| 05'24 |
McAfee will not detect NetBus troyan, i.e. "remote administration tool"
|
| |
Network Associates anti-virus division McAfee has decided to stop scanning for
a Trojan called NetBus Pro, made by UltraAccess Networks, which allows a third
party to invade and take complete control over someone else's computer.
Troyan is called a "remote administration tool" by its maker.
It enables a remote 'administrator' to do anything s/he wishes on a target machine
with considerable stealth. NetBus is a favourite toy of malicious hackers and
script kiddies because of its economical price ($15) Imagine the
scene: malicious hackers pays $15 for NetBus. Hahahaha. Especially in Russia.
It would appear that McAfee wishes to cooperate with the efforts of employers
to monitor computer use surreptitiously. UltraAccess hopes that other AV companies
will not detect the troyan too. [MercuryCenter.com]
|
| | French "Liberty of Communication Act" will ban anonymous web-hosting
|
| |
New French law, hypocritically dubbed "Liberty of Communication Act", was
adopted by the House and being debated in Senate this week. This act bans
anonymous web-hosting, so every webmaster should mandatory state his personal
data when registering. If user gives fake name (show me the fool who states
his realname to different sites etc.), responsibility will lay on hostmaster.
Thus, french lawmakers spit further than Russian State Doom'a, which tried to
equate websites to publishing media. So, the law is almost passed. Mass virtual
emigration from .fr and french hosting is expected. All these shit begans almost
a year ago, when somebody placed on free webhost a nude photo of some model bitch
without her permission.
|
| 05'22 |
This week in cyberspace
|
| |
- In Canada, 16 y.o. hacker convicted for hacking NASA, Harvard and MIT in 1998.
Penalty is 240 hours of social working, one year of probation and lection in high school about "How bad hacking is".
- German govt. will not use MS Outlook anymore. Coz of bugs.
- New "I love you" strain appeared: "NewLove". Polymorphic.
- 16 y.o. student in Bashkiria (Russian Region) was arrested for spreading
troyan program. As Police Dept. said, he caused 10.000 Rubles ($350) damage.
As he repented and promised to not break the law, he was convicted to
administrative penalties, not criminal.
- 16 y.o. Yuri Zhelikov in Tula, Russia, was convicted for spreading a troyan
and stealing 52 passwords, including Tula Weapons Factory. According to
news agency, he was arrested during Internet surfing. The sentence was
1.5 years of "conditional imprisonment" (means not real imprisonment, but
visiting police dept. and not to break the law during the term) + 2 years
of probation.
- In Latvia, May 19th, state school math tests was cancelled because somebody
placed all test questions in Internet.
- Arkhangelsk, Russia. Another hearings for password stealing.
22 y.o. Alexey Galayko and 17 y.o. Ivan Petrichenko.
- Russian politicians failed to consider Internet sites as mass media to
registed and control it. Press minister proposed to consider as mass media
every site, which have less than 1 year renewing and has more than 1.000
visitors (unclear, daily or annually). This law was not adopted.
|
| |
Phillippines has no law against virmakers
|
| |
"I love you" author will not be pursued by police coz Phillippines has no such
law.
|
| 05'15 |
Third "author" of LoveBug virus suspected
|
| |
After questionning the two people, suspected in LoveBug virus creation,
poice have founded third one. 23 y.o. Michael Buen says he has not any
relation to the virus. So, no one was arrested or charged. Seems Phillippines
has no laws against virmakers and hackers. Parliament majority leader proposed
to adopt an antihackers law, which can punish hackers from 6 months to 3 years of
jail plus damage covering, but LoveBug author will not fall under this law
anyway, coz laws has no reverse action.
|
| | What is the HACKER ? Man ? No, it's a non-alcoholic drink |
| |
Surfing the Russian pop-magazine's "Hacker" site, I founded the photo of a beverage's can.
It was called "Hacker". Funny design solution - I thought. Next day I went to the shop
to buy some food and.. fucks!.. saw the same can there. "Hacker" costs a half-dollar, it's
non alcoholic and has mediocre taste - aromatized water. After some shock, I can understand the stupid
film "Hackers", I can understand the zine "Hacker", written in Beavis&Butt-head style.
