Man... what is this today? "Attack Day" or something??

Being the 'harbinger of more bad news', but it's needed imo, to spread the word... take a peek:

Virus writers target web videos:

http://news.bbc.co.uk/2/hi/technology/6100016.stm

--------------------------------------

"Security firms are reporting more and more instances of booby-trapped Windows codecs - file compressors - required to play some video formats. Some of the codecs let users play types of net-based video, but also have spyware and adware wrapped inside. Others, say experts, are outright fakes that just want to infect victims with data-stealing programs."

--------------------------------------

Crazy!

This one, it's why I did a post a bit back on "which CODEC pack do you use" etc. because I had heard some of them ship 'bogus' stuff in them, like this article alludes to!

:(

* Take a read, & be careful of the codecs you use guys... what I do wish is that SOMEONE out there who is a combined multitmedia fiend & security guy would do a thorough investigation of some of the CODEC packs out there folks use, & tell us which one is safe, & which ones are not!

(This article fails in this capacity, by NOT telling us which ones are safe & which not, but still, it's something to be aware of)

APK

This happens everyday, because people don't update their machines with patches. They get all get new infection daily. I think that holes shouldn't be broad-casted over the net. That way other hackers wouldn't know about it.

Well it is all hallos eve (halloween :)).
I guess they figure why not cause a lil chaos.
I am prob. staying off my comp. today (except here at work obv.).

3 Reasons why:
1. Just as a precaution.
2. I dont have any time today
3. Bc candy tastes good lol

This happens everyday, because people don't update their machines with patches. They get all get new infection daily. I think that holes shouldn't be broad-casted over the net. That way other hackers wouldn't know about it.

That's largely how MS looks @ it... but, imo? It's important to get the word out about these so Ms CAN do something about it.

A 'catch-22' situation...

:(

* The ones that spook me the most are the guys that DON'T talk about holes they know about... AND, rootkit based virus/malware/spyware etc. that is now coming around the wire the last year or so.

APK

P.S.=> The ONLY thing that really keeps me online is program updates (stuff I use, as I would like to have the latest/greatest versions of freewares I use), & of course, technical news about this field... but lately?

I've SERIOUSLY been considering going offline as well... It seems for all the security measures you can take? More things come up you can't defense against, or things that take advantage of things like your OS Services & holes in them (or apps like your webbrowser itself), which you can't defend against either...

I am of a viewpoint that it NEEDS doing, exposing the holes, & forcing software makers of ALL types (from freeware to shareware, to commercial oem's like MS etc.) to do something about it as it IS their "rep" & all that... but, then again, once the cat's outta the bag on how these things work?

Apparently, many folks actually DO implement them... that's nuts imo!

EDIT PART: Heh, maybe you're right bruins004... apk

The problem lies in users with lets say XP sp1 they will not get any more patch updates. When someone says hey look at this hole, those type of people jump at it.

Then there are the people that turn off automatic updates and only know how to open up Internet explorer that's it. Then they use their credit cards and everything else on the PC. That's were the ture problem lays people that don;t know better. Maybe vista will stop a lot of this for noobs.

ActiveX to me is the worse thing ever to happen to the web, I know thats where the worse spyware happens daily.

The problem lies in users with lets say XP sp1 they will not get any more patch updates. When someone says hey look at this hole, those type of people jump at it. Then there are the people that turn off automatic updates and only know how to open up Internet explorer that's it. Then they use their credit cards and everything else on the PC. That's were the ture problem lays people that don;t know better. Maybe vista will stop a lot of this for noobs.

Ignorance is bliss... NOT! It's vulnerability... I agree. BUT, most folks, like pals of mine, when I try to explain what one calls "the nuts & bolts" of things computer? Don't want to know... that's their OWN fault.

BUT, there are things in this life I am like that about too...

ActiveX to me is the worse thing ever to happen to the web, I know thats where the worse spyware happens daily.

