The diary over at the SANS Institute mentioned an interesting program today. Nepenthes is a program that can simulate a vulnerability so that it can collect samples of malware trying to exploit that vulnerability.
Month: August 2005
-
Make panoramic pictures with a digital camera (or any other)
There’s another great article at newsforge this evening. I remember seeing some time back a camera which took panoramic pictures. The photographer would hold it steady over his head and the camera would slowly circle around to get a 360 degree photo. In fact I think I remember seeing a large group picture where someone played with the idea and ran around to be in the picture twice.
-
Open Source Word Processor Roundup
Newsforge has a comparison up of three open source word processors. Abiword, Kword and the beta release of the write component of OpenOffice.org 2 are compared in this review. Abiword and OpenOffice.Org should both be available for Windows or Linux (or Mac) and Kword is primarily Linux (Mac OS X packages are available though.)
-
Nasty regedit bug
This is unusual, but it sounds like there is a bug in regedit (and regedit32) which prevents the displaying of unusually long registry keys. Now, that sounds innocent enough, it also prevents the viewing of keys entered under them. Again, ok not a crisis. Imagine if you had an extremely long registry key entered in the ….software/microsoft/windows/currentversion/run area? Annoying maybe? Ok, what if it were put there by malware? Oooooooh… that would be bad….
-
Google to acquire evil from Microsoft?
I’ve seen this article referenced a few places today, but there is a piece at the New York Times, essentially the piece says that Microsoft can relax, it’s time for Google to be the villain. There’s a joke that went around sometime back (maybe at April fools?), joking about Microsoft about to buy exclusive rights to evil from the devil. That supposed article interviewed the devil and had him recounting what a good offer Microsoft had made for the rights…. anyway…
-
Another Dumaru variant
Sunbelt has found another keylogger in the dumaru family and has updated their free tool to scan for it and clean it up. This is the same family of trojans/keyloggers that contributed to the large ID theft discovery they made earlier in the month.
-
Wishlist of spyware slime….
The sunbeltblog has uncovered a fairly interesting document. (Dated May 16 and originally in Russian) which appears to be the wishlist of a spyware criminal. (Slime was my own definition…)
-
More on Wireless networking security
Sunbeltblog has a flurry of posts today. This one muses on wireless networking (in)security. One of the points that they make is that there are “acceptable” levels of security depending on your circumstance. In other words, if you’re miles from nowhere and feel comfortable with WEP (which is breakable) fine.
-
More on the spyware front, should banks assume information is stolen?
Sunbelt blog is reporting on some of the countermeasures that some banks are starting to use to frustrate keyloggers. One trick is to request that your pin – number be entered in reverse or a specific order.