Re: [Full-disclosure] A Botted Fortune 500 a Day

"Dude VanWinkle" <[EMAIL PROTECTED]> wrote: > > From: poo [mailto:[EMAIL PROTECTED] > > Sent: Friday, April 13, 2007 6:03 AM > > To: [EMAIL PROTECTED] > > Cc: [EMAIL PROTECTED]; > > [EMAIL PROTECTED]; [EMAIL PROTECTED] > > Subject: Re: [Full-disclosure] A Botted Fortune 500 a Day > > > > > > >

Re: [Full-disclosure] A Botted Fortune 500 a Day

> From: poo [mailto:[EMAIL PROTECTED] > Sent: Friday, April 13, 2007 6:03 AM > To: [EMAIL PROTECTED] > Cc: [EMAIL PROTECTED]; > [EMAIL PROTECTED]; [EMAIL PROTECTED] > Subject: Re: [Full-disclosure] A Botted Fortune 500 a Day > > > > gadi.. SHUT UP On 4/13/07, Randall M <[EMAIL PROTECTED]> wrot

[Full-disclosure] TSRT-07-04: LANDesk Management Suite Alert Service Stack Overflow Vulnerability

TSRT-07-04: LANDesk Management Suite Alert Service Stack Overflow Vulnerability http://www.tippingpoint.com/security/advisories/TSRT-07-04.html April 13, 2007 -- CVE ID: CVE-2007-1674 -- Affected Vendor: LANDesk -- Affected Products: Management Suite 8.7 -- TippingPoint(TM) IPS Cust

Re: [Full-disclosure] patch-9449

Myself and a client have received several over the past 24hrs. I submitted one as the password protected zip file to VirusTotal and Kaspersky identified it as a virus/trojan as did several other AV products. Names varied so I didn't record them. Was most interested in seeing if there was a cons

Re: [Full-disclosure] A Botted Fortune 500 a Day

Just to add my two cents... The fact is that the cost in damages of a single compromise is usually far greater than the cost of implementing and maintaining good security. TJX is a golden example of that. On 4/13/07 11:05 AM, "Jamie Riden" <[EMAIL PROTECTED]> wrote: > Hi Steven, > > I believe

Re: [Full-disclosure] A Botted Fortune 500 a Day

Hi Steven, I believe security of an organisation is orthogonal to the number of employees/users and how savvy they are. It depends more on the will and resources to secure the network properly. Two, corporations do have many financial incentives to make sure they are secure - if they are doing the

Re: [Full-disclosure] A Botted Fortune 500 a Day

> On 13/04/07, Steven Adair <[EMAIL PROTECTED]> wrote: >> Is this in anyway surprising? I think we all know the answer is no. >> Many >> Fortune 500 companies have more employees than some ISPs have customers. >> Should we really expect differently? > > Yes! Off the top of my head: > > 1. Corporat

Re: [Full-disclosure] Spam is funny!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Yes, it's interesting to find that attacks of all sorts (spam, phishing, and infiltration) are becoming targeted now. Previously, attacks were unsophisticated and limited to the unsecured, random hosts that were vulnerable to dropstatd. Now it seems

Re: [Full-disclosure] Spam is funny!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 It is nice to know that someone cares about me! Albeit the fact that my fans seem to be limited to spambots and Gadi Evron. just kidding! :-) - - neal http://www.hackerfactor.com/blog/ On Thu, 12 Apr 2007 17:56:54 -0400 Steve Ragan <[EMAIL PROTECT

Re: [Full-disclosure] Spam is funny!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I doubt those are RFC compliant email addresses, but your suggestion is hilarious nonetheless! - - neal http://www.hackerfactor.com/blog/ On Thu, 12 Apr 2007 16:28:03 -0400 "Kevin Finisterre (lists)" <[EMAIL PROTECTED]> wrote: >Maybe you should star

Re: [Full-disclosure] A Botted Fortune 500 a Day

On 13/04/07, Steven Adair <[EMAIL PROTECTED]> wrote: > Is this in anyway surprising? I think we all know the answer is no. Many > Fortune 500 companies have more employees than some ISPs have customers. > Should we really expect differently? Yes! Off the top of my head: 1. Corporations should h

Re: [Full-disclosure] A Botted Fortune 500 a Day

Is this in anyway surprising? I think we all know the answer is no. Many Fortune 500 companies have more employees than some ISPs have customers. Should we really expect differently? Also, as a side note, I would like to add that just because SPAM is coming from a certain gateway does not neces

Re: [Full-disclosure] A Botted Fortune 500 a Day

Did someone get out of bed on the wrong side?? From: poo [mailto:[EMAIL PROTECTED] Sent: Friday, April 13, 2007 6:03 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: [Full-disclosure] A Botted Fortune 500 a Day gadi.. SHUT UP On 4/13/07, RMuelle

[Full-disclosure] [OPENADS-SA-2007-004] Max Media Manager v0.1.29-rc and v0.3.31-alpha-pr2 vulnerability fixed

Openads security advisoryOPENADS-SA-2007-004 Advisory ID: OPENADS-SA-2007-004 Date: 2007-Apr-11 Se

[Full-disclosure] [OPENADS-SA-2007-003] Openads 2.0.11 vulnerability fixed

Openads security advisoryOPENADS-SA-2007-003 Advisory ID: OPENADS-SA-2007-003 Date: 2007-Apr-11 Se

Re: [Full-disclosure] patch-9449

Wong Chee Chun <[EMAIL PROTECTED]> wrote: Dshield (ISC) page discusses about the same issue. The filenames are randomized. 4 or 5 numbers always. - Juha-Matti > Dshied's recent diary entry might has something related about this virus i > guess. except that the filename is patch-58214.zip. > >

Re: [Full-disclosure] patch-9449

Dshied's recent diary entry might has something related about this virus i guess. except that the filename is patch-58214.zip. Here is the link to the diary --> http://www.dshield.org/diary.html?storyid=2618&dshield=0fcfb711fed834995b1d52da5f438c11 cheers On 4/13/07, Steward Smith <[EMAIL PR