Skype worm
We are hearing some details of a new worm spreading via Skype IM, it appears to be using a custom (or at least unusual) packer and the network traffic appears encrypted as well. Please send us any info you might have on it.
Thanks for the responses, we do know about the Websense blog post.
0 comment(s)
Thanks for the responses, we do know about the Websense blog post.
ORDB Shutting down
the Open Relay DataBase announced today that they will be shutting down
http://ordb.org/news/?id=38
Please don't send us rants on whether you loved or hated the ORDB, we have an automated tool for doing that. HOWEVER, if you are a mail admin and you have been using their database for your blocklist, you'll want to stop doing so. To quote the site:
" DNS and the mailing lists will vanish today, December 18, 2006. This website will vanish by December 31, 2006."
0 comment(s)
http://ordb.org/news/?id=38
Please don't send us rants on whether you loved or hated the ORDB, we have an automated tool for doing that. HOWEVER, if you are a mail admin and you have been using their database for your blocklist, you'll want to stop doing so. To quote the site:
" DNS and the mailing lists will vanish today, December 18, 2006. This website will vanish by December 31, 2006."
4242/TCP Activity is up
We've heard reports of lots of activity on port 4242/TCP recently. Is anyone else seeing this trend? If so when did you start seeing it and have you looked into its source or cause?
Keywords:
0 comment(s)
×
![modal content]()
Diary Archives
© 2024 SANS™ Internet Storm Center
Developers: We have an API for you! 
Comments