Favorite Files

No favorite files added yet

Recent Posts

1. Comment - Spam and Malware Detections at 100,000 per Hour

   (May 17, 2005 - 6:24 PM)

   Your statement applies to the whole internet. The infrastructure was not designed with 'policing' in mind.
   
   An effective anti-spam solution works!

2. Comment - Spam and Malware Detections at 100,000 per Hour

   (May 17, 2005 - 6:22 PM)

   Some ISP's do. Mine for example (www.eircom.net) does.

3. Comment - New Sober Worm Begins to Spread

   (May 3, 2005 - 7:53 PM)

   Sober uses the up and coming world cup for 2 reasons.
   
   1: Social engineering
   Football is the worlds most popular sport and football fans are passionate about the game so it is easier to arouse their interest in a football orientated email. The massive size of the football audience makes it an attractive target for the worms author.
   
   2: Sober's author is German and since the next worldcup is to be held in Germany it's a topic of current affairs. The worm has always sent out emails in two langauges, English and German depending on the recipients domain. For exmaple gmx.de domains will receive an emailed copy of the worm with German text.
   
   P.S. The reason McAfee's Stinger tool was renamed st1nger is due to the fact that the worm is programmed to terminate processes with the word 'stinger' in them. This of course would prevent disinfection using McAfee's stinger utility. It also uses file locking techniques to prevent tampering with the worm making disinfection a little bit more difficult.
   
   Regards, Ian Kenefick
   http://www.ik-cs.com