In the last few months, there has been a significant amount of press coverage given to insidious cyber activity associated with the segment of the Internet known as the “Russian Business Network,” or RBN. Previous studies have suggested that the RBN has ties to nearly every area of cybercrime, including: phishing, malware, DDOS activity, pornography, botnets, and anonymization.
In November 2007, media reporting indicated that a large portion of the RBN "went dark.” Since that time, the Shadowserver Foundation has been more closely analyzing outlying networks implicated as being associated with RBN. One of these suspected outliers is AS9121, known as TurkTelekom. SecurityZone.org reported in early December 2007 that while not everything in TurkTelekom appears to be malicious, there are some ranges that are “particularly bad” and analysis of Shadowserver Foundation data agrees. Several subranges quickly stand out as being deeply involved in malicious cyber activity: 88.255.90.0/24 and 88.255.94.0/24. IP registration indicates these ranges are listed under the name "ABDALLAH INTERNET HIZMETLERI” (AIH).
Thanks to friend Alex at Sunbelt Software for the link.
Grab the full paper here. (PDF)
-----------------------
On to the tools...
On Feb 29th, Pidgin 2.4.0 was released. Pidgin is a graphical modular messaging client based on libpurple which is capable of connecting to AIM, MSN, Yahoo!, XMPP, ICQ, IRC, SILC, SIP/SIMPLE, Novell GroupWise, Lotus Sametime, Bonjour, Zephyr, MySpaceIM, Gadu-Gadu, and QQ all at once. See the changelog for all the details.
On Feb 28th, Wireshark 0.99.8 was released. Security-related vulnerabilities in the SCTP, SNMP, and TFTP dissectors have been fixed. See the advisory for details. This release adds configuration profiles, temporary coloring rules, enhanced I/O graphs, WLAN traffic statistics, and many other useful features. For a complete list of changes, please refer to the 0.99.8 release notes.
On Feb 27th, FreeBSD 7.0 was released. FreeBSD is an advanced operating system for x86 compatible, amd64 compatible, UltraSPARC®, IA-64, PC-98 and ARM architectures. It is derived from BSD, the version of UNIX developed at the University of California, Berkeley. See the release notes for more details.
On Feb 26th, Mozilla released Thunderbird 2.0.12. Due to the security fixes, we strongly recommend that all Thunderbird users upgrade to this latest release. For a list of changes and more information, please review the Thunderbird 2.0.0.12 Release Notes.
On Feb 26th, Microsoft released a new version of the Sysinternals Suite. Process Explorer and Autoruns are two of the tools that have been updated.
On Feb 25th, K-Lite Mega Codec Pack 3.8.0 was released. K-Lite Codec Pack is a collection of codecs and DirectShow filters. Those components are needed for encoding and decoding various audio and video formats. This Codec Pack is designed as a user-friendly solution for playing all your movie files. K-Lite Mega Codec Pack combines the contents of two packs: K-Lite Codec Pack Full and Real Alternative.
On Feb 24th, Aircrack-ng 0.9.3 was released. Aircrack is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured.
On Feb 22nd, Wine 0.9.56 was released. Wine is a project to allow a PC running a Unix-like operating system and the X Window System to run x86 programs for Microsoft Windows. Alternately, those wishing to port a Windows application to a Unix-like system can compile it against the Wine libraries. Check the announcement release for all the details.
On Feb 21st, Filezilla 3.0.7.1 was released. FileZilla is a powerful FTP-client for Windows NT4, 2000 and XP. It has been designed for ease of use and with support for as many features as possible, while still being fast and reliable.
On Feb 21st, CCleaner v2.05.555 was released. CCleaner (Crap Cleaner) is a freeware system optimization and privacy tool. It removes unused files from your system - allowing Windows to run faster and freeing up valuable hard disk space. Check the version history for all the change details.
On Feb 19th, VirtualBox 1.5.6 was released. Innotek VirtualBox is a family of powerful x86 virtualization products for enterprise as well as home use. Not only is VirtualBox an extremely feature rich, high performance product for enterprise customers, it is also the only professional solution that is freely available as Open Source Software under the terms of the GNU General Public License (GPL). This release is a maintenance update for VirtualBox. See the ChangeLog for a list of changes. It should be noted that Innotek was acquired by Sun Microsystems in early Feb 2008.
No comments:
Post a Comment