DOCSLIB.ORG

Warning About the CDROM

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Warning About the CDROM Warning about the CDROM The cdrom provided with the present book is dedicated to educational and academic purposes only (teaching and research activities). Any other use is totally condemned by the author. Before using any of the material it contains, the reader is strongly advised to refer to national laws dealing with computer crimes and computer security, to determine if he is allowed to use this material. This cdrom does NOT contain ANY executable files, whatever may be the format. The reader then will not face the slightest risk by using it. Only two file formats have been used: • simple html language, without any script language, for the webpage-like presentation files. These pages allows to navigate very easily through the cdrom. • pdf language, for all other data: papers, technical articles and viral codes. In particular, the use of the viral source codes provided on the cdrom cannot be fortuitous. It requires an active and voluntarily process from the reader – the code has to be typed and next to be compiled. Thus any such action directly involves the reader’s own repsonsability. At last, minor implementation errors have been voluntarily introduced into the source code (both in the book and on the cdrom). They do not involve viral algorithmics but only the use of some programming language primitives. Detecting and correcting them will constitue a good exercise. Nonetheless, their existence does not complicate the reader’s understanding. References 1. Adleman L. M. (1988) An Abstract Theory of Computer Viruses. In Advances in Cryptology- CRYPTO’88, pp 354-374, Springer. 2. Aleph One (2000) Smashing the stack for fun and profit, Phrack Journal, Vol. 7, no. 49, www.phrack.org. 3. J. Anders, Net filter spies on kid’s surfing, 25 janvier 2001, http://zdnet.com.com/ 2100-11-527592.html 4. Anderson J. P. (1972) Computer Security Technology Planning Study, Technical Report ESD-TR-73-51, US Air Force Electronic Systems Division, October. 5. Anderson R. (2001) Security Engineering, Wiley. 6. Anderson R. (2002) Trusted Computing Frequently Asked Questions, TCPA/Palladium/NGSCB/TCG, available on www.cl.cam.ac.uk/~rja14/ tcpa-faq.html 7. Arbib M. A. (1966) A simple self-reproducing universal automaton, Infor. and Cont., 9, pp. 177-189. 8. Antivirus AVP - www.avp.ch. 9. Azatasou D., Tanakwang A. (2003) Etude de faisabilit´e d’un virus de Bios,M´emoire de stage ing´enieur, Ecole Sup´erieure et d’Application des Transmissions, Rennes. 10. Barel M. (2004), Nouvel article 323-3-1 du Code P´enal:lechevaldeTroiedu l´egislateur ?, MISC, Le journal de la s´ecurit´einformatique,Num´ero 14. 11. Barwise J. (1983) Handbook of Mathematical Logic, North-Holland. 12. Bell D. E., LaPadula L. J. (1973) Secure Computer Systems: Mathematical Founda- tions and Model, The Mitre Corporation. 13. Biba K. J. (1977) Integrity Considerations for Secure Computer Systems, USAF Electronic Systems Division. 14. Bidault M. (2002) Cr´eation de macros VBA pour Office 97, 2000 et XP, Campus Press. 15. Blaess C. (2000) Programmation syst`eme en C sous Linux, Eyrolles. 16. Blaess C. (2002) Langages de scripts sous Linux, Eyrolles. 17. Blaess C. (2002) Virologie : nimda, MISC, Le journal de la s´ecurit´einformatique, Num´ero 1. 18. Bailleux C. (2002) Petits d´ebordements de tampon dans la pile, MISC, Le journal de la s´ecurit´einformatique,Num´ero 2. 19. Bontchev V. (1995) Are “good” computer virusses still a a bad idea, www.virusbtn. com/old/OtherPapers/GoodVir 392 References 20. Brassier M. (2003) Mise en place d’une cellule de veille technologique, MISC Le journal de la s´ecurit´einformatique,num´ero 5, pp 6-11. 21. Bridis T. (2001) FBI Develops Eavesdropping Tools. Washington Post,November 22nd. 22. Brulez N. (2003) Analyse d’un ver par d´esassemblage, MISC, Le journal de la s´ecurit´e informatique, Num´ero 5. 