I know, the actual topic sounds strange to you and you might want to look at your schedule first – but I can assure you, the 1st of april is already over and this is not an april fool. But have you ever thought about malware and the health of the environment?
Malware is a topic, driving many people crazy or making sysadmins cry. Sadly we cannot say that there’s an end insight. But what can we do against it? ‘Nothing’ is the wrong answer. That’s why I have started running honeypots. The salvage then is sent to various anti-malware companies so that it can be analyzed and killed. By […]
I was asked to explain why I am interested in malware. Well – why not? Other people are collecting strange things too – coins, stamps,… The first worm I tried to understand was the well known Loveletter. As it is just a VB Script, it is very easy to understand. Why did I read it? Well… there were […]
I have stopped counting the number of times I have played that game: Removing malware on a windows box without killing the system. The first step is identifying the malware. This is normally done by a virus scanner. If there is none avaliable, you might try some online scanner. If this is not possible or the scanner fails, […]
My honeypots are located at static IPs, because they do not run on dedicated machines. Normally this wouldn’t be a problem, but those traps are getting known to botnet kiddies, as ‘common’ writes at the Nepenthes page. Because of them avoiding our ranges it is getting harder and harder for getting good samples every day.
Eigentlich war es nur eine Frage der Zeit, bis jemand auf die Idee kommt, das aktuelle WM-Fieber für Viren auszunutzen; War ja bislang nie anders. Seither wandern wieder Mails wie: “Crazy soccer fans killed two teens, watch what they make on photos. Please report on this all who know.” Der Anhang, klarerweise ein Virus, wird beim Öffnen installiert. […]