http://technoblogic.com Technology at its best and whats on my mind! Tue, 01 Apr 2008 10:37:13 +0000 http://backend.userland.com/rss092 en A year or two ago, the malware author's preferred way of spreading their wares was via e-mail attachments. We all remember mass outbreaks like Bagle, Mydoom and Warezov.Well, sending EXE attachments in e-mail doesn't work anymore. Almost every organization is now dropping such risky attachments from their e-mail ... http://technoblogic.com/2008/04/01/from-smtp-to-http-to-ftp/ Alex Dragulescu's Malwarez "is a series of visualization of worms, viruses, trojans and spyware code."We came across Dragulescu's site a few weeks ago. The malware visualizations are pretty cool.Readers Feher and Dalibor recently sent us the link to MessageLabs' gallery. They're the ones that commissioned the series from ... http://technoblogic.com/2008/04/01/visualizations/ Microsoft just released the March 2008 updates. This time there are four critical updates that all fix vulnerabilities in different Office components and at least one of them have been used in targeted attacks lately. We advise everyone to install these updates as soon as possible. On ... http://technoblogic.com/2008/04/01/march-updates-from-microsoft/ We saw this email being spammed a week ago:            Hey, great opportunity for growth? High salary?Sounds good. Maybe I should apply.So I did. Here's what I wrote back (do note that I used my normal F-Secure work address for this):            Well, I got a reply two hours later. Here's the ... http://technoblogic.com/2008/04/01/dexter-union-inc/ Big news today.Usenix, the advanced computing systems association, has today announced open public access to all of its conference proceedings.This is relevant to us working with computer security, as Usenix Security Symposiums have been among the best technical conferences on the topic anywhere in the world. Unfortunately, most ... http://technoblogic.com/2008/04/01/all-usenix-conference-proceeding-made-public/ Once again, SecurityFix has a great scoop.Thursday's post from Brian Krebs is about Dmitri Golubov. Golubov was convicted in 2005 for selling credit card details ("dumps") stolen via trojans. He was accused of causing multi-million dollar damages.Turns out Mr. Golubov is now out of jail — and is ... http://technoblogic.com/2008/04/01/digging-the-archives-for-case-carderplanet/ We have just released security advisory FSC-2008-2.The Secure Programming Group at Oulu University has created a collection of malformed archive files. These archive files break and crash products from at least 40 vendors — including several antivirus vendors… including us.We've fixed a long list of our products to ... http://technoblogic.com/2008/04/01/f-secure-security-advisory-fsc-2008-2/ Let's see. There's 14 hours to go before the next Formula 1 Grand Prix starts in the Sepang circuit in Kuala Lumpur, Malaysia - not too far away from our Malaysian research lab. Will it be Räikkönen, Kovalainen or Rosberg winning this time? This was the question in ... http://technoblogic.com/2008/04/01/formula-1-racing-and-computer-security/ There's unrest on the streets of Tibet - clashes between Tibetians and the Chinese military. Quoting Wikipedia, "Tibet was once an independent kingdom, which later became a part of China. The government of the People's Republic of China and the Government of Tibet in Exile, however, disagree over ... http://technoblogic.com/2008/04/01/targeted-malware-attacks-against-pro-tibet-groups/ This year Black Hat Europe is held in Moevenpick Hotel Amsterdam. There are a lot of interesting training like Pedram's and Ero's presentation "Reverse Engineering on Windows: Application in Malicious Code Analysis".More information on Black Hat Europe 2008 are available here.Oh, and if you think that this year, ... http://technoblogic.com/2008/04/01/f-secure-goes-to-black-hat-2008-in-amsterdam/