A new research paper from the Freedom And Law Center deals with issues
that some of us keep raising these past few years, and does a good job
at it - bionic hacking (or cybernetic hacking if you prefer).
Killed by Code: Software Transparency in Implantable Medical Devices
outlines some of the
The upcoming issue will be about cyber war. Check out the front page image:
http://sphotos.ak.fbcdn.net/hphotos-ak-snc3/hs488.snc3/26668_410367784059_6013004059_4296972_499550_n.jpg
Gadi.
___
Full-Disclosure - We believe in it.
Charter:
(for download with pay :( ):
http://www.liebertonline.com/doi/abs/10.1089/cyber.2009.0134
Thanks, and any comments appreciated,
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http://gevron.livejournal.com/
___
Full-Disclosure - We believe
, in five years or so.
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http://gevron.livejournal.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http
/chuck_norris_botnet_karatechops_routers_hard.html
I will post updates on this as I discover them on my blog, under this same
post, here:
http://gadievron.blogspot.com/2010/02/chuck-norris-botnet-and-broadband.html
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http://gevron.livejournal.com
Last week Czech researchers released information on a new worm which
exploits CPE devices (broadband routers) by means such as default
passwords, constructing a large DDoS botnet. Today this story hit
international news.
Original Czech:
Corporate espionage in the news, and not just because of Google: Hilton
and the Oil industry. Is anyone calling espionage by means of computers
cyber-espionage yet? I hope not. At least they shouldn't call it cyber war.
Two news stories of computerized espionage reached me today.
The first,
Microsoft on security. Perhaps they have grown complacent with the PR
nightmare of full disclosure a decade behind them, with most
vulnerabilities now sold to them directly or indirectly by the
security industry.
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http
Hi all, this message is for the Israeli community. :o)
בואו לשתות בירה עם מנכל SANS. תשלחו לי אימייל אם אתם רוצים לבוא גם
גדי.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored
Why people call this so-called Korea DDoS a cyber war? Don't people know
how the Internet works yet?
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http://gevron.livejournal.com/
___
Full-Disclosure - We believe in it.
Charter: http
Gadi Evron's Cholesterol wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
How in fact does the Internet work?
Alright:
http://darkreading.com/blog/archives/2009/07/ddos_cyber_warf.html
Gadi.
On Thu, 09 Jul 2009 11:25:32 -0400 Gadi Evron g...@linuxbox.org
wrote:
Why people
, maybe someone here will come up with a cuter idea?
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http://gevron.livejournal.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted
:
--
It's time to let ISOI fly free, I will not be attending this one. I
would like to use this opportunity to thank Randy Vaughn, Dan Hubbard
and Jeff Debrosse for their efforts in making ISOI 7 happen.
Cordially yours,
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http
Sometimes news finds us in mysterious yet obvious ways.
HD set a status which I noticed on my twitter:
@hdmoore reading through sctp_houdini.c - one-shot remote linux kernel
root - http://kernelbof.blogspot.com/
I asked him about it on IM, wondering if it is real:
looks like that
but requires a
M.B.Jr. wrote:
Dear Gadi,
On Wed, Mar 25, 2009 at 9:40 AM, Gadi Evron g...@linuxbox.org wrote:
While we have seen ISP phishing and Hebrew phishing before, these
attacks started when Google added translation into Hebrew.
How exactly did you establish such a certain connection between
In this email message I'd like to discuss two subjects:
a. Phishing against ISPs.
b. Phishing in different languages against ISPs as soon as Google adds a
new translation module.
[My apologies to those who receive this email more than once. I am
approaching several different industries on this
replied are requested.
Organizers:
Gadi Evron
Dan Kaminsky
Steve Llano
Highlights from proposal:
British Parliamentary Debate is a style of debating based on the how the
British conduct business at their Parliament. Two teams consisting of
two members each, face off against each other trying
months I've been calling Humexp.
I am currently engaged in research looking into the Estonian cyber war
from a social psychology perspective, which turned out to be quite
interesting. More on that when I can share, though.
Gadi Evron.
___
Full
Hi all. ISOI is once again happening, and back to the States.
Almost final agenda: http://isotf.org/isoi6.html
As usual, while attendance is limited to the folks who are busy saving the
Internet/fighting crime, it is free of charge.
Once again we offer the public at-large the opportunity to
BNP (British National Party) membership (supposedly) has been leaked.
I don't want to link to the URL here. You can find it in my blog post:
http://gadievron.blogspot.com/2008/11/bnp-british-national-party-membership.html
Gadi.
___
-- Forwarded message --
Date: Tue, 28 Oct 2008 20:47:48 -0700
From: Paul Ferguson [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: [funsec] ICANN Terminates EstDomains' Registrar Accreditation
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear Mr. Tsastsin,
Be advised that the
On Tue, 7 Oct 2008, Tonnerre Lombard wrote:
Salut, Gadi Evron,
On Sun, 5 Oct 2008 03:32:03 -0500 (CDT), Gadi Evron wrote:
I have dual citizenship. Along with my homeland citizenship, I am of
the Internet, and see it as my personal duty to try and make the
Internet safe.
Poor Germans who
genuine, and I am happy I wrote them.
Thank you for your time,
Gadi.
Gadi Evron wrote:
I started answering an email an hour ago, and it was important enough to
spend time on. It also ended up being too long, so I dumped it in a blog
post if you prfer reading in a web browser.
http
on the target list? :)
More seriously, why do I care so much? I have dual citizenship. Along with my
homeland citizenship, I am of the Internet, and see it as my personal duty to
try and make the Internet safe.
Gadi Evron,
Of the Internet.
___
Full-Disclosure
to answer any questions. To
avoid spam of her inbox, email me for her address.
Gadi Evron.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
I've recently been involved in an email thread which, partly by my doing,
unfortunately degraded into a dirty flame war for a few hours.
Whenever meta discussion takes over real discussion, frustration builds up
inside me. This comic strip from today which a friend just sent me, seems
to explain
,
Avi Freedman, Andrew Fried Gadi Evron.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
cyber war doctrine, getting people involved, engaged. Personally
aware and a part of what's going on.
It can't hurt us, and perhaps now, four years over-due and two years after
the previous attempt, we may be ready to give it a go and test the
concept.
---
Gadi Evron.
--
You don't
Tea Baggins tebaggins at gmail.com
Teatime from Pratchett and Bilbo Baggins from Tolkien?
Nice touch.
No idea what the rest of the trolling means.
Gadi.
___
Full-Disclosure - We believe in it.
Charter:
It seems like the online Russian population is getting mobilized. Like a
meme spreading on the blogosphere, the mob is forming and starting to
riot, attacking Georgia.
This seems very similar to the Estonian incident, only my current guess is
natural evolution rather than grass-roots
is also planning a
special after-hours event for us to enjoy.
We have the option of moving to a bigger room if necessary, so you can RSVP
when you like (although we'd appreciate notice, and our confirmation is
required).
Best regards,
Randy Vaughn and Gadi Evron
People need to realize it's quite possible these are just kids who
attacked Georgia, and what that means.
On Mon, 11 Aug 2008, Paul Ferguson wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -- Gadi Evron [EMAIL PROTECTED] wrote:
In the last days news and government web sites
On Tue, 12 Aug 2008, Paul Ferguson wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -- Gadi Evron [EMAIL PROTECTED] wrote:
People need to realize it's quite possible these are just kids who
attacked Georgia, and what that means.
Certainly -- anything is possible.
I would note
://www.ciaonet.org/journals/gjia/v9i1/699.pdf
The best article describing the events so far is by John Markoff at the
New York Times:
http://www.nytimes.com/2008/08/13/technology/13cyber.html?em
Gadi Evron.
On Mon, 11 Aug 2008, Gadi Evron wrote:
In the last days news and government web sites
on their own.
Gadi Evron.
--
You don't need your firewalls! Gadi is Israel's firewall.
-- Itzik (Isaac) Cohen, Computers czar, Senior Deputy to the Accountant
General,
Israel's Ministry of Finance, at the government's CIO conference, 2005.
