DreamTeamDownloads1, FTP Help, Movies, Bollywood, Applications, etc. & Mature Sex Forum, Rapidshare, Filefactory, Freakshare, Rapidgator, Turbobit, & More MULTI Filehosts - View Single Post - Hackers Fake Microsoft Update; Spread Malware

photostill · 05-06-12, 19:26

Interesting. I've been following the Stuxnet, Du Qu, and Flame since it hit the recognition horizon.

Stuxnet was hallmarked by plug in type modules, which is what led researcher to realize this was professional programmers. That's the way professionals do. They will take premade stuff and plug it into to their work, saving time and effort. Script kiddies and part timers don't do that. They tend to write it all themselves.

Much of Stuxnet is also hallmarked by programmer teams doing the development. It's too much code for one guy working in a room by himself. Plus there is the part about the unidentified language at the time of reverse engineering. Some of the code looked to be a totally new language. Only after the public was asked to id the code, did it turn out to be older Visual C code. No recent programmers use the obsolete language and that was why no one recognized it. This means the programmers were older folk, not young ones.

Now Flame is a different animal, in that it's huge for a malware in size. It has the capability of plug in modules to be activated on command, or to download what is needed. It can take screenshots, once every second or so; it can even self-destruct, taking all evidence it was ever there.

But what is the real interest here, is that the signed certificate is now showing it's vulnerability. Not to long ago, a year or so, it was found out the dutch firm had it's certificate issuing compromised. So damaging was that the company went out of business. But signed certificates have been how much of the valid updates and security has been run. It's now proving to be a liability as much as a one legged man is to caravan.

Because it's been now shown how to look legal. Don't think for a minute they won't be reverse engineered to find out how and why they do what they do. At some point, all this malware is going to become the stock and tools of trade for the malware writers. At that time, either we better have a secure computer/connection, or we better be off the net. There won't be anywhere on line safe for computer users as they are configured and used today.

05-06-12, 19:26	#2
photostill The Enigma Join Date: Apr 2012 Posts: 9,977 Thanks: 3,009 Thanked 1,524 Times in 928 Posts	Re: Hackers Fake Microsoft Update; Spread Malware Interesting. I've been following the Stuxnet, Du Qu, and Flame since it hit the recognition horizon. Stuxnet was hallmarked by plug in type modules, which is what led researcher to realize this was professional programmers. That's the way professionals do. They will take premade stuff and plug it into to their work, saving time and effort. Script kiddies and part timers don't do that. They tend to write it all themselves. Much of Stuxnet is also hallmarked by programmer teams doing the development. It's too much code for one guy working in a room by himself. Plus there is the part about the unidentified language at the time of reverse engineering. Some of the code looked to be a totally new language. Only after the public was asked to id the code, did it turn out to be older Visual C code. No recent programmers use the obsolete language and that was why no one recognized it. This means the programmers were older folk, not young ones. Now Flame is a different animal, in that it's huge for a malware in size. It has the capability of plug in modules to be activated on command, or to download what is needed. It can take screenshots, once every second or so; it can even self-destruct, taking all evidence it was ever there. But what is the real interest here, is that the signed certificate is now showing it's vulnerability. Not to long ago, a year or so, it was found out the dutch firm had it's certificate issuing compromised. So damaging was that the company went out of business. But signed certificates have been how much of the valid updates and security has been run. It's now proving to be a liability as much as a one legged man is to caravan. Because it's been now shown how to look legal. Don't think for a minute they won't be reverse engineered to find out how and why they do what they do. At some point, all this malware is going to become the stock and tools of trade for the malware writers. At that time, either we better have a secure computer/connection, or we better be off the net. There won't be anywhere on line safe for computer users as they are configured and used today. __________________ You can help this site, by clicking on the link below to buy a Premium Account. & Thank you for helping us. Click;