lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CALCvwp6OnzrGj+anyLUWZOFZhg1d6dJo22u+4r+-4d+LjiLMCg@mail.gmail.com>
Date: Fri, 20 Jan 2012 15:10:33 +1100
From: xD 0x41 <secn3t@...il.com>
To: Byron Sonne <byron.sonne@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Facebook seems to think my Arch Linux box has
 malware on it

+1

this was the first and biggest hack ever done on myspace, wich simply,
pretended you needed the 'java flash' plugin, to view the 'wall' of
your friend..now, they killed it but by then, it was suicide...and,
they had no idea for many months... this, is known, and also that FB
has added new features, but, not being a user of it, i guess, id
rather not learn and, all im thinking is, the virus i will endup
having to remove from my sisters PC in the next day or so :)
cheers... but, yea, i agree, i think it is a simple page trickery, FB,
theyre own security, would be used against them, it is that new :P,.
so, everything new...well...lets say, has teething probs eh...well,
many of major sites did...and, this worm for myspace, was simple, it
prentended to be the actual, legit page, but, it was just simply
hiding a vuln in myspace wich let you still, eceute a 'plugin' wich,
was your url to malware, but, you had to use the actual 'plugfin' to
succeed, so, not the official one ofc, but, it seemed VERY
offcial...and, took solong to detect, i think thats what killed
MSpace..forsure...and will be same, for Fb, if they dont keep up with
the times...as, people , even as big as cisco, now see... that, it is
very very important, to update code :)
have a great day.


On 20 January 2012 14:57, Byron Sonne <byron.sonne@...il.com> wrote:
> Hello,
>
>> “Your computer has malware!” Facebook says to me.
>
> I am really curious to know, assuming that everything you've said is
> accurate, how they determine you've got malware. This is rather curious.
>
> The more I think about it, the more I wonder if something's come between
> you and facebook pretending to be official, hoping to trick you into
> downloading something.
>
> Cheers
>
> --
>  freebyron.org
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