Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2009-01-05 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

OSSEC HIDS being detected as malware

Published: 2009-01-05
Last Updated: 2009-01-06 13:50:16 UTC
by Toby Kohlenberg (Version: 1)
0 comment(s)

Daniel from OSSEC has reported that a couple Antivirus products are currently detecting the Windows version of OSSEC HIDS as malware. They have been notified and will (we hope) be fixing it soon. Currently the products finding it as malware are (in VirusTotal format of Product,  Version, Last Update, Detection Result):

a-squared 4.0.0.73 2009.01.05 Generic.Qhost!IK
BitDefender 7.2 2009.01.05 Generic.Qhost.E185971A
F-Secure 8.0.14470.0 2009.01.05 Suspicious:W32/Malware!Gemini
GData 19 2009.01.05 Generic.Qhost.E185971A
Ikarus T3.1.1.45.0 2009.01.05 Generic.Qhost
Prevx1 V2 2009.01.05 Worm

Keywords:
0 comment(s)

UK Police planning to hack citizens' PCs

Published: 2009-01-05
Last Updated: 2009-01-06 13:44:10 UTC
by Toby Kohlenberg (Version: 1)
3 comment(s)

An interesting article from the TimesOnline - http://www.timesonline.co.uk/tol/news/politics/article5439604.ece

I'm curious what ISC readers think of this. Here's a short quote from the article to pique your interest:

"THE Home Office has quietly adopted a new plan to allow police across Britain routinely to hack into people’s personal computers without a warrant.

The move, which follows a decision by the European Union’s council of ministers in Brussels, has angered civil liberties groups and opposition MPs. They described it as a sinister extension of the surveillance state which drives “a coach and horses” through privacy laws.

The hacking is known as “remote searching”. It allows police or MI5 officers who may be hundreds of miles away to examine covertly the hard drive of someone’s PC at his home, office or hotel room."

Keywords:
3 comment(s)
Diary Archives