(after two very funny self-deprication quotes
http://www.kaspersky.com/news?id=20757567
7 days of seeding to impact.
Gadi.
On Wed, 6 Aug 2008, Gadi Evron wrote:
Hi all.
There's a facebook (possibly worm) something malicious sending fake
messages from real users (friends).
The sample also has a remote drop site (verified
I am constantly updating on this on my twitter account to avoid
list clutter:
http://twitter.com/gadievron
You can watch the infection live on a web counter from the hosting
provider that the worm points to. This thing is fast-spreading.
Gadi.
On Wed, 6 Aug 2008, Gadi Evron wrote
Hi all.
There's a facebook (possibly worm) something malicious sending fake
messages from real users (friends).
The sample also has a remote drop site (verified by someone who shall
remain nameless).
This is possibly zlob, not verified. Thanks Nick Bilogorskiy for his help.
Infection sites
:44 PM, Gadi Evron [EMAIL PROTECTED] wrote:
Hi all.
There's a facebook (possibly worm) something malicious sending fake
messages from real users (friends).
The sample also has a remote drop site (verified by someone who shall
remain nameless).
This is possibly zlob, not verified
On Thu, 17 Jul 2008, The Security Community wrote:
http://70percenters.googlepages.com/
The FBI estimates that about 70 percent of all computer security
breaches are perpetrated by insiders.
For years this lie and variations on the same theme have been
spreading through the Internet and the
- http://isotf.org/isoi2.html
Cisco - http://isotf.org/isoi.html
A perliminary program will become available in a few weeks on:
http://isotf.org/isoi5.html
Gadi Evron Randy Vaughn.
___
Full-Disclosure - We believe in it.
Charter: http
In this email to I summarise the discussion thread.
One thing we did not do in these threads is to thank Core Security and
Sebastian Muniz for the work, and releasing it to help make the world
safer.
Gadi.
Date: Sun, 25 May 2008 05:27:36 -0500 (CDT)
From: Gadi Evron
To: Joel Jaeggli
On Tue, 20 May 2008, Viktor Larionov wrote:
Hi Gadi and all the rest of a community,
I work and live in Estonia, and I was a witness to all happening here,
especially on the cyber-sphere starting the first day.
Let's skip the details on the political context of your story, which from my
by a third
party:
Battling Botnets and Online Mobs
Estonia's Defense Efforts during the Internet War
URL: http://www.ciaonet.org/journals/gjia/v9i1/699.pdf
It is not technical, I hope you find it useful.
Gadi Evron.
___
Full-Disclosure - We
painful to download.
TITLE: My Name is Gadi Evron
FILENAME: ckfd001-chatx-my_name_is_gadi_evron.mp3
DOWNLOAD:
http://rapidshare.com/files/107868234/ckfd001-chatx-my_name_is_gadi_evron.mp3.html
___
Full-Disclosure - We believe in it.
Charter
http://www.videojug.com/film/how-to-behave-on-an-internet-forum
:)
Gadi.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
I was just woken up with the news of Justin's death and am unsure what to
think or how to respond--I need to. I feel things are left unfinished, a
light just disappeared without warning, and all I can think of is what I
said to him, when and where. Was I nice? Was I respectful? Did I always
Hi,
Recently on opening one of my site,my antivirus pops up saying that it
has found on malicious script.the url is random and i have managed to
get tht script.it is using some flaw in apple quick time.
u can get the zip file for java script here:
http://secgeeks.com/what.zip
password is
On Wed, 21 Nov 2007, Paul Schmehl wrote:
If Yahoo was able to fix the problem quickly, then it would appear that Yahoo
had a compromised domain server or servers.
We all get pwned at one point or another, how we respond is what matters.
