2006.11.20 Daily Security Reading
by Rodney Campbell on Nov.20, 2006, under Security
PCI cards the next haven for rootkits? [pdf]
An interesting article about a paper published on the possibility of hiding a rootkit in different PCI cards and have the rootkit survive a reboot or cleansing of the hard disk. It seems though that the author of the article doesn’t think this would be abused.
A New Vulnerability In RSA Cryptography
Branch Prediction Analysis is a recent attack vector against RSA public-key cryptography on personal computers that relies on timing measurements.
Three million Britons have been issued with the new hi-tech passport… So why did Steve Boggan and a friendly computer expert find it so easy to break the security codes?
Honeypot Mirroring .edu domains under .eu / Active Threat
What is appears, for the moment, is that this machine is running a honeypot to capture passwords for people who typo .edu as .eu
Online attackers have started to experiment with embedding malicious code or links to such code in different video formats.
Deconstructing a Pump-and-Dump Spam Botnet
Shows the inner working of a massive botnet that is responsible for the recent surge of ‘pump and dump’ spam. It’s a detailed picture of how these sleazy operations work and why they’re so hard to shut down. Sobering numbers: 70,000 infected machines capable of pumping out a billion messages a day, virtually all of them for penis enlargement and stock scams. Excellent graphics, too, including one chart that shows that Windows XP Service Pack 2 is hosting nearly half the attacked machines.
-
Hi! Welcome to Rodney Campbell's Blog!
Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed. See ya around!
Follow Me!