23. Brulez N. (2003) Techniques de reverse engineering - Analyse d’un code verrouill´e, MISC, Le journal de la s´ecurit´einformatique,Num´ero 7. 24. Brulez N. (2003) Faiblesses des protections d’excutable PE. Etude de cas: Asprotect, In: Proceedings of the SSTIC 2003 Conference, pp. 102-121, www.sstic.org 25. Brulez N., Filiol E. (2003) Analyse d’un ver ultra-rapide : Sapphire/Slammer, MISC, Le journal de la s´ecurit´einformatique,Num´ero 8. 26. Burks A. W. (1970) Essays on Cellular Automata, University of Illinois Press, Urbana and London. 27. Byl J. (1989) Self-reproduction in cellular automata, Physica D, 34, pp. 295-299. 28. Cantero A .(2003) Droit p´enal et cybercriminalit´e:lar´epression des infractions li´ees aux TIC, In: Proceedings of the SSTIC 2003 Conference, www.sstic.org 29. Caprioli E. A. (2002) Les moyens juridiques de lutte contre la cybercriminalit´e, Revue Risques, Les Cahiers de l’assurance, juillet-septembre, num´ero 51. 30. Chambet P., Detoisien E. et Filiol E. (2003) La fuite d’information dans les docu- ments propri´etaires, MISC, Le journal de la s´ecurit´einformatique,Num´ero 7. 31. Chess D. M., White S. R. (2000) An undetectable computer virus, Virus Bulletin Conference, September. 32. Church A. (1941) The calculi of lambda-conversion, Annals of Mathematical Studies, 6, Princeton University Press. 33. Codd, E. F. (1968) Cellular Automata, Academic Press. 34. Cohen F. (1986) Computer viruses, Ph. D Thesis, University of Southern California, Janvier 1986. 35. Cohen F. (1994) A Short Course on Computer viruses, Wiley. 36. Cohen F. (1994) It’s alive, Wiley. 37. Cohen F. (1987) Computer Viruses - Theory and Experiments, IFIP-TC11 Comput- ers and Security, vol. 6, pp 22-35. 38. Cohen F. (1985) A Secure Computer Network Design, IFIP-TC11 Computers and Security, vol. 6, vol. 4, no. 3, pp 189-205. 39. Cohen F. (1985) Protection and Administration on Information Networks under Partial Orderings, IFIP-TC11 Computers and Security, vol. 6, pp 118-128. 40. Cohen F. (1987) Design and Administration of Distributed and Hierarchical Infor- mation Networks under Partial Orderings, IFIP-TC11 Computer and Security, vol. 6. 41. Cohen F. (1987) Design and Administration of an Information Network under a Partial Ordering: a Case Study, IFIP-TC11 Computer and Security, vol. 6, pp 332- 338. 42. Cohen F. (1987) A Cryptographic Checksum for Integrity Protection in Untrusted Computer Systems, IFIP-TC11 Computer and Security. 43. Cohen F. (1988) Models of Practical Defenses against Computer Viruses, IFIP-TC11 Computer and Security, vol. 7, no. 6. 44. Cohen F. (1990) ASP 3.0 - The Integrity Shell, Information Protection, vol. 1, no. 1. 45. Coursen S. (2001) ‘Good’ viruses have a future, www.surferbeware.com/articles/ computer-viruses-article-text-2.htm References 393 46. Detoisien E. (2003) Ex´ecution de code malveillant sous Internet Explorer 5 et 6, MISC, Le journal de la s´ecurit´einformatique,Num´ero 5. 47. Devergranne T. (2002) La loi “Godfrain” `al’´epreuve du temps, MISC, Le journal de la s´ecurit´einformatique,Num´ero 2. 48. Devergranne T. (2003) Virus informatiques : aspects juridiques, MISC, Le journal de la s´ecurit´einformatique,Num´ero 5. 49. Devergranne T. (2003) Le reverse engineering coule-t-il de source ?, MISC, Le journal de la s´ecurit´einformatique,Num´ero 9. 50. Dewdney A. K. (1984) Metamagical Themas, Scientific American, mars 1984. As far as the Core Games is concerned, the reader may also refer to www.koth.org/info/ sciam or kuoi.asui.uidaho.edu/~kamikaze/documents/corewar-faq.html 51. D’Haeseleer P., Forrest S. et Helman P. (1996) An immunological approach to change detection : algorithms, analysis ans implications, In Proceedings of the 1996 IEEE Symposium of Computer Security and Privacy, IEEE Press, pp. 110-119. 