Warning: Creating default object from empty value in /home/ict-forward/www-apps/wp-svn/wp-includes/ms-load.php on line 138
April « 2009 « The FORWARD project blog

Archive for April, 2009

ICT Fair for Trust & Security Research

Thursday, April 30th, 2009

The ICT Fair for Trust & Security Research will be held in Olomouc, the Czech Republic, on 14 May 2009. The ICT Fair is an event promoted by the Olomouc Region, the Czech Republic, in cooperation with the European Commission and is associated with the official program of the Semester of the Czech Presidency to the EU Council. The Fair is a unique opportunity for getting practical hands-on information and concrete advice on how to become involved in EU’s FP7 research activities.

(more…)

First Mac botnet

Tuesday, April 28th, 2009

Researchers at Symantec found two hidden trojans – OSX.Iservice and OSX.Iservice.B – in pirated copies of Apple Computer’s iWork ’09 and Adobe Photoshop CS4 posted on some P2P networks, which use different techniques to obtain the user’s password and take control of the infected Mac machine.

(more…)

BIOS Attack

Tuesday, April 28th, 2009

A BIOS level malware attack was presented last month by Alfredo Ortega and Anibal Sacco from Core Security Technologies.

The attack does not take advantage of any system’s vulnerability, thus a system can be compromised silently. The most important fact is that the attack “survives” reboots, hard-disk wipes, or even re-installations of operating system.

Although the execution of the attack needs either root privileges or physical access to the machine, once the attack successfully executed, attacker gains complete control of the machine forever.

Source: ZDNet

Twitter worm strikes again

Tuesday, April 28th, 2009

Almost a week ago since its first release, a new worm hit the twitter again. The first attack happened during Easter when twitter was hit by powerful, self-replicating attacks that caused people to flood the micro-blogging site with tens of thousands of messages simply by viewing booby trapped user profiles.

(more…)

Microsoft’s PowerPoint zero-day flaw

Wednesday, April 8th, 2009

Microsoft warning users about a zero-day attack exploiting a critical vulnerability in Microsoft Office PowerPoint that could allow remote hackers to launch arbitrary code on their PCs. The malware associated with this vulnerability is a Trojan dropper embedded within an exploit in .ppt or .pps data files.

(more…)

EuroSec Panel: Thoughts and Anecdotes

Monday, April 6th, 2009

My name is Adam Aviv and I am 2nd year Ph.D. student at the University of Pennsyvlania.

One of the highlights of this years EUROSEC workshop was the panel on emerging research directions. The panel was filled out by Angelos Keromytis (Columbia University and Symantec), Herber Bos (Vrije Universiteit Amsterdam), Georg Portokalidis (Vrjie Universiteit Amsterdam), Christian Platzer (Technical University of Vienna), and Edita Djambazova (Bulgarian Academy of Sciences), and the panel was moderated and organized by this blog’s one and own Sotiris Ioannidis.

(more…)

The day has come!

Wednesday, April 1st, 2009

Today, April 1 2009 is the alleged Doomsday of the Conficker/Downadup worm activation. Conficker has lately been under the spotlight of many well known tech blogs and even news websites garnering lots of attention. Even Conficker fanpages have been created in popular social networking sites. Now that it’s here disappointment might strike the masses as reportedly “Conficker has activated. So far nothing has actually happened.” Still there’s plenty of time ahead, and since not all of the worm’s behavior is known there might be a surprise ahead for us.

(more…)