NewsBytesDecember 30, 2010NULL - MUMBAI CHAPTER

WIKILEAKS …. Operation: Payback

• Julius Assange arrested in London• Self appointed group Anonymous, 4chan are

leading the attack against all who have “offended” wikileaks

• Twitter posts lead users to download “Low Orbit Ion Cannon” to enable user machine to contribute to the attacks (voluntary botnet participation)

• Websites of Mastercard, Paypal, Swedish Prosecutor, Visa attacked

• Fax Machines included as targets

WIKILEAKS …. Cheapo Advert

• Pakistani Sanitary pad manufacturer ad campaign…..

wikileaks, butterfly doesn’t

419 Scam …. New variant

Flag this messageRe: PROFESSIONAL IN CONVERTING BLACK COATED DOLLAR TO WHITE DOLLAR!!Wednesday, December 8, 2010 10:31 AMFrom:"Oath De-face Clinic London" <smtp@wanadoo.fr>Add sender to ContactsTo:arinze_alhaji@orange.fr

St. Nicholas Place, Princes Dock Liverpool, L3 0AAOath Deface Clinic United KingdomRegistered  No 9877112Email:oathdefaceclinic@oath.comCustomers Service Hours:Monday to SaturdayTel:00447010721786  Fax:00447112675001OATH DEFACE CLINIC UNITED KINGDOM

Greetings!!!

WE ARE SPECIALIZED IN CHEMISTRY FOR ANTI-BREEZE BANK NOTES,WE ALSO DO CHEMICALS MELTING AND RECOVERING OF ALL TYPE OF BAD MONEY FROM BLACK TO WHITE

We are manufacturer and seller of all sort of chemicals which includesS.S.D SOLUTION, SUPER AUTOMATIC SOLUTION, VECTROL PASTE andTEBI-MANETIC SOLUTION, We have different types of chemicals that can perfectly clean out your deface/black/stacked and dirty currency or bank notes.

If you have made a kind of currency making business that your money is stacked we can help you clean the money we have helped a lot of peopleall over the world in this matter we will clean your money on percentage basis

If you really want us to help you in this matter you must understand the rules and get back to us if you are okay with it

We provide chemicals for anti-breeze bank notes currencies such as us. Dollar, Euro, Pound, and many local currencies.

Please contact us to discuss how we might help you

Email:oathdefaceclinic@oath.comTelephone:00447010721786Fax:00447112675001

Thanks for your collaboration.Dr Temple Mill CEO

419 Scam ….

• Dec 28 : Ex-DGP Karnataka falls for lottery scam... He got a lottery mail and paid 15k. Was asked to pay another 15k which he thought was fishy… and reported this to his boss who told him to stay off ! (http://timesofindia.indiatimes.com/city/bangalore/ex/DGP-falls-prey-to-cyber-fraud/articleshow/7174837.cms)

GOOGLE ….

• Google working on search before you search ... Google's Mayer says company is working on giving search results before question asked

• Google employee axed over 10% raise leak ... Reported attempt to keep employees loyal comes as rivalries with Microsoft, Facebook intensify. Google kicked out this person who leaked the information.

Open Source ….

• Apache Software Foundation resigns from Java community… due to “Oracle’s undue control of Java”

•

Malicious Ads….

• Dec 10, 2010 : Drive by ads being carried by Google and Microsoft ad networks.

• http://www.itnews.com/advertising/26253/google-microsoft-ad-networks-briefly-hit-malware?source=ITNEWSNLE_nlt_itndaily_2010-12-13

• Similar stuff had happened last year when NY Times carried malware serving ads on their main page

Win a Prize….

• Submit your 2010 Web Hacking Techniques http://jeremiahgrossman.blogspot.com/2010/11/calling-all-security-researchers-submit.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+JeremiahGrossman+%28Jeremiah+Grossman%29

• Prizes:– OWASP conference pass– Autographed books– BlackHat USA 2011 pass

GSM Hack….

• Breaking GSM With a $15 Phone at the Chaos Computer Club (CCC) Congress here Tuesday, a pair of researchers demonstrated a start-to-finish means of eavesdropping on encrypted GSM cellphone calls and text messages, using only four sub-$15 telephones as network “sniffers,” a laptop computer and a variety of open source software.

