Some interesting stuff for your eardrums can be found here - the Pipeline worm gets a mention too. From the blurb:
Jason and Keith talk about the winners in the Motorola-Symbol deal; more battery recalls involving Sony; a new AOL IM worm that has obvious red-flag warnings; Russian porn site security risks; Life is (Not) Good; iTunes million dollar movie week; and, the continuing HP spy saga. Plus Pigskin Pick'em! (32:39)
I think it's about 13MB in size, or thereabouts, fact fans.
Also...some lyrical waxing on the current state of IM Security here.
A while ago, I presented for your listening pleasure Part One of "Spyware Warriors in the Digital Underground" - you can see the linky sitting right up there at the top of the page. Well, somewhat to the left and down a bit to be accurate.
In any case, get ready for Part Two. Contained within, you will find the following tasty morsels:
0:00 - Introduction 1:02 - How and why would major advertisers fund criminals? 2:04 - The Problem: brokers of ad brokers of ad brokers 2:34 - The connection between performance advertising and botnets, fraud 4:58 - Risk levels of cost per sale vs. cost per click vs. impression/CPM 6:28 - How brands are affected 7:16 - A new form of cost per click fraud? 9:19 - Small but widely distributed click fraud botnets may prove highly problematic 11:30 - Enterprise risks to botnets 11:48 - The potential for a new form of click fraud 13:44 - Web marketing, becoming less efficient and dangerous for brands 14:52 - "Botnets can be used for pay per click fraud" (Porter) 15:10 - Learn from the Past: AllAdvantage "get paid to sleep" 17:05 - New SpywareGuide.com blog 19:15 - Funny story: "Mr Bean" movies among badguys 21:31 - Closing remarks
Okay, pressing questions? I'm pretty sure I mentioned some pressing questions in the title.
...look, I know not everyone likes podcasts. And I know not everyone has the time to listen to a bunch of guys talk about things and stuff. I understand.
If the above sounds like you, you'd best wander over to Spywareguide.com and check out the transcript of the recent Podcast Wayne Porter and I participated in. And if you're still unsure about listening to the real deal, the link is over there. On the left. No, not that one...the one above it. No....gah, look just click here. And put some headphones on. Otherwise you'll get busted at work. Mind you, whipping out some headphones at work will probably look suspicious too.
Okay, I hyped this thing up a couple of times last week - and now, Part 1 has been put out in the wild. Sometimes my voice drops out, but that's what happens when you get interviewed while sky-diving with no parachute. If you want to hear Wayne Porter and I wax lyrical on some of our previous busts, along with some other tasty morsels, get on over there to hear about the following subjects:
00:01 - 02:37 Introduction 02:38 - 04:08 What does Facetime do and for whom? 04:09 - 05:19 What is a botnet network? (Boyd) 05:20 - 06:11 What are hackers and e-criminals motivations? (Boyd) 06:11 - 07:54 Things changing for the worse; paradigm shift (Porter) 07:55 - 10:19 The story of RinCe, tipster on major bust (Boyd, Porter) 10:20 - 11:43 Anatomy of a good tipster; motivations (Boyd) 11:44 - 12:53 Changing vectors & new dangerous hacker tactics (Porter) 12:54 - 13:23 Instant Messaging no longer safe (Porter) 13:24 - 13:43 Botnet criminal motivations (Boyd) 13:44 - 14:33 New perspectives (Molander) 14:34 - 16:23 Attack complexity increasing, vectors changing (Porter) 16:24 - 16:58 Dark Economy: Organized crime moving online (Porter) 16:59 - 19:02 Cloak & Dagger: How to penetrate a botnet (Boyd) 19:03 - 21:56 Gathering intelligence from 'the underbelly' (Boyd) 22:54 - 23:33 Fallout from adware, spyware & Web crime (Porter) 23:34 - 25:10 Warning to e-commerce executives (Porter)
No doubt Part 2 will appear shortly. Same Bat-Time...same Bat-Channel. If you liked Part 1, why not vote for it on Digg.com?
.....well, you'll have to listen to the podcast, won't you? But a quick summary is: Steve Gibson claims the WMF exploit was a deliberate hole put there by Microsoft.
I'm sure more will emerge on this one, however I thought Microsoft already said they put this in there on purpose for various reasons. New development or is Steve not keeping up with the news?
/ considers digging through six thousand WMF exploit stories, thinks better of it
If you were curious about what went on behind the scenes of the latest FaceTime bust, what was involved in sniffing out the bad guys, or even just a little more technical information on what a Botnet is, or how it relates to Rootkits in the first place - check this out:
If you've never seen a webinar before, it's a live event, where people talk and show slides and stuff, and an audience listens in and gets to ask questions at the end. A good time was had by all!
When you click the link, simply input your contact details and install the software to play the Webinar. Let me know if you liked it - FaceTime do lots of these, and we have many more planned...
Yeah, just when you thought you'd seen everything stolen / swiped / nicked / green-fingered out the door, along comes this horrible little thing.
Nasty man sets up website. Nasty man targets nice Podcaster person. Nasty man points his URL to the RSS feed of the target podcast, and builds up tons of links in search engines, meaning visitors hit the podcast from nasty man's site, rather than nice Podcaster person's site.
You know what's coming, yes?
Blackmail city, or the links get it! Wave goodbye to your audience....except....maybe I'm missing something here. Yes, lots of links in Podcast search engines or whatever will get hosed. But...assuming the guy doing the podcast actually mentions his URL in the show, wouldn't a sizeable chunk of the audience think, hang on, I'll just go to the web address mentioned in the podcast, problem solved? Well, doesn't look like it in the case mentioned, unfortunately.
You've all heard about the Sony rootkit story - Hell, little green men on Mars have heard about it. But have you heard the guy who discovered it talking tech-speak in a Podcast stylee? If not, check this out - a great little interview, featuring Mark Russinovich (Rootkit-slaying superman).
Well, I had to sit up all night and do the show at 5AM, but it was well worth it. For anyone who doesn't know, David Lawrence has an online / offline radio show type-thing operating out of LA, and it's a pretty huge show. And I finally got to speak to someone who has an entry on Wikipedia, so I can now die happy.
Before we went on, they had that sheriff guy who makes the criminals run round in pink undies. Unfortunately, I didn't get to speak to him but we did get to wax lyrical on all things Spy/Ad/Malware for an hour. To top things off, we wound up with a ten minute podcast that you can check out here - it's free to listen to, and the full show should be available in the next couple of days for a small fee. in case you're wondering, the Podcast is all about the Sony Rootkit story - you know the one.
By the time we did the podcast (after the hour-long show) I was pretty much dead on my feet so I say "er" and "um" a lot, but I can say "um" as much as I want when I'm rambling about the technicalities of rootkits and DRM at 5 in the morning after 48 hours without sleep. And who knows, by the time the full show is out, I might be able to go back on as the guy who claimed the world record for the most times someone said "er", "um" and "pleasekillmeimsotiredandiwanttodie".
I'm now going to bed for what feels like the next six months - try not to let the interweb burn until I get back!
/ Update - Here, as promised, is a link to the full show (of which, our segment costs 25 cents to download). There should be a text transcript posted shortly, so you can read what went down as opposed to listen to us babble. We were also on with Merle Haggard, who (I am reliably informed) is a big Country Western singer. However, I go to raves in warehouses with glo-sticks and whistles, so I have no idea about any of this. I also don't go to raves in warehouses, but after so much sleep deprivation everything seems like a party so that's okay.
Categories
