Friday 30 November 2007

Faces come out of the rain

To Facebook or not to Facebook (or MySpace)! Cory Doctorow is clearly playing his hand with this article.
http://informationweek.com/shared/printableArticle.jhtml?articleID=204203573

It is no doubt that security and privacy concerns are rife.
http://news.independent.co.uk/sci_tech/article3191510.ece
http://news.independent.co.uk/sci_tech/article3187110.ece

So remember kids don't Facebook! Parents can get an account too you know, and do you want them seeing the photos of you at that crazy party last week over at Ron's house doing shots of tequila when you were meant to be doing an essay on the life cycle of a chinchilla? I didn't think so.

Dry Roasted Bots!

The FBI stoke up their fires, roast 1 million bots and grind 8 botherders! What I find interesting is the fact that these guys' (Anybody know of any female botherders being arrested?) personal details have been posted on the blog below. Not one for the CV chaps!
http://www.networkworld.com/community/node/22413

FBI press release about Operation: Bot Roast
http://www.fbi.gov/page2/june07/botnet061307.htm

Also whilst researching the blog entry I found the term botmaster, which made me chuckle!

Thursday 29 November 2007

The Russian Business Network (RBN): legitimate business or cybercrime service provider?

David Bizeul has written a real eye opening report, which is available at:
http://www.bizeul.org/files/RBN_study.pdf

Firefox security extensions: FireCat 1.3 released

FireCAT is a mind map collection of useful Firefox security oriented extensions. Version 1.3 was released this week:
http://www.security-database.com/toolswatch/FireCAT-Firefox-Catalog-of,302.html

Download the browsable HTML version, or use the free mind mapping software Freemind:
http://en.wikipedia.org/wiki/FreeMind

Mandiant Tools

Some great free tools:
http://www.mandiant.com/software.htm

  • First Response: Gathers information for forensics purposes.

  • Web Historian: Reviews browser history from most common browsers: Microsoft’s Internet Explorer, Mozilla, Firefox, Netscape, Opera and Safari

  • Red Curtain: Examines executable code and gives it a "suspicious" rating.

Fiddling Web requests...

Fiddler allows the inspection of HTTP Traffic, set breakpoints, "fiddle" with incoming or outgoing requests and responses, as well as a scripting environment:
http://www.fiddlertool.com/fiddler/

Hackers hijack web search results

News fresh in from BBC's news site, Criminals poisoned search results:
http://news.bbc.co.uk/1/hi/technology/7118452.stm

I wonder if this was timed for "Cyber Monday". The Monday after Thanksgiving in the U.S. is meant to be the day which sees the highest amount of goods purchased online:
http://redmondmag.com/reports/article.asp?EditorialsID=615

Wednesday 28 November 2007

Hacking as a service?!

There is a three part article:
http://www.cio.com/article/135500/
http://www.cio.com/article/135550/
http://www.cio.com/article/135551/

The first one includes a video actually showing the 76service itself.

There are some details on how Don Jackson from SecureWorks gathered information on the Gozi Trojan at:
http://www.secureworks.com/research/threats/gozi/

If you want to read more about iFrame and how they are being used see:
http://www.cio.com/article/135452/

Hi and welcome to Decipher Dump

Hi and welcome to Decipher Dump,
We feel passionate about most things related to computer security. We are always sharing with each other links, news, articles, research papers, etc... We decided to create a blog instead, to house stuff as and when we come accross it. We may also decide to post our own opinionated ramblings.