• Some users have recently had their accounts hijacked. It seems that the now defunct EVGA forums might have compromised your password there and seems many are using the same PW here. We would suggest you UPDATE YOUR PASSWORD and TURN ON 2FA for your account here to further secure it. None of the compromised accounts had 2FA turned on.
    Once you have enabled 2FA, your account will be updated soon to show a badge, letting other members know that you use 2FA to protect your account. This should be beneficial for everyone that uses FSFT.

File-Less Malware Attack Uncovered & Identified

FrgMstr

FrgMstr

Just Plain Mean
Staff member
2FA
Joined
May 18, 1997
Messages
58,018
Rule # 119 of the Cyber-Squirrel Handbook: Sometimes it's best not to taunt a Cyber Security Organization with hidden code in super stealthy malware.

On the 24th of February, Twitter user Simpo posted a picture of a string of malicious code with the words "SourceFireSux" encoded in Base64. This drew the interest of Cisco's Cyber Threat Intelligence Team "Talos," as many on that team are former members of the SourceFire Vulnerability Research group.

<[[image]]>​

The Talos team accepted this challenge and began to hunt for a complete sample. After scouring the internet and piecing together code segments, Talos had unraveled what would be an ultra complex and sophisticated attack. An attack that is capable of executing malicious code and communicating with its handlers without writing a single byte to the file system. Thanks to Crixus for the links and write-up!
 
Pretty scary stuff but also why systems will never truly be secure. The only way would be through severe government regulation and might happen one day but then again they can't even get their shit together either so maybe not.
 
GDI Lord said:
Just make sure that you don't use your computer on any Friday the 13ths. ("13ths?" Is that the correct way of expressing that? It sounds so horrible, lol. : -)
Click to expand...
HAHAHAHA, that sounds like somebody was having fun.

After all, what exactly is the point of a virus like that except to screw with people.

Another fun one was NATAS... NATAS is SATAN spelled backwards.

The stupid thing makes your computer act like the file system has become corrupted and will not let it boot all the way to the OS.

https://en.wikipedia.org/wiki/Natas_(computer_virus)
 
That is a great way to keep a virus/malware from being detected.

While I don't do that kind of stuff, the person who thought of it is a genius.

Visit web page, load something into RAM, which then looks at another site for another piece of code to load, and so on an so forth until it gets to the end and then executes.

Pretty much impossible to detect as you could even encode and/or randomly split the code segments up.
 
You must log in or register to reply here.
Back
Top