK
P.S.=> You are NOT my friend UNIDENTIFIABLE anonymous troll that constantly stalks & harasses me (Or tries to, failing always)... apk