ZMap is a security tool able to scan the entire internet in matter of second. Contrary to Nmap that looks for multiple port on an range of IP address, ZMap on the inverse searches for the entire IPV4 address on a single port.
It was dubbed DarkSeoul, not because Seoul is a dark city , instead for the reason that this malicious software was targeting South Korea assets. This malware has infected many corporations, searching machines for credentials with root access to servers. The US-CERT has released a document describing this attack in detail.
Many emails account are hijacked everyday. Cybercrooks are selling those compromised accounts in the black market. If you are using Gmail , then there is an auditing method of knowing its retail price on the underground.
The university of Illinois at Chicago has created a Gmail account audit tool called Cloudsweeper.
As seen in the picture above My account is worth $5. It has also helped me finding plain text passwords which were sent to my email. The tool rocks and is worth trying.
Weeks ago Microsoft announced it has successfully disrupted the citadel malware. This malware has been designed to steal banking credentials by capturing keystrokes , video or snapshots(Interesting). It contains the full source code of Zeus Trojan. Instructions of how to remove this crimekit with Microsoft Safety Scanner are explained in the HKCERT .
Early today , Drupal has sent notifications to its users by emails. The security Team claimed to have identified a breach and urge everyone to change their passwords. I don’t like hackers but I do like organization that made any breaches public as Drupal did.
After restarting my computer today, It reset the time automatically to an outdated one. Eager I was to check my Gmail and Facebook account, while entering the URL in the browser I got the following errors : The certificate will not be valid until 5/18/12 3:00 AM. The current time is 1/1/01 8:44 PM. (Error code: sec_error_expired_issuer_certificate).
My machine had the 1/1/01 set as date meaning that many webservers could not authenticate to my web browser because of an outdated time leading to an expired certificates. The only way to fix it was to adjust the time accordingly and there I enjoyed my Facebook again and again.