Re: [botnets] mac trojan in-the-wild

2007-10-31 Thread g.rees-jones 
To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
--
but what if a user configured osx so that the administrator password
does not need to be entered each time?

Gadi Evron  wrote:
> To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
> --
> On Wed, 31 Oct 2007, Hanz Makmur wrote:
>> To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
>> -- 
>> Yap. Social Engineering type of program is hard to deal with.
>> 
>> I dont see this as big as the subject would like it to be. "mac
>> trojan 
>> in-the-wild."
>> 
>> 'Wild' imho means out of control. SE program requires many clicks. To
>> tame it even more,  by default, on the mac, unlike windows, one needs
>> to enter administrator password to activate this type of program.
>> Hidden network activities are also tame even more in Leopard.(v.10.5)
> 
> in-the-wild in this context means what it means for years now in our
> realm:
> Currently actively exploited.
> 
> 
> 
>> 
>> Hanz
>> 
>> On Oct 31, 2007, at 10:09 PM, Eduardo Tongson wrote:
>> 
>>> This is an SE type of malware. Codecs require installation so it
>>> needs root/admin privileges.
>> 
>> ___
>> To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
>> All list and server information are public and available to law
>> enforcement upon request.
>> http://www.whitestar.linuxbox.org/mailman/listinfo/botnets 
>> 
> ___
> To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
> All list and server information are public and available to law
> enforcement upon request.
> http://www.whitestar.linuxbox.org/mailman/listinfo/botnets 
___
To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
All list and server information are public and available to law enforcement 
upon request.
http://www.whitestar.linuxbox.org/mailman/listinfo/botnets

Re: [botnets] Botmasters Take Heed - You Are Being Put On Notice

2007-10-02 Thread g.rees-jones 
To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
--
no problem from here either

Colin Grady  wrote:
> To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
> --
> I'm seeing the same thing. Using our outbound proxy:
> 
> Network Error (tcp_error)
> A communication error occurred: "Operation timed out"
> 
> Thanks,
> Colin
> 
> 
> 
> On 10/2/07, Paul Laudanski <[EMAIL PROTECTED]> wrote:
>> To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
>> -- 
>> Parity wrote:
>>> My outbound proxy server reports that www.castlecops.com
>>>  is timing out.  Go figure.
>>> 
>> 
>> Odd, its up and running just fine.  What's your IP (privately of
>> course)? 
>> 
>>> It occurs to me that if I really had it in for someone, I could
>>> probably just impersonate them and go shit-talking some bot-herders.
>>> Kinda like a smurf attack that provokes noise from irritable kids
>>> instead of misconfigured routers.
>> 
>> 
>> You mean something like this, a reputation attack against CastleCops?
>> 
>>
http://blog.washingtonpost.com/securityfix/2007/09/the_danger_of_reput
>> ation_attac.html 
>> 
>> --
>> Paul Laudanski, CastleCops(r), http://www.castlecops.com
>> http://www.linkedin.com/pub/1/49a/17b
>> +
>> Phish: http://www.castlecops.com/pirt
>> Malware: http://www.castlecops.com/mirt
>> Spam: http://www.castlecops.com/sirt
>> 
>> ___
>> To report a botnet PRIVATELY please email: [EMAIL PROTECTED] All
>> list 
>> and server information are public and available to law enforcement
>> upon request.
>> http://www.whitestar.linuxbox.org/mailman/listinfo/botnets 
>> 
> ___
> To report a botnet PRIVATELY please email: [EMAIL PROTECTED] All
> list and server information are public and available to law
> enforcement upon request.
> http://www.whitestar.linuxbox.org/mailman/listinfo/botnets  
___
To report a botnet PRIVATELY please email: [EMAIL PROTECTED]
All list and server information are public and available to law enforcement 
upon request.
http://www.whitestar.linuxbox.org/mailman/listinfo/botnets