But drink... It's "the end complete", dear beverages. Is anything kinda this shit have place
outside Russia ?
|
| | The Group of Eight met in Paris for 3-day cybercrime discussion |
| |
The world's leading countries - Britain, Canada, France, Germany, Italy, Japan and the United States and Russia -
reps. met in Paris for a 3-day cybercrime prevention discussions.
Govt officials, detectives and security experts will talk about antihackers law standartization
and methods to catch our brothers. Not massive February DoS-attacks organizer, nor LoveBug author were
caught. And that's good.
|
| | Two Russian college students will be jailed for Internet threats to nuke Europe |
| |
As ITAR-TASS news agency reported, two technical college students from small
town Kaluga, Moscow region, was arrested and convicted for threating to nuke
Europe. Humourous guys posted a message in Internet, signing by the name of nuclear
rocket military division. Message says that Russian Army Nuclear Rocket Division
officers, fubar'ed by bad financial conditions, threats to fuck up some European
cities if Russian government will not pay attention to their lives.
The fun begans when scared FBI and Austrian national police asked Russian
authorities, what does it mean.
Both was convicted by Article 207 of Russian criminal code - "fake messaging
about upcoming fuckup". One of em, underage, will not be jailed.
|
| 04'28 |
"I love you" virus had a sex with the whole world
|
| |
Mass-media still scream about "I love you" virus aka I-Worm.LoveBug.
Virus sends itself as VBS-attach. After opening it in mail client, virus
scans local and network drives and overwrites all VBS,VBE,JS,JSE,CSS,WSH,SCT,HTA,JPG,JPEG,MP2,MP3 files.
Besides it adds a record to the Registry (...\Windows\CurrentVersion\Run\ and RunService
MSKernel32 and Win32DLL). Files has VBS extension. Everytime when running,
virus sends itself via email, getting addresses from AddressBook.
Subject: "ILOVEYOU", attached file - "LOVE-LETTER-FOR-YOU.TXT.vbs".
Virus caused real epidemia, a lot of companies switched off email servers.
FBI and Phillippines ISPs are looking for author. We're wish success to the
author, press still screaming, new versions are coming out.
Yesterday we've read a lame article in "Financial Times". It says
MessageLabs, which runs a virus control centre for internet service
providers, reported that Microsoft's Outlook email program is particularly
susceptible because the virus is written in the same computer language
as Outlook. Lame source.
Alas, AV companies got a profit from virus epidemia. McAfee shares soared
26%, Symantec and Computer Associates - more than 4%.
|
| | ICQ threw away all children and "children" under 13 years age |
| | ICQ terminated all children and "children" under 13 years age from
its list. It was caused by new US law, protecting children from gathering an info about em in the Internet.
Interesting to know, does "civilized world" countries citizens really fill
all these stupid application forms with their real names ?
|
| 04'28 |
Group of Moscow carders who got $630.000 from stolen CCs via own e-shop was arrested
|
| |
Moscow police arrested a group of 5 carders, which used original way to get cash
from stolen CCs. They have opened own e-shop "Politshop" and bought goods on it using stolen CCs.
Since December'99 they got about 18 mln. Rubles (above $630.000), cleaned at least
5400 credit cards.
According to investigation results, 22 y.o. group leader, Mr. Levitin, chief executive,
opened the e-shop "Politshop". His companions got CC numbers by hacking other
e-shops, and then made fake purchases in "Politshop", receiving the real cash this way.
Levitin, 19 y.o. Sharikov, 19 y.o. Moscow Technical University student Pentin,
unemployeed Babochkin and 40 y.o. Beria were arrested.
[Prime-TASS.ru in Russian]
|
| | Ex-KGB (FSB) charged programmer in virus distribution |
| | Russian Federal Security Service (ex-KGB) department charged Alexey Yarkin, programmer from Kirov town for
virus distribution. (According to "Echo Moskvy" radio), he was charged for
creating and setting up the virus on company server, being employeed by this company. So,
every site visitor was able to control the server (other sources said every visitor got a virus).
Sounds like Back Orifice. Criminal code paragraph 273 - "Creation, usage and
distribution of harmful programs for Electronic Computing Machines" specifies up to 3 years of
imprisonment and up to 500 minimal($3) monthly earnings, or from 3 to 7 years of
imprisonment in case of high damage.
|
| 04'27 |
European Commission intends to ban anonymous email
|
| |
"The European Commission is set to push for the abolition of anonymous e-mail which, its claims, is used by criminals.