52. Detailed description of the PE format, http://spiff.tripnet.se/~iczelion/ files/pe1.zip 53. Dobbertin H. (1996) rump session, Eurocrypt’96. Available on www.iacr.org/ conferences/ec96/rump/ 54. Dobbertin H. (1996) Cryptanalysis of MD4. In: Gollman D. ed., Third Fast Software Encryption Conference, Lecture Notes in Computer Science 1039, pp 71–82, Springer- Verlag. 55. Dodge Y. (1999) Premiers pas en statistique, Springer-Verlag. 56. Dougherty D., Robbins A. (1990) Sed & Awk, O’Reilly & Associates. 57. Dralet S., Raynal F. (2003) Virus sous Unix ou quand la fiction devient r´ealit´e, MISC, Le journal de la s´ecurit´einformatique,Num´ero 5. 58. Eichin M. W., Rochlis J. A. (1988) With microscope and tweezers : an analysis of the Internet virus of november 1988, IEEE Symposium on Research in Security and Privacy. 59. eEye Digital Security (1999) Retina vs IIS 4, Round 2, www.eeye.com/html/ Research/Advisories/AD19990608.html 60. Filiol E. (2002) Applied Cryptanalysis of Cryptosystems and Computer At- tacks Through Hidden Ciphertexts Computer Viruses, Rapport de recherche IN- RIA num´ero 4359. Available on http://www-rocq.inria.fr/codes/Eric.Filiol/ papers/rr4359vf.ps.gz 61. Filiol E. (2002) Le ver Code-Red, MISC, Le journal de la s´ecurit´einformatique, Num´ero 2. 62. Filiol E. (2002) Le virus CIH dit “Chernobyl”, MISC, Le journal de la s´ecurit´e informatique, Num´ero 3. 63. Filiol E. (2002) Autopsie du macro-virus Concept, MISC, Le journal de la s´ecurit´e informatique, Num´ero 4. 64. Filiol E. (2003) Les infections informatiques, MISC, Le journal de la s´ecurit´einfor- matique, Num´ero 5. 65. Filiol E. (2003) La lutte antivirale : techniques et enjeux, MISC, Le journal de la s´ecurit´einformatique,Num´ero 5. 66. Filiol E. (2003) Le virus de boot furtif Stealth, MISC, Le journal de la s´ecurit´e informatique, Num´ero 6. 67. Filiol E. (2002) L’ing´eni´erie sociale, Linux Magazine 42, Septembre 2002.
Load more

Recommended publications
  • Tangled Web : Tales of Digital Crime from the Shadows of Cyberspace
    TANGLED WEB Tales of Digital Crime from the Shadows of Cyberspace RICHARD POWER A Division of Macmillan USA 201 West 103rd Street, Indianapolis, Indiana 46290 Tangled Web: Tales of Digital Crime Associate Publisher from the Shadows of Cyberspace Tracy Dunkelberger Copyright 2000 by Que Corporation Acquisitions Editor All rights reserved. No part of this book shall be reproduced, stored in a Kathryn Purdum retrieval system, or transmitted by any means, electronic, mechanical, pho- Development Editor tocopying, recording, or otherwise, without written permission from the Hugh Vandivier publisher. No patent liability is assumed with respect to the use of the infor- mation contained herein. Although every precaution has been taken in the Managing Editor preparation of this book, the publisher and author assume no responsibility Thomas Hayes for errors or omissions. Nor is any liability assumed for damages resulting from the use of the information contained herein. Project Editor International Standard Book Number: 0-7897-2443-x Tonya Simpson Library of Congress Catalog Card Number: 00-106209 Copy Editor Printed in the United States of America Michael Dietsch First Printing: September 2000 Indexer 02 01 00 4 3 2 Erika Millen Trademarks Proofreader Benjamin Berg All terms mentioned in this book that are known to be trademarks or ser- vice marks have been appropriately capitalized. Que Corporation cannot Team Coordinator attest to the accuracy of this information. Use of a term in this book should Vicki Harding not be regarded as affecting the validity of any trademark or service mark. Design Manager Warning and Disclaimer Sandra Schroeder Every effort has been made to make this book as complete and as accurate Cover Designer as possible, but no warranty or fitness is implied.
