Pfft, that's only pseudo random data, why settle when you can get true random data.

https://www.fourmilab.ch/hotbits/secure_generate.html
https://www.random.org/passwords/

I for one am glad they aren't policing internet interactions in gaming, the last thing I want is game companies being forced to attempt to censor every bad word to kowtow to the ESRB for an M rating. As for all the companies that already attempt to do it, good luck with your stupid useless endeavor.

Fu(K!ng n0o85!!1

The link goes to on nimp, don't click it.

Wouldn't the malware have to already be running on the computer to do that?

I still buy CD's as well, but it's mainly due to a lack of quality online downloads. When you buy a game at a store or on Steam you get exactly the same game, but buying a lossy mp3 isn't the same as ripping a CD to FLAC. If there were some decent online retailers of lossless audio I would probably buy from there.

I mean any malware author. Code execution vulnerabilities in non-executable file formats like images or documents can get through email and intrusion detection systems much more easily than exe's.

I still very much doubt it, for the simple reason that if this was indeed a publicly known vulnerability that required no javascript and could be executed by opening an image file every hacker and their grandma would be using it right now. Those sorts of exploits are very valuable to malware authors.

I really wish you would upload a sample someplace because I have never heard of anything like this. The last widely exploited image file based exploits that I know of was the ANI and WMF vulnerabilities, and those have been patched a while ago.

Uhh, what? I have no idea what this "JPG exploit" your talking about is. Conflicker spreads through the MS08-067 RPC vulnerability, removable media, and shared folders; nothing to do with IE or jpegs.

Actually Malwarebytes is free, the paid version just gives you "realtime protection, scheduled scanning, and scheduled updating".

It appears that he did from the screenshots. You can see in the background his desktop has that sort of "OMG YOUR INFECTED, BUY OUR PRODUCT" type text that rouge AV products use to scare people.

At least they had him use a decent anti-malware program. I generally find symantec products to be more of a virus than most viruses, that crap is hard to get rid of once it's installed and doesn't detect much of anything.

It would be a hell of alot easier of software developers didn't require administrative privileges when they really don't need them. I tried to run in a "user" usergroup when I replaces win2k pro with win xp pro but nothing ran correctly. I tried using the "run as" menu and a program called sudo-win which would elevate my privs temporarily then reduce them again. Nothing would install correctly, nothing would run correctly. Even programs that don't use any administrator functions or zones wouldn't work correctly. Realistically, running in a non-admin account is a pain in the ass.

It is common practice for domains to be registered using stolen credit card numbers and phony registration information, as well as using bots within the net to act as proxies between you and the actual server, such as with fast flux. That combined with the fact that the servers are generally hosted in countries that don't have a lot of money, man power, or motivation to track these types of operations down makes stopping them a very difficult process.

I guess it would depend on how you define mutation in terms of a computer worm. If you mean it changes it's executable there is already alot of malware that uses polymorphic code and a few that use metamorphic code. If you mean changing the means of transmission, I'm sure a rudimentary form of mutation could occur using some sort of built in fuzzing and vulnerability analysis engine.