--
Paul Schmehl ([EMAIL PROTECTED])
Senior
You try and go here:
http://hushmail-901.blogspot.com/2007/11/hushmail-tryig-to-delet-contacts-in.html
You get here:
http://search-desc.ebay.com/hushmail_W0QQ_trksidZm37QQcatrefZC6QQfromZR10QQftsZ2QQsacatZQ2d1QQsargnZQ2d1QQsaslcZ2QQsbrftogZ1QQsofocusZunknown
On Thu, 1 Nov 2007, Thor (Hammer of God) wrote:
But more importantly, let's look at things from the other side. Let's
say I'm wrong, and that Gadi is right on target with his hit hard
I'd say we are both right.
You look at it from a security researcher stand-point. There is nothing
to bite them in the behind.
I can sum it up in one sentence: OS X is the new Windows 98. Investing in
security ONLY as a last resort losses money, but everyone has to learn it
for themselves.
Gadi Evron.
___
Full-Disclosure - We believe in it.
Charter
On Thu, 1 Nov 2007, Jim Harrison wrote:
While Apple-oriented threats may not get either the validation or the
publicity (on hardly equals the other) that Windows attacks do, it's hardly
accurate (much less fair) to make those comparisons.
For all those comparative points, my Kaypro-4 running
There have been many threads on this subject, but I believe this post
below covers what some of us are trying to say on why this issue is
significant.
Obviously some people are far more articulate than me.
-- Forwarded message --
Date: Thu, 1 Nov 2007 16:47:17 -0400
From:
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
On Tue, 25 Sep 2007, Jason wrote:
You present a valid position but fall short of seeing the whole picture.
As an attacker, nation state or otherwise, my goal being to cripple
communications, 0day is the way to go. Resource exhaustion takes
resources, something the 0day can deprive the enemy
On Tue, 25 Sep 2007, J. Oquendo wrote:
In a strategic war, most countries aim to eliminate supply points and
mission critical infrastructure as quickly as possible. In a
cyberwarfare situation me personally, I would aim to 1) disrupt/stop via
a coordinated attack whether its via a botnet or
On Tue, 25 Sep 2007, Thor (Hammer of God) wrote:
For the record, the original term O-Day was coined by a dyslexic
security engineer who listened to too much Harry Belafonte while working
all night on a drink of rum. It's true. Really.
t
Okay. I think we exhausted the different views, and
On Tue, 25 Sep 2007, Thor (Hammer of God) wrote:
For the record, the original term O-Day was coined by a dyslexic
security engineer who listened to too much Harry Belafonte while working
all night on a drink of rum. It's true. Really.
t
Okay. I think we exhausted the different views, and
On Tue, 25 Sep 2007, Brian Loe wrote:
On 9/25/07, Gadi Evron [EMAIL PROTECTED] wrote:
Okay. I think we exhausted the different views, and maybe we are now able
to come to a conlusion on what we WANT 0day to mean.
What do you, as professional, believe 0day should mean, regardless of
previous
On Wed, 26 Sep 2007, Charles Miller wrote:
On 26/09/2007, at 5:02 AM, Gadi Evron wrote:
Okay. I think we exhausted the different views, and maybe we are now able
to come to a conlusion on what we WANT 0day to mean.
What do you, as professional, believe 0day should mean, regardless
Impressive vulnerability, new. Not a 0day.
Not to start an argument again, but fact is, people stop calling
everything a 0day unless it is, say WMF, ANI, etc. exploited in the wild
without being known.
I don't like the mis-use of this buzzword.
Gadi.
On Thu, 20 Sep 2007, pdp
, it is as a revolutionary
against the Revolution.
On Thu, 20 Sep 2007 11:29:22 -0400 Gadi Evron [EMAIL PROTECTED]
wrote:
Impressive vulnerability, new. Not a 0day.
Not to start an argument again, but fact is, people stop calling
everything a 0day unless it is, say WMF, ANI, etc. exploited
scripting
It can be found on Beyond Security's website, here:
http://www.beyondsecurity.com/sws_overview.html
Thanks,
Gadi Evron.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored
Thank you for your kind words and advice.
On Thu, 6 Sep 2007, Bee Binger wrote:
How often do you google search for yourself? Do you
run across all the posts of people ridiculing you for
being an idoit? if not matasano's blog would be a good
start.