    [Show full text]
  • The Norman Book on Computer Viruses Ii Z the Norman Book on Computer Viruses
    The Norman Book on Computer Viruses ii z The Norman Book on Computer Viruses Norman ASA is not liable for any other form of loss or damage arising from use of the documentation or from errors or deficiencies therein, including but not limited to loss of earnings. In particular, and without the limitations imposed by the licensing agreement with regard to any special use or purpose, Norman ASA will in no event be liable for loss of profits or other commercial damage including but not limited to incidental or consequential damages. The information in this document as well as the functionality of the software is subject to change without notice. No part of this documentation may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording or information storage and retrieval systems, for any purpose other than the purchaser's personal use, without the explicit written permission of Norman ASA. Contributors to The Norman Book on Viruses: Snorre Fagerland, Sylvia Moon, Kenneth Walls, Carl Bretteville Edited by Camilla Jaquet and Yngve Ness The Norman logo is a registered trademark of Norman ASA. Names of products mentioned in this documentation are either trademarks or registered trademarks of their respective owners. They are mentioned for identification purposes only. Norman documentation is Copyright © 1990-2002 Norman ASA. All rights reserved. October 2001 Copyright © 1990-2002 Norman z iii Norman Offices Norman Data Defense Systems Pty Ltd 6 Sarton Road, Clayton, Victoria, 3168 Australia. Tel: +61 3 9562 7655 Fax: +61 3 9562 9663 E-mail: [email protected] Web: http://www.norman.com.au Norman Data Defense Systems A/S Dronningensgade 23, DK-5000 Odense C, Denmark Tel.
    [Show full text]
  • UTTARAKHAND OPEN UNIVERSITY Teen Pani Bypass Road, Near Transport Nagar, Haldwani -263139 Phone No- 05946 - 261122, 261123 Toll Free No
    CYBER CRIMES AND CONSUMER PROTECTION IN CYBERSPACE CYL-104 [1] CYL- 104 Cyber Crimes And Consumer Protection in Cyber Space School of Law UTTARAKHAND OPEN UNIVERSITY Teen Pani Bypass Road, Near Transport Nagar, Haldwani -263139 Phone No- 05946 - 261122, 261123 Toll Free No. 18001804025 Fax No.- 05946-264232, Email- [email protected], http://uou.ac.in Uttarakhand Open University CYBER CRIMES AND CONSUMER PROTECTION IN CYBERSPACE CYL-104 [2] BOARD OF STUDIES Professor Girija Prasad Pande, Director, School of Law, Uttarakhand Open University, Haldwani, Nainital. Professor J.S.Bisht, Faculty of Law,S.S. Jeena Campus, Almora,Kumaun University, Nainital, Uttarakhand. Professor B.P. Maithani, Former RTI Advisor, Government of Uttarakhand Mr. Deepankur Joshi, Coordinator School of Law, Uttarakhand Open University, Haldwani, (Nainital). UNIT WRITING UNIT WRITERS UNIT [1] Dr. Razit Sharma, Assistant Professor, Unit- 1,2,3,4 Law College, Uttaranchal University, Dehradun Uttarakhand [2] Ms. Sapna Agarwal, Advocate High Court of Uttarakhand, Unit- 5,6,7 Nainital [3 Mr. Rajeev Bhatt, Advocate High Court of Uttarakhand, Ex. RTI Advisor Kumaun University Nainital, Ex. Assistant Professor Unity Unit- 8 ,9,10 Law College Rudrapur [4] Dr. Sushim Shukla, Assistant Professor, Unit- 11, 12, 13 Law College, Uttaranchal University, Dehradun Uttarakhand EDITOR Mr. Deepankur Joshi, Coordinator, School of Law, Uttarakhand Open University, Haldwani, (Nainital) Copyright © Uttarakhand Open University, Haldwani, Nainital Edition- 2018, Pre Publication copy for Limited Circulation ISBN- Publication- Directorate of Studies and Publication, Uttarakhand Open University, Haldwani, Nainital. E- Mail: [email protected] . Uttarakhand Open University CYBER CRIMES AND CONSUMER PROTECTION IN CYBERSPACE CYL-104 [3] POST GRADUATE DIPLOMA IN CYBER LAW CYL- 104 CYBERCRIMES AND CONSUMER PROTECTION IN CYBER SPACE INDEX S.
