David Guetta scores another UK #1 but this time, it's with Akon on the song called "Sexy chick". Black eyed peas are back at #2 and Tinchy Stryder is at #3.
If you spot someone trying to ask you to check out photos of yourself at friends.gallery-spaces.com, it's a virus. Not only that I believe it originated from Mexico much like swine flu.
Here's a nice list of known malicious sites
Showing posts with label virus. Show all posts
Showing posts with label virus. Show all posts
Sunday, 23 August 2009
Wednesday, 27 May 2009
Random Musings - Day #147 (Shockwave Remix)
Shocked by shockwave
I picked a bit of a virus/malware infection arguably when looking for software to decompiling shockwave flash files. I am assuming that was what caused it. Sophos did a poor job as the last line of defense. It found the malware software too late. Anyways how do you stop it? It's very easy to pickup a malware. It could be disguised by legit software. It can be picked up via drive-by downloads, i.e. when visiting a site, it tries to direct to another site (using Javascript). If you are paranoid, you should really use Noscript for firefox.
Shockwave decomposition
For now let's have a look at some articles about securing Shockwave flash files. Flash is of course made by Adobe and they have their guide to securing shockwave flash files. Passing arguments into the flash files could be liable to code injection so knowing how it works is a good start as seen in the flashmove.com and the actionscript forums. Allow networking is another parameter that ideally shouldn't be set.
Shockwave Vulnerabilities
There are some articles about vulnerabilities with shockwave flash files. Examples of vulnerabilities found in common applications using flash can be seen on xssed.com. Flash has an advisory as well.
Shockwave Decompilers
There are a number of tools to decompile flash. Some of these may or may not contain MALWARE! Be warned!
SoThink SWF Decompiler (latest version is 5) is available from softpedia. Flare v0.6from HP is another readily available decompiler. There is an open source version sitting at OWASP called SWF intruder. But there is code out there to access there. More details about SWF intruder can be found on the OWASP site and the google code. Also can use a combination of answers.
Flare 0.6 is available for use. HP has a search for swfscan machine. swfscan is a free scan with some restrictions. Decompile flash is another tool that focuses in on the deompiled flash code. Same thing for Free Flash Decompiler gold
I picked a bit of a virus/malware infection arguably when looking for software to decompiling shockwave flash files. I am assuming that was what caused it. Sophos did a poor job as the last line of defense. It found the malware software too late. Anyways how do you stop it? It's very easy to pickup a malware. It could be disguised by legit software. It can be picked up via drive-by downloads, i.e. when visiting a site, it tries to direct to another site (using Javascript). If you are paranoid, you should really use Noscript for firefox.
Shockwave decomposition
For now let's have a look at some articles about securing Shockwave flash files. Flash is of course made by Adobe and they have their guide to securing shockwave flash files. Passing arguments into the flash files could be liable to code injection so knowing how it works is a good start as seen in the flashmove.com and the actionscript forums. Allow networking is another parameter that ideally shouldn't be set.
Shockwave Vulnerabilities
There are some articles about vulnerabilities with shockwave flash files. Examples of vulnerabilities found in common applications using flash can be seen on xssed.com. Flash has an advisory as well.
Shockwave Decompilers
There are a number of tools to decompile flash. Some of these may or may not contain MALWARE! Be warned!
SoThink SWF Decompiler (latest version is 5) is available from softpedia. Flare v0.6from HP is another readily available decompiler. There is an open source version sitting at OWASP called SWF intruder. But there is code out there to access there. More details about SWF intruder can be found on the OWASP site and the google code. Also can use a combination of answers.
Flare 0.6 is available for use. HP has a search for swfscan machine. swfscan is a free scan with some restrictions. Decompile flash is another tool that focuses in on the deompiled flash code. Same thing for Free Flash Decompiler gold
Monday, 11 May 2009
Random Musings - Day #131
A is for...
Funny game, my sister came up with whilst in the car. Go through A-Z of food-types. For some reason, we kept coming up with animals instead... e.g. Dog, Frog, Llama, Orangutan!
Engineering works
I was annoyed on Saturday that there was engineering works to work. I lost 30 minutes waiting for a replacement bus. Another 15 minutes waiting at one station and another 20 minutes waiting at another one. So that sucked over an hour of my life away.
But engineering works weren't done yet. They were overrunning and hence this morning, my train was cancelled. Another half hour of my life... gone!
Mashup
If I haven't mentioned it before but this is a great mashup of Need you tonight.
Javascript is your friend
You can write text using fromCharCode. Very useful, if your quotation marks are escaped and you need to bypass it (cough). There is a comprehensive list of charcodes. Javascriptkit offers additional string functions.
Google hacked / Cassie naked?
I was looking for more details about Google getting hacked instead I got Cassie getting naked...
Seriously though, there was a universal xss issue with ALL google services which looks like has just been fixed.
Acai Berry Scam
It's the second time, I've got a random offline message from a contact.
I've not seen anything specific relating to ads in msn messenger... The actual pills themselves are apparently a rip-off!
The Wicked Fire hints the problem could with account being hacked. This blog claims it's a msn virus of some description...
Whatever happened to...
90's divas, Dina Carroll and Shola Ama?
Funny game, my sister came up with whilst in the car. Go through A-Z of food-types. For some reason, we kept coming up with animals instead... e.g. Dog, Frog, Llama, Orangutan!
Engineering works
I was annoyed on Saturday that there was engineering works to work. I lost 30 minutes waiting for a replacement bus. Another 15 minutes waiting at one station and another 20 minutes waiting at another one. So that sucked over an hour of my life away.
But engineering works weren't done yet. They were overrunning and hence this morning, my train was cancelled. Another half hour of my life... gone!
Mashup
If I haven't mentioned it before but this is a great mashup of Need you tonight.
Javascript is your friend
You can write text using fromCharCode. Very useful, if your quotation marks are escaped and you need to bypass it (cough). There is a comprehensive list of charcodes. Javascriptkit offers additional string functions.
Google hacked / Cassie naked?
I was looking for more details about Google getting hacked instead I got Cassie getting naked...
Seriously though, there was a universal xss issue with ALL google services which looks like has just been fixed.
Acai Berry Scam
It's the second time, I've got a random offline message from a contact.
I got so many messages about those acai berry pills that I decided to order them and guess what? I lost 23 pounds so far and its only been two weeks. I am living proof that they work and best part was, they only cost me five dollars to try over at http://weekcome.com
I've not seen anything specific relating to ads in msn messenger... The actual pills themselves are apparently a rip-off!
The Wicked Fire hints the problem could with account being hacked. This blog claims it's a msn virus of some description...
Whatever happened to...
90's divas, Dina Carroll and Shola Ama?
Subscribe to:
Posts (Atom)