Long time ago, I would like to write something on web security, as lots of business being transferred to web infrastructure. The threat has become more severe in a short period of time. Web insecurity becomes a big problem today. We have no choice but to confront the issues. Read more…
CNCERT released the first half year security report of 2008. You can download this report (pdf) at there official website.
An interesting point from the report is the geographic distribution of controller computers of botnets at China. According to the investigation of CNCERT, roughly 98230 computers abroad were discovered to be controlling the botnet at China, which means a 26.4% growth against 2007. The IP addresses of those controllers are from: Read more…
John Schiefer,26岁,来自美国洛杉矶,网名是“”acid” 或 “acidstorm”。
前不久,他向机关和媒体承认运行了超过25万计算机组成的僵尸网。他通过两个IRC的聊天室”#bottalk” and “#rizon,”来控制他的庞大僵尸网,用以盗窃用户的帐号、口令、信用卡号等。John声称他主要使用AIM的漏洞来扩张他的僵尸网,发送链接给目标用户群,诱骗他们点击,点击后botware或trojan木马就下载到了他们的计算机上,潜伏下来。
先前John曾在洛杉矶的Internet电话公司 – 3G Comm工作,主要是为公司的商业客户提供安全保护。由于John的特殊身份,这则报导带来了大量的讨论,职业安全顾问们值得信任吗?他们都在做什么? Read more…
Recent Comments