    [Show full text]
  • "Year 2000 Y2K" December 28, 1999
    NIPC ADVISORY 99-031 "Year 2000 Y2K" December 28, 1999 Introduction Large-scale U.S. infrastructure disruptions are not expected from "Y2K failures" during the Y2K transition period. However we are prepared for a possible increase in real or reported criminal cyber activity (such as hacking and spreading computer viruses), considering the heightened awareness of and media focus on malicious activity during the Y2K period. Any increased criminal activity during the Y2K period could raise the level of problems in infrastructure systems, adding to genuine Y2K-generated issues and the normal level of infrastructure concerns. We anticipate encountering both known and new viruses and hacking exploits. We could see the dissemination of several new and possibly destructive viruses, and the successful exploitation of both corporate and government information systems. But even these possibilities reflect only a larger assembly of the same kinds of malicious activity seen and addressed every day. Finally, known and possible extremist or apocalyptic terrorist activity in the United States by individuals or groups suggests the possibility of threats to domestic infrastructures. For example, the media have reported arrests of certain individuals allegedly planning violent actions against electric power and oil and gas facilities. These indications of possible threats to our infrastructures warrant an increased vigilance to protect against both cyber and physical threats to our nation's critical infrastructures. Summary The Y2K Transition might be seen by potential malefactors as an unprecedented opportunity for malicious code release and associated publicity, where a new and significant exploit can achieve a widespread notoriety in the information security and hacker world.
    [Show full text]
  • Chapter 3: Viruses, Worms, and Blended Threats
    Chapter 3 Chapter 3: Viruses, Worms, and Blended Threats.........................................................................46 Evolution of Viruses and Countermeasures...................................................................................46 The Early Days of Viruses.................................................................................................47 Beyond Annoyance: The Proliferation of Destructive Viruses .........................................48 Wiping Out Hard Drives—CIH Virus ...................................................................48 Virus Programming for the Masses 1: Macro Viruses...........................................48 Virus Programming for the Masses 2: Virus Generators.......................................50 Evolving Threats, Evolving Countermeasures ..................................................................51 Detecting Viruses...................................................................................................51 Radical Evolution—Polymorphic and Metamorphic Viruses ...............................53 Detecting Complex Viruses ...................................................................................55 State of Virus Detection.........................................................................................55 Trends in Virus Evolution..................................................................................................56 Worms and Vulnerabilities ............................................................................................................57
    [Show full text]
  • Virus Bulletin, June 1999
    ISSN 0956-9979 JUNE 1999 THE INTERNATIONAL PUBLICATION ON COMPUTER VIRUS PREVENTION, RECOGNITION AND REMOVAL Editor: Francesca Thorneloe CONTENTS Technical Consultant: Fraser Howard Technical Editor: Jakub Kaminski COMMENT Flashback – When the Chips were Down 2 Consulting Editors: VIRUS PREVALENCE TABLE 3 Nick FitzGerald, Independent Consultant, NZ Ian Whalley, Sophos Plc, UK NEWS Richard Ford, Independent Consultant, USA 1. Two Be or not Two Be 3 Edward Wilding, Maxima Group Plc, UK 2. ThanY2Ks for the Memory! 3 LETTERS 4 IN THIS ISSUE: VIRUS ANALYSES 1. Beast Regards 6 • Oh dear, oh dear, oh dear Virus Bulletin: At long last 2. Papa Don’t Preach 8 the Letters page makes a comeback in this issue. Love it or hate it, it’s your way to have your say, starting on p.4. A DAY IN THE LIFE • Define your terms: Find out all you need to know about Educating Who? 10 polymorphism. Two researchers from Kaspersky Lab set FEATURES the record straight on p.14. 1. Virus Writers – Part 2 12 • Don’t panic! Our tutorial this month paves the way for 2. pOLEmorphism 14 future corporate case studies. In clear and easy-to-follow steps, the actions to take in the event of a virus or malware TUTORIAL outbreak on your system are documented on p.16. When Barriers Break Down 16 PRODUCT REVIEWS 1. DialogueScience AntiVirus Kit v3.0 18 2. eSafe Protect Enterprise 21 END NOTES AND NEWS 24 VIRUS BULLETIN ©1999 Virus Bulletin Ltd, The Pentagon, Abingdon, Oxfordshire, OX14 3YP, England. Tel +44 1235 555139. /99/$0.00+2.50 No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form without the prior written permission of the publishers.
