Follow Slashdot stories on Twitter


Forgot your password?
What's the story with these ads on Slashdot? Check out our new blog post to find out. ×

Submission + - Shifu Banking Trojan Has an Antivirus Feature to Keep Other Malware at Bay

An anonymous reader writes: Shifu, a banking trojan that's currently attacking 14 Japanese banks, once it has infected a victim's machine, it will install a special module that keeps other banking trojans at bay. If this module sees suspicious malware-looking content (unsigned executables) from unsecure HTTP connections, it tries to stop them. If it fails, it renames them to "infected.exx" and sends them to its C&C server. If the file is designed to autorun, Shifu will spoof an operating system "Out of memory" message.

Comment Re:Also, who does not separate drive control? (Score 5, Insightful) 192

> You should read the articles. Because CAN is a multi-master communications
> bus any device on the bus has write access at the hardware level - it's only
> software controls that limit whether a device can write to the bus or not. Which
> is why the government-mandated ODBC-II interface is such a bad idea,
> because anyone can plug in to the CAN bus with a standardized connector
> and get complete control of a vehicle.

Why is so much unnecessary, security-risky, stuff connected to that device? In a worst case, have separate buses...
* the "entertainment" bus for wifi for "teh interweb", streaming audio, etc.
* the "critical" bus that controls car operation. Have it only *PHYSICALLY* accