Posted on Wednesday, 23rd September 2009 by Michael
Authentication Proxies: Secure or Not? A while back I wrote on cached credentials and proxy authentication in regards to spyware. Well I rewrote the paper and cleaned it up a bit. I then had informit.com publish it for me. to see it check out the url below. This one includes the .net code to make [...]
Posted in Papers | Comments (0)
Posted on Wednesday, 23rd September 2009 by Michael
Fun with Poison Ivy Poison Ivy is a remote access Trojan (Tool) that can be found at the following URL: http://poisonivy-rat.com and a support forum can be found here http://ratforge.net/forums/ . Please note that these are Trojans and www.digitaloffensive.com nor any of its staff are responsible for any use or misuse that you do with [...]
Posted in Papers | Comments (0)
Posted on Wednesday, 23rd September 2009 by Michael
CACHED CREDENTIALS, PROXY AUTHENTICATION and SPYWARE OH MY! Recently a client of mine and I had a long winded debate about the dangers of not protecting machines from spyware and other malware. The client swore up and down that since they had an authenticating proxy that required the windows cached credentials to access the internet [...]
Posted in Papers | Comments (0)
Posted on Wednesday, 23rd September 2009 by Michael
The IRS has partnered up with China to help you get a tax bonus! As some of you know my day job has me providing security guidance to a large user base that vary in their technical skills. Every day we get several requests that come in asking us weather something is a scam or [...]
Posted in Papers | Comments (0)
Posted on Wednesday, 23rd September 2009 by Michael
More IRS Shenanigans Today our director of Internal Audit dropped on my desk a printed email that looked exactly the same as the scam email I wrote about a few weeks ago in the post called “The IRS has partnered up with China to help you get a tax bonus!”. I figured since I had [...]
Posted in Papers | Comments (0)
Posted on Wednesday, 23rd September 2009 by Michael
I am not your Pal. How to detect PayPal-based phishing scams. The term phishing originated by taking the term fishing, meaning to bait and catch, and using a language of the computer underground where they commonly replace the letter F with PH. Digital criminals use cunning techniques to trick their victims into taking the bait [...]
Posted in Papers | Comments (0)