    [Show full text]
  • Basics of Ethical Hacking – Manthan M. Desai
    Hacking For Beginners – Manthan Desai 2010 Legal Disclaimer Any proceedings and or activities related to the material contained within this book are exclusively your liability. The misuse and mistreat of the information in this book can consequence in unlawful charges brought against the persons in question. The authors and review analyzers will not be held responsible in the event any unlawful charges brought against any individuals by misusing the information in this book to break the law. This book contains material and resources that can be potentially destructive or dangerous. If you do not fully comprehend something on this book, don‘t study this book. Please refer to the laws and acts of your state/region/ province/zone/territory or country before accessing, using, or in any other way utilizing these resources. These materials and resources are for educational and research purposes only. Do not attempt to violate the law with anything enclosed here within. If this is your intention, then leave now. While using this book and reading various hacking tutorials, you agree to follow the below mentioned terms and conditions: 1. All the information provided in this book is for educational purposes only. The book author is no way responsible for any misuse of the information. 2. "Hacking for Beginners” is just a term that represents the name of the book and is not a book that provides any illegal information. “Hacking for Beginners” is a book related to Computer Security and not a book that promotes hacking/cracking/software piracy. 3. This book is totally meant for providing information on "Computer Security”, "Computer Programming” and other related topics and is no way related towards the terms "CRACKING” or "HACKING” (Unethical).
    [Show full text]
  • What Are Kernel-Mode Rootkits?
    www.it-ebooks.info Hacking Exposed™ Malware & Rootkits Reviews “Accessible but not dumbed-down, this latest addition to the Hacking Exposed series is a stellar example of why this series remains one of the best-selling security franchises out there. System administrators and Average Joe computer users alike need to come to grips with the sophistication and stealth of modern malware, and this book calmly and clearly explains the threat.” —Brian Krebs, Reporter for The Washington Post and author of the Security Fix Blog “A harrowing guide to where the bad guys hide, and how you can find them.” —Dan Kaminsky, Director of Penetration Testing, IOActive, Inc. “The authors tackle malware, a deep and diverse issue in computer security, with common terms and relevant examples. Malware is a cold deadly tool in hacking; the authors address it openly, showing its capabilities with direct technical insight. The result is a good read that moves quickly, filling in the gaps even for the knowledgeable reader.” —Christopher Jordan, VP, Threat Intelligence, McAfee; Principal Investigator to DHS Botnet Research “Remember the end-of-semester review sessions where the instructor would go over everything from the whole term in just enough detail so you would understand all the key points, but also leave you with enough references to dig deeper where you wanted? Hacking Exposed Malware & Rootkits resembles this! A top-notch reference for novices and security professionals alike, this book provides just enough detail to explain the topics being presented, but not too much to dissuade those new to security.” —LTC Ron Dodge, U.S.
    [Show full text]
  • Reversing Malware [Based on Material from the Textbook]
    SoftWindows 11/23/05 Reversing Malware [based on material from the textbook] Reverse Engineering (Reversing Malware) © SERG What is Malware? • Malware (malicious software) is any program that works against the interest of the system’s user or owner. • Question: Is a program that spies on the web browsing habits of the employees of a company considered malware? • What if the CEO authorized the installation of the spying program? Reverse Engineering (Reversing Malware) © SERG Reversing Malware • Revering is the strongest weapon we have against the creators of malware. • Antivirus researchers engage in reversing in order to: – analyze the latest malware, – determine how dangerous the malware is, – learn the weaknesses of malware so that effective antivirus programs can be developed. Reverse Engineering (Reversing Malware) © SERG Distributed Objects 1 SoftWindows 11/23/05 Uses of Malware • Why do people develop and deploy malware? – Financial gain – Psychological urges and childish desires to “beat the system”. – Access private data – … Reverse Engineering (Reversing Malware) © SERG Typical Purposes of Malware • Backdoor access: – Attacker gains unlimited access to the machine. • Denial-of-service (DoS) attacks: – Infect a huge number of machines to try simultaneously to connect to a target server in hope of overwhelming it and making it crash. • Vandalism: – E.g., defacing a web site. • Resource Theft: – E.g., stealing other user’s computing and network resources, such as using your neighbors’ Wireless Network. • Information Theft: – E.g., stealing other user’s credit card numbers. Reverse Engineering (Reversing Malware) © SERG Types of Malware • Viruses • Worms • Trojan Horses • Backdoors • Mobile code • Adware • Sticky software Reverse Engineering (Reversing Malware) © SERG Distributed Objects 2 SoftWindows 11/23/05 Viruses • Viruses are self-replicating programs that usually have a malicious intent.
