Owning Kraken Zombies, a Detailed Dissection
This blog contains the deep technical dive of a two-part blog series exploring the Kraken botnet. See "Kraken Botnet Infiltration" for more information regarding general statistics and observations of the botnet.Disclaimer: I don't normally deal with malicious code analysis. My main focuses are on vulnerability discovery and general reversing so dedicating some time to analyzing Kraken was a new and interestin ...
Kraken Botnet Infiltration
Earlier this month a number of articles surfaced on the research and disagreements with regards to the size and classification of a large bot net named Kraken. At the front line of the debate was SecureWorks and Damballa. Secureworks claims Kraken is actually Bobax and estimates the bot net to include over 185,000 compromised systems. Damballa disag ...
ToorCon Seattle Redux
This past weekend, Aaron and I attended and presented at ToorCon Seattle 2008...
PWN to OWN Adobe patch released
This year’s PWN to OWN wrap up includes another record breaking update by the affected vendor. Adobe has released a Flash update which corrects the bug found by Shane Macauley that he used to exploit the Windows Vista laptop at CanSecWest, as well as correcting a number ...
PWN to OWN: Final Day (and another winner!)
The third and final day of the PWN to OWN contest at the CanSecWest security conference begins today, March 28th at 12:30pm local time (PST) in Vancouver. Yesterday, on day two of the contest, the MacBook Air was successfully compromised first and won by a team from Independent Security Evaluat ...