The move should be recommended by the European Parliament's Committee for Citizen's Freedoms Rights, Justice & Home Affairs,
in a bid to help online surveillance of criminals across Europe. If the recommendations are approved, this will more or
less outlaw anonymous e-mail communications across Europe" [TotalTele.Com]
|
| |
US ISP flooded for some hours
|
| |
US ISP AboveNet was flooded for some hours in April,25th. So, users could not
connect to its accounts. Company staff claims that this attack was smarter than
ones, happened to others. He said it was targeted to company infrastructure.
|
| | Intel to remove CPU ID in 1.5 GHz Willamette chip
|
| |
Intel to remove CPU ID feature from its new 1.5 GHz Willamette chip, fearing
the boycott. Intel has already implemented CPU ID in Jan'99,
but then was urged to remove it after privacy activists began a boycott and
chinese govt. said it will not use marked CPUs.
|
| 04'20 |
Australian CERT afraids that hackers can claim Copyright on tools
|
| |
Australian CERT afraids that hackers can file a lawsuit against those who has disassembled hacking tools to
prove its malicious function in court. So, AusCERT started talks with lawmakers to close this law gap.
According to Copyright law, software can't be disassembled until author permit to do this.
[AustralianIT]
|
| |
15 y.o. Canadian hacker Mafiaboy charged with CNN DoS attack
|
| |
Canadian authorities obtained a search warrant for the teen's home in the
Montreal area over the weekend and confiscated computer-related equipment
suspected of being used in the February attacks against major Web sites in
the U.S. Mafiaboy, whose identity is protected under Canadian law, was
arrested on April 15 and charged with "two counts of mischief to data" for
the attack that jammed up to 1,200 CNN-hosted Web sites for four hours Feb. 8
[ABCNews]
|
| |
Moscow Comtek exhibition got an "unexpected emergency" yesterday
|
| |
Moscow annual computer exhibition "ComTek" was closed yesterday after 1 p.m. because of
phone call telling cops about bomb on it. Visitors "urgently" left the show during 2 hours,
loudspeakers repeated phrase about (original english text) "unexpected emergency".
Besides of business and promo action, ComTek is also known as great gathering of lamers,
especially FIDONet members, looking for freebee CDs etc.
|
| 04'08 |
ISS's application will allow websites to scan users' PC for troyans
|
| |
"ISS has developed an intrusion-detection application, code-named Bullet,
that lets e-commerce companies scan a Web site visitor's PC to see if it is
infected with Trojan horses, such as Back Orifice, or viruses that could be
passed on to the e-commerce site." [CNN]
Thus, your disk (?) will be scanned everytime you entering the site. Sounds interesting,
especially a) scanning time; b) is dummy user able to understand whether "correct" scanner
working with his PC or "slightly incorrect". Btw, CNN seriously thinks that's cool.
|
| |
id Software isn't responsible for real-life Quake sessions
|
| |
"Quake-maker id Software is not guilty of producing games that warp
children into mindless killers, a US court ruled yesterday.
The $33 million case was brought by parents of kids killed by fellow pupils
at the Heath High School in Paducah in 1997. They alleged that, as a keen
player of violent computer games, killer Michael Carneal was essentially
re-enacting what he had seen on screen. In that respect, they claimed, the
likes of id were responsible for the killer's actions."
[TheRegister.co.uk]
Parents of killed little monsters will appeal court decision. Last year Brazilian
court banned bloody games distribution in this country. Quake, Blood, Carmageddon are
among banned ones. Btw, did you play Q3 ? Looks very politically correct in
comparsion to Q2 - unless liters of blood spills, it looks like a cartoon.
was it worth to improve graphics quality ?
|
| | Hong Kong has probed an antihackers criminal code.
|
| |
"A Hong Kong teenager has been sentenced to six months in jail for hacking
into the Internet in the first case of its kind in the territory, a report
said Thursday." [NandoTimes]
|
| |
"Napalm#4" ezine issued
|
| |
In April, 5th, "computer security, music, news and ethics" Napalm#4 e-zine was issued.
It looks like h/p/v/a zines of '80-early '90s - single text file with 2 large articles -
the first describes music frequencies and looks interesting, the other is Solaris 2.x security advisory.
One of advices looks very clever:"Close all services that you don't need".
|
Vx 
