The badcyber.com page points to a program calling a magic SVC. Maybe
that's what David is referring to? But I didn't read/understand enough
to see if they used UID=0 somehow to implement that SVC, or if they had
to rely on it already being in place, or if this program was used at all.
https://github.com/mainframed/logica/blob/master/Tfy.source.backdoor
On 1/29/2022 10:27 PM, Itschak Mugzach wrote:
David,
I am 40+ years developer in assembler. I believe I wrote and used SVCs
before you. If you read my previous emails you would see that modernisation
is a must. However, you haven't given any sample of breach caused by
standard mvs code, while I gave two.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
