gulogo.gif  
 
1. Hiatus
2. RIP, Satoru Iwata
3. Let there be Robot Battles
4. Regarding pixel art!
5. 16-bit Star Wars
6. Goodbye, Spock.
7. James Randi Retires
8. More Star Wars on GOG
9. Archive.org gives you DOS Games
10. Ralph Baer, RIP.
1. Quickie: Impressions June 2014
2. Quickie: Penny Arcade Episode 3
3. Quickie: The Amazing Spider-Man
4. Quickie: Transformers: Fall of Cybertron
5. Quickie: Prototype 2
6. Quickie: Microsoft Kinect
7. Quickie: X-Men Destiny
8. Spider-Man: Edge of Time
9. Quickie: Transformers Dark of the Moon
10. Quickie: Borderlands GOTY
1. Musings 45: Penny Arcade and The Gripping Hand
2. Movie Review: Pacific Rim
3. Movie Review: Wreck-It Ralph
4. Glide Wrapper Repository
5. Movie Review: Winnie The Pooh
6. Musings 44: PC Gaming? Maybe it's on Life Support
7. Video Games Live 2009
8. Movie Review: District 9
9. Musings: Stardock, DRM, and Gamers' Rights
10. Musings: How DRM Hurts PC Gaming
Main Menu

Affiliates
X-bit labs
The Tech Zone
Twin Galaxies

Login






 Log in Problems?
 New User? Sign Up!


 Nov 04, 2010 - 09:07 AM - by Michael
* Zeus Researchers Hit

Printer-friendly page Print this story   Email this to a friend
PC Games/Hardware/Microsoft
The researchers hunting the Zeus botnet got a nasty surprise recently: the botnet makers turned the tables and hit the researchers with a faked honeypot.

The purpose appeared to be all about providing false information. Stone-Gross says the toolkit used in the attack came with an administrative interface that acts as a hacker's honeypot of sorts, gathering intelligence about the researchers or other users who try to access the console login or hack into it.

The login system to the "admin panel" practically begs to be hacked: It accepts default and easily guessed passwords as well as common SQL injection strings, according to Stone-Gross.

Most exploit toolkits come with an admin interface that manages exploits and payloads, and tracks exploit success rates, but this fake one was a new twist, Stone-Gross says. He found the fake panel while browsing the gang's source code. "It had a directory called 'fake admin' where they stored the logs of all of the IP addresses of people who tried the console and tried to access it," Stone-Gross says. There were also comments in Russian, he says.
Yes, it's getting nastier out there. Keep your virus protection software up to date and watch where you browse.
 

Home :: Share Your Story
Site contents copyright Glide Underground.
Want to syndicate our news? Hook in to our RSS Feed.