[ilugd] Mobile Phone Virus(Several other links provided)
Mobile phone virus has been unleashed in the wild which is harmless in the sense that it does nothing other than displaying a banner on the phone when switched on. It spreads through the bluetooth technology of mobile phones using Symbian Operating System(OS). Nokia 60 series uses this OS. The virus is supposed to be written by a group by the name of 29A from Spain. There are several stories regarding this; one being at the link shown below. http://www.linuxinsider.com/story/technology/34582.html For technical info and removal instructions hit the following link: http://securityresponse.symantec.com/avcenter/venc/data/epoc.cabir.html -Information related to Viruses- Group(29A) also has a website. http://29a.host.sk/ (Read the warning displayed by the website and hit "Enter" if you wish..Don't worry, it is safe to visit the website..:)) For those who are curious on how virus(and other malicious code) works I would suggest the following website. http://vx.netlux.org This website also archives various e-zines(electronic magazines) related to viruses written by different "groups". The complete list of e-zines is at the following link. http://vx.netlux.org/vx.php?id=zidx The group being blamed for this mobile phone virus 29A also have a e-zine by the same name. Link follows: http://vx.netlux.org/vx.php?id=z001 If you want to read it online: http://29a.host.sk/main.html One of the group member of 29A goes by the name "Benny" and has written a "virus writing guide" which apparently is very (un)popular among the virus writing community and those who want to learn how this works. That article is in the 4th edition of the 29A mag. Direct link to the article follows: http://vx.netlux.org/lib/static/vdat/tumisc60.htm (English is not very good in this article of his as you would expect as he(she?) is Spanish but the content is impressive) Again you don't have to be a virus writer or the bad guy wanting to read this. This will give you insight into virus writing which might help anyone willing to be a security expert..:) More importantly, as it requires a thorough knowledge of computers/Operating System you will be on your way to becoming one. Magazines do contain several source codes to viruses but the best way to analyse any latest viruses/worms/trojans (such as slammer or Sobig) etc is reverse engineering after capturing the executable (can it from the site mentioned earlier) as you don't expect the sourcecode to be available. This involves disassembling the code using disassembler and analyse the code using debuggers. You will need some basic understanding of Assembly language to understand the code. Warning: If you do decide to experiment with the viruses, do so on a computer not in use or atleast create a back-up of the disk just in case. Mainly because some viruses are crude (and for educational purposes!) and are not written in most effcient way and might cause serious harm to your computer even if the author didn't intend to do so (oops !!). NeerajĀ __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
[ilugd] Network-Security
--- Raj Mathur <[EMAIL PROTECTED]> wrote: > >>>>> "Profiler" == Profiler <[EMAIL PROTECTED]> writes: > > Profiler> Hello friends, A new group to discuss the various > Profiler> aspects of network intrusion has been > Profiler> created. Interested fellow members are free to join this > Profiler> group. > > Profiler> Please realise that this is an effort to bring the best > Profiler> minds in the country along with some of the most curious > Profiler> minds to a common platform and help reveal all that goes > Profiler> behind the scenes in the world of computer > Profiler> break-in. Feel free to forward this email to anyone or > Profiler> any group if you deem fit but, aim is NOT to increase > Profiler> numbers but to get security enthusiasts on board. > > Profiler> You should join the group , > > Profiler> a) if you are curious about computer security or would > Profiler> like to know the solution to some common problems (much > Profiler> of the threat is due to the evolution of Internet and > Profiler> hence Network-Security). > > Profiler> b) if you know the ins and outs of computer and would > Profiler> like to share it with the people who would like to be > Profiler> where you are. > > Profiler> c) if you want to measure yourself against the best in > Profiler> the business! > > Profiler> d) if you don't belong to any category shown above but > Profiler> would like to join the party! > > Profiler> Groups's URL: http://groups.yahoo.com/group/Net-Security > > Profiler> (You might have to cut and paste the the URL in the > Profiler> address bar to reach the site) > > Profiler> For any clarifications, drop me an email. > > and you are? > > In any case, why is the list moderated, why are the archives hidden > from the public? > > -- Raju -- Thanks for your reply Mr Mathur. Let me assure you that moderation of group is not part of strategy but a conscious decision. It is to avoid hijacking of the group by commercial messages and spams containing executable attachments which tend to take the focus away from topic due to sheer volume of the email. Everybody who decides to join the group receives FAQ which categorically rejects anyform of censorship and invites members to moderate the group. Archives have been made public(there is not much to it as the group is in its infancy). And I am a security freak known by the name Neeraj currently working for IBM UK on short(13 months) contract in the middle of my undergraduate study. As mentioned in my introductory email, this group is meant to bring the security whizs and enthusiasts on the common platform simply because ignorance is no longer a bliss.:-) Thanks and regards, Neeraj __ Do you Yahoo!? Friends. Fun. Try the all-new Yahoo! Messenger. http://messenger.yahoo.com/ ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
[ilugd] Network-Security
Hello friends, A new group to discuss the various aspects of network intrusion has been created. Interested fellow members are free to join this group. Please realise that this is an effort to bring the best minds in the country along with some of the most curious minds to a common platform and help reveal all that goes behind the scenes in the world of computer break-in. Feel free to forward this email to anyone or any group if you deem fit but, aim is NOT to increase numbers but to get security enthusiasts on board. You should join the group , a) if you are curious about computer security or would like to know the solution to some common problems (much of the threat is due to the evolution of Internet and hence Network-Security). b) if you know the ins and outs of computer and would like to share it with the people who would like to be where you are. c) if you want to measure yourself against the best in the business! d) if you don't belong to any category shown above but would like to join the party! Groups's URL: http://groups.yahoo.com/group/Net-Security (You might have to cut and paste the the URL in the address bar to reach the site) For any clarifications, drop me an email. Yahoo! India Matrimony: Find your partner online. ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
