For many years much of Internet community has continued to point a finger at ISPs, claiming they’ve turned a blind eye towards the botnet problem. While sometimes their arguments seem well founded, often, those claiming ISPs are “feeding us dirty water” don’t fully understand the ISP’s predicament. I hope to shine a bit […]
A couple of third-party reports on the Storm Worm (aka Peacomm, aka Nuwar, aka Tibs, aka Zheltin, aka CME-711). The first is a detailed binary analysis of the malcode involved in the Storm Worm from Frank Boldewin. This is one of the only such analysis made public that I have seen; everyone else has their […]
I’ve been reading lately about how Comcast has “clarified” their “excessive use” policy for broadband users. In Comcast Clarifies High Speed Extreme Use Policy (GameDaily.biz), the company says it’s bout 90 GB in a month, or “the equivalent of 30,000 songs, 250,000 pictures or 13 million emails in a month. That adds up to about […]
I’ve been looking at ATLAS data for the past few days, looking at new features to add to ATLAS and also for real data coming out of it. In short, the world’s not ending, we’re just looking at possible exploit activity.
UDP port 407, used in Timbuktu, has shown up lately. A recent vulnerability, CVE-2007-4221, could […]
In late January 2007 several NFL-related web sites were hacked, to include www.dolphinsstadium.com and www.miamidolphins.com. Considering the Miami Dolphins stadium was about to host the NFL’s biggest game of the year, Superbowl XLI, this seemed a reasonable enough target. The sites were modified to serve malicious JavaScript code that would compromise victim’s […]