Maybe you should instead spend your time
replaced with beep):
Gadi Evron
2 Sep 2007
Gangbeep facial asian amateurs, bang bus jessica hardcore pictures bang your
head, asian virgins.asts. Teen Cherry Action - Nice brunette teen beeped hard
on the bed and getting a beepy beepshot. Beep beeping boy beep teen legs, ...
Untitled - h ttp://n
Someone is taking care of you, and at the very least, you will hear a
response.
--- Forwarded message follows ---
From: Gavin Atkinson [EMAIL PROTECTED]
To: full-disclosure@lists.grok.org.uk
Date sent:Wed, 29 Aug 2007 18:58:56 +0100
Hi, like last time, we are looking for community input and questions for the
Internet security operations community, to be discussed during ISOI 3.
ISOI is happening this Monday and Tuesday, we will likely compile the responses
in a few weeks.
We will reply to people personally on issues which
So, after they acted out and the goons took over, I eventually had to
physically disable Rocky (gobbles and possey)) at defcon. For some
reason he decided to attempt an agressive physical act which was somewhat
homosexual, on me. Bad call by him, I'd think.
After disabling him with a.. gentle
Sorry, I don't know who [EMAIL PROTECTED] is, but it wasn't me. I'd
suggest emailing Rocky, he likes big guys. :)
Thanks,
Gadi.
On Mon, 6 Aug 2007, monikerd wrote:
Gadi Evron wrote:
I formerly had a great deal of respect, bordering on admiration, for Theo
deRaadt's refusals
Hey, don't worry Gaydi, we'll see you at CCC. HUGS AND KISSES. ;PppPpPPpPpp
- goudatr0n
=
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia
Hey, don't worry Gaydi, we'll see you at CCC. HUGS AND KISSES. ;PppPpPPpPpp
- goudatr0n
Boardwalk for $500? In 2007? Ha! Play Monopoly Here and Now (it's updated for
today's economy) at Yahoo! Games.
I formerly had a great deal of respect, bordering on admiration, for Theo
deRaadt's refusals to compromise his open source principles, even in the
face of stiff opposition. Although he has occasionally gone over-the-top,
recommended some frankly very dubious changes to OpenBSD, and is regularly
if you wish)
at: Gadi Evron [EMAIL PROTECTED].
Sick sense of humor? Visit Yahoo! TV's
Comedy with an Edge to see what's on, when.
http://tv.yahoo.com/collections/222
Network Working Group J. Evers
Internet-Draft Bantown Consulting, Inc.
Intended status: Standards Track November 2006
Expires: May 5, 2007
A Standard for the Transmission of IP Datagrams
Network Working Group J. Evers
Internet-Draft Bantown Consulting, Inc.
Intended status: Standards Track November 2006
Expires: May 5, 2007
A Standard for the Transmission of IP Datagrams
On Sat, 14 Jul 2007, Dragos Ruiu wrote:
On Tuesday 10 July 2007 08:53, Gadi Evron wrote:
To paraphrase Guninski, this is still not a 0day. It is a vulnerability
being disclosed.
You're being pedantic Gadi. :-)
We have to accept the term 0day has passed into
the realm of meaningless
On Tue, 10 Jul 2007, Thor Larholm wrote:
There is a URL protocol handler command injection vulnerability in Internet
Thor, thank you for sharing. Nice work.
To paraphrase Guninski, this is still not a 0day. It is a vulnerability
being disclosed.
Explorer for Windows that allows you to
Gadi Evron (Beyond Security)
- Strategic Lessons from the Estonian First Internet War
Jose Nazarijo (Arbor)
- Botnet statistics from the Estonian attack
Andrew Fried (Treasury Department)
- Phishing and the IRS - New Methods
Danny McPherson (Arbor)
- TBA
communities.
Gadi Evron.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
ISPs, who spent some time and
effort exploring this threat and in some cases acting on it. If anyone can
share their experience on dealing with securing their infrastructure in
this regard publicly, it would be much appreciated.
Thanks.
Gadi Evron
1 - 100 of 577 matches
Mail list logo