• http://www.wired.com/threatlevel/2010/12/breaking-gsm-with-a-15-phone-plus-smarts/

• Simplest Phones Open to ‘SMS of Death’ Chaos Computer Club Congress here, German researchers showed

how vulnerabilities in some the simplest, but most common phones in the world 

• http://www.wired.com/threatlevel/2010/12/simplest-phones-open-to-%E2%80%9Csms-of-death%E2%80%9D/

Chip and PIN Hack….

• Cambridge boffins rebuff banking industry take down request… Computer scientists from Cambridge University have rebuffed attempts by a banking association to persuade them to take down a thesis covering the shortcomings of Chip-and-PIN as a payment verification method.

• http://www.theregister.co.uk/2010/12/29/chip_and_pin_take_down_rebuffed/

• The Smart Card Detective (SCD)… The SCD is a card-size device that can intercept, monitor and modify the data of an EMV transaction (EMV is the protocol used in Europe for smartcard payments). This device and the associated software are the result of my MPhil project. The main goal of the SCD was to offer a trusted display for anyone using credit cards, to avoid scams such as tampered terminals which show an amount on their screen but debit the card another (usually larger) amount.

• http://www.cl.cam.ac.uk/~osc22/scd/

Snippets….

• Gawker tech boss admits site security was crap …. 'We lost your trust and don't deserve it back'

• http://www.theregister.co.uk/2010/12/18/gawker_hack_aftermath/

• Hacker warning over internet-connected HDTVs …. Something's wrong with one of them, but we won't tell you which or whose

• http://www.theregister.co.uk/2010/12/16/nettv_hacker_warning/

• Social Engineering: NBI: Chinese syndicate using banking system for fraud… The Chinese syndicate that has collected P6 billion in six months of operations in the Philippines operates elsewhere in Southeast Asia apart from China, an NBI official said Wednesday. … they called up the victims telling them they were under investigation etc and got them to mail their ATM cards or information

• http://www.manilastandardtoday.com/insideNews.htm?f=2010/december/30/news2.isx&amp;d=2010/december/30

Botnets ….

Latest botnet rankings: Rustock still mother of them all…. Dec 07, 2010 - Spam levels – hit by recent botnet takedown efforts – have begun to return to their previous noxiously high levels.

• http://www.theregister.co.uk/2010/12/07/botnet_spam_survey_messagelabs/

• Average global spam rate was 89.1 per cent, an increase of 1.4 percentage points on 2009

• Global spam rates peaked at 92.2 per cent in August• Botnets in general accounted for 88.2 per cent of all spam for

2010 as a whole.• The total number of botnets worldwide is between 3.5 and 5.4

million• Takedown and the closure of spam affiliate, Spamit, in early

October 2010 resulted in spam levels sliding by 11 percentage points to 77 %. However by end-2010, total number of active bots are back to roughly the same numbers as at the start of the year

Botnets ….

• Rustock is the Big Daddy of botnets - spam output doubled over the year to 44 billion spam emails per day. It is reckoned to have compromised at least a million (zombie) hosts.

• Grum and Cutwail are the second and third largest botnets• Number of different strains of malware in these blocked email

grew by a factor of 100 in the year to reach 339.673 for 2010. • The change reflects the increased industrialisation of malware

production, according to the MessagelLabs. Symantec reckons even more sophisticated approaches are in the pipeline with controls hidden in plain view, using steganography, likely to emerge – perhaps within images or music files distributed through file sharing or social networking websites. The tactic will allow botherders to "surreptitiously issue instructions to their botnets without relying on an ISP to host their infrastructure" and thus limit the chances that they will be discovered

Notices ….

There is a lesson here for all who are learning hacking skills and all who are ‘ethical’ hackers. Do not think you can just enter and exit anyone’s system because if (God forbid) you are caught - you will be just a common criminal with a big sentence.

In jail it will not matter if you were a topper or whatever…

Notices ….

• All logos and brand names belong to their respective owners and we do not claim any relationship or association, implied or otherwise, with them.

• Use of any materials by virtue of relationships and associations, if any, are mentioned explicitly.

• We have taken care to attribute all sources for external materials used in this presentation and regret any omission. If you, as the source owner, or as viewer, find any reason to dispute the use of these materials kindly communicate the same to us using the contact link on our website www.null.co.in

• Any omissions, in terms of attribution, may be due to an error on our part and the lack of reference is not intentional.

This document is a creation of the NULL community and is released in the public domain under Creative Commons License (Attribution-Noncommercial 2.5 India) http://creativecommons.org/licenses/by-nc-sa/2.5/in/.

Contributors: Dinesh Bareja, null Mumbai chapter members