    [Show full text]
  • Infosec Year in Review -- 1999
    InfoSec Year In Review -- 1999 M. E. Kabay, PhD, CISSP. Security Leader, INFOSEC Group, AtomicTangerine Inc. Category 11 Breaches of confidentiality Date 1999-01-29 Keyword data leakage privacy confidentiality control Web Source, Vol, No. RISKS 20 18 The Canadian consumer-tracking service Air Miles inadvertently left 50,000 records of applicants for its loyalty program publicly accessible on their Web site for an undetermined length of time. The Web site was offline as of 21 January until the problem was fixed. Date 1999-02-03 Keyword data leakage Web script QA vulnerability confidentiality Source, Vol, No. WIRED via PointCast An error in the configuration or programming of the F. A. O. Schwarz Web site resulted paradoxically in weakening the security of transactions deliberately completed by FAX instead of through SSL. Customers who declined to send their credit-card numbers via SSL ended up having their personal details — address and so forth — stored in a Web page that could be accessed by anyone entering a URL with an appropriate (even if randomly chosen) numerical component. Date 1999-02-10 Keyword e-commerce credit card personal information password privacy Source, Vol, No. RISKS 20 20 Prof. Ross Anderson of Cambridge University analyzed requirements on the AMAZON.COM online bookstore for credit card number, password, and personal details such as phone number. He identified several risks: (1) merchant retention of credit card numbers poses a far higher risk of capture than of capture in transit; (2) adding a password increases the likelihood of compromise because so many naïve users choose bad passwords and then write them down; (3) even the British site for Amazon contravenes European rules on protecting consumer privacy; (3) such practices make it easier for banks to reject their clients' claims of fraudulent use of their credit-card numbers.
    [Show full text]
  • Computer Viruses, Attacks, and Security Methods Muhammad
    Zulkifl et al LGURJCSIT 2019 ISSN: 2521-0122 (Online) ISSN: 2519-7991 (Print) LGU Research Jounral for Computer Sciences & IT Vol. 3 Issue 3, July - September 2019 Computer Viruses, Attacks, and Security Methods Muhammad Zulkifl Hasan [1] Senior Lecturer, M Zunnurain Hussain [3], Senior Lecturer Bahria University Lahore Campus[3], Zaka Ullah [2] Senior Lecturer Lahore Garrison University [1,2]. Abstract: with the fast growth of the Internet, computer threats and viruses have become a very serious issue for us, which attract public attention. Therefore, the distribution of computer viruses and worms were discussed in this study. This paper focuses on the effects of computer viruses. The main area of this paper is a brief discussion on computer viruses and security or detection methods. This study is very useful and helpful for computer users to use the different methods, possible steps to protect their system and information from any kind of possible attacks on their system. Keywords: computer threats, computer viruses, the risk of attacks, risk category, risk factors, cyber- attacks computer security methods 1. INTRODUCTION During the past, a huge range of computer viruses and computer applications have become problematic issue for the computer system and network security. A computer virus is a computer program that executes when a contaminated program is executed. A computer virus reproduces its own code by linking itself to other files in a way that execute code when the infected executable program is executed. It connected itself in the form of the host such as authorized, executable files. The virus exists inside the program, which said to be 'infected'.
    [Show full text]
  • Computer Parasitology
    Computer Parasitology Carey Nachenberg Symantec AntiVirus Research Center [email protected] Posted with the permission of Virus Bulletin http://www.virusbtn.com/ Table of Contents Table of Contents............................................................................................................................................................. 2 Introduction....................................................................................................................................................................... 4 Worm Classifications...................................................................................................................................................... 4 Worm Transport Classifications............................................................................................................................... 4 E-mail Worms ......................................................................................................................................................... 4 Arbitrary Protocol Worms: IRC Worms, TCP/IP Worms, etc. ...................................................................... 4 Worm Launch Classifications................................................................................................................................... 5 Self-launching Worms ........................................................................................................................................... 5 User-launched Worms ...........................................................................................................................................
    [Show full text]