Java & JavaScript + ActiveScript count here as well, imo @ least... I turn them OFF in all of my browsers unless SOME site demands I use 'em... otherwise?

Relegate them to INTRANET zone usage only, like inside your corporate network for various internal/in-house apps, for SOME relative measure of safety @ least!

APK

yea got one the other day from watching fluffy bunnies :D

One other question arises in my mind. What EXACTLY "is" the punishment if one is caught doing this kind of dirtywork. Apparently the punishment isn't severe enough. Here is an idea that would probably stop people from ruining or otherwise destroying (for a couple of years anyway)someones life. When someone is found guilty of planting malware, they should lopp off his member then sew it onto his forhead, Except sew it on in such a way that whenever he gets aroused it just flops right into his mouth. Then he can walk around like the c*cksucker that he is. Sounds harsh, but I think there would be a "drastic" drop in malware creation and execution:shadedshu

One other question arises in my mind. What EXACTLY "is" the punishment if one is caught doing this kind of dirtywork. Apparently the punishment isn't severe enough.

I think it largely depends on the circumstances of the 'attack' & whom is involved, & if monetary (realistic ones) can be assigned... like so much else in life? It all boils down to the dollars & cents.

Plus, it's not all that simple to "prove' some of this stuff... look @ how long Kevin Mitnick ran around the so-called "cyber-samurai"... he had the advantage of 'surprise' on his side really.

Another really INTERESTING read (that is a true story of such a thing that was on the "best seller's lists") was a book called "The Cuckoo's Egg" by Cliff Stoll...

Nobody from local law enforcement, straight up to the FEDS, would believe him when he was seeing hackers from East Germany, in the employ of the KGB no less, walking across the oceans on the trans-atlantic cable, penetrating UNIX systems hooked into academia, then RIGHT into our military bases (one being one my brother was stationed @, not @ same time, but Ft. Stewart Richmond Hill Ga.).

He kept logging it, & what proved it? Students work... a secondary logging system KIDS designed, because even though the hacker/cracker teams wiped the std. logs the OS used, that secondary system was catching them in the act, along w/ Stoll's unique use of a printer logging it all into hardcopy.

Here is an idea that would probably stop people from ruining or otherwise destroying (for a couple of years anyway)someones life. When someone is found guilty of planting malware, they should lopp off his member then sew it onto his forhead, Except sew it on in such a way that whenever he gets aroused it just flops right into his mouth. Then he can walk around like the c*cksucker that he is. Sounds harsh, but I think there would be a "drastic" drop in malware creation and execution:shadedshu

Man... remind me NEVER to make you angry... lol!

:)

APK

I think it largely depends on the circumstances of the 'attack' & whom is involved, & if monetary (realistic ones) can be assigned... like so much else in life? It all boils down to the dollars & cents.

Plus, it's not all that simple to "prove' some of this stuff... look @ how long Kevin Mitnick ran around the so-called "cyber-samurai"... he had the advantage of 'surprise' on his side really.

Another really INTERESTING read (that is a true story of such a thing that was on the "best seller's lists") was a book called "The Cuckoo's Egg" by Cliff Stoll...

Nobody from local law enforcement, straight up to the FEDS, would believe him when he was seeing hackers from East Germany, in the employ of the KGB no less, walking across the oceans on the trans-atlantic cable, penetrating UNIX systems hooked into academia, then RIGHT into our military bases (one being one my brother was stationed @, not @ same time, but Ft. Stewart Richmond Hill Ga.).

He kept logging it, & what proved it? Students work... a secondary logging system KIDS designed, because even though the hacker/cracker teams wiped the std. logs the OS used, that secondary system was catching them in the act, along w/ Stoll's unique use of a printer logging it all into hardcopy.



Man... remind me NEVER to make you angry... lol!

:)

APK LOL. Nah, man we get get along just fine.:D

yea got one the other day from watching fluffy bunnies :D

Is fluffy bunnies some kind of code for circusfreakporn.com?


and I dont think thats a real web sight