Virus.Org

Sony announce the compromise of 93000 user accounts

Thu, 13 Oct 2011 11:03:25 GMT

Sony seem to be having a tough year, earlier in the year they had an unprecedented series of compromises of their networks which resulted in many of their public offerings being taken offline until they fixed things. Yesterday they announced that they had detected the compromise of 93000 customer accounts.

Mebromi the first in the wild BIOS Malware

Thu, 15 Sep 2011 09:44:30 GMT

In the past few weeks a Chinese security company blogged about a new piece of malware, nothing special there you cry, well this is a little special. It is a piece of malware that is able to rootkit the BIOS of targeted machines.

Shaken Trust

Wed, 07 Sep 2011 00:38:25 GMT

In another blow to the already shaky reputation of the Internet's certification architecture, Diginotar, a Dutch certification authority (CA) recently suffered a catastrophic security breach that led to them issuing a number of bogus certificates. Initially it seemed that the result was a bogus certificate for google.com, but later revelations uncovered over 300 bogus certificates were generated and used in anger.

Turkish Hacker Group diverts DNS for High Profile Sites

Mon, 05 Sep 2011 11:42:31 GMT

A turkish hacker group managed to compromise the DNS for a number of major sites over the weekend and alter the DNS information to have it point the sites at a system they controlled to so their defacement message.

Apache Denial of Service Vulnerability has Admins in a Huff

Fri, 26 Aug 2011 11:07:19 GMT

Earlier in the week someone posted a Perl script named 'Apache Killer' to the Full Disclosure Mailing list. The script credited to Kingcope basically exploits a vulnerability in the way httpd handles multiple overlapping ranges and leads to system memory exhaustion and this Denial of Service.

Documentary leaks proof of Chinese Cyber Attacks

Tue, 23 Aug 2011 13:00:00 GMT

China is often blamed for launching cyber-attacks and their capabilities have been known for over a decade. However, definite proof has been hard to come by, until is seems now.

Anonymous Compromise myBART

Mon, 15 Aug 2011 12:36:53 GMT

In response to BART’s shutdown of cell phone service Thursday, Anonymous has taken to the Internet and begun #opBART and #opMuBARTek to perform attacks on BART infrastructure on the Internet in protest of the action.

Up and Coming Conference 44Con

Sat, 13 Aug 2011 14:12:44 GMT

In the United Kingdom there hasn't been a good security conference for quite a few years, not really since the short run of Access All Areas in the 90s. This is about to change with the new conference that will kick off for the first time at the end of August called 44Con.

SpyEye Crimeware Cracked

Sat, 13 Aug 2011 11:15:59 GMT

SpyEye is currently the most advanced and dangerous malware kit today, has been incorporating functionality of the Zeus malware builder kit since early 2011. This 'crimeware' has been sold by developers for up to $6000 USD and this week Steven K, author of a blog called Xylibox released detailed instructions on how to patch the SpyEye Builder version 1.3.x bypassing licensing checks.

Microsoft re-release MS11-043 update

Fri, 12 Aug 2011 12:56:37 GMT

It seems Microsoft have re-released the security update for MS11-043 after stability issues have reared their ugly head.