Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-Disclosure] Jabberstudio.org compromised

from [Devdas Bhagat] Network Security [Permanent Link]
Subject: [Full-Disclosure] Jabberstudio.org compromised
Date: Sat, 29 Jan 2005 23:21:38 +0530 
Just a heads up for everyone:

<quoting jabberstudio.org>
What's Happening?

It has been discovered that the server hosting JabberStudio has been
hacked (cracked if you want to say that) for what appears to be one
year. Careful analysis of logs and other information shows that the
attack was an automated rootkit and it was never used to view or alter
files. Regardless, we feel it is vital that all files be reviewed for
any malicious changes before they are copied over to new machines and
publicly distributed again.

First, we suggest that anyone that has used JabberStudio change their
external passwords, especially if they connected to any machine from the
JabberStudio shell server. All user accounts on the machine have been
suspended until the new machines are finalized, so don't attempt to
change your shell server password.

</quote>

A whole year? Don't these guys use tripwire or aide or equivalent? Or
are they just overloaded with real life?

Devdas Bhagat
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-Disclosure] Jabberstudio.org compromised, Devdas Bhagat <=
Previous by Date:  Re: [Full-Disclosure] Transamericana.org, Antonio Henrique Oliveira
Next by Date:  RE: [Full-Disclosure] ICMP Covert channels question, Paul Schmehl
Previous by Thread:  [Full-Disclosure] C Code Analyzer, Jonathan Heusser
Next by Thread:  [Full-Disclosure] [ GLSA 200501-41 ] TikiWiki: Arbitrary command execution, Sune Kloppenborg Jeppesen
Indexes:  [Date] [Thread] [Top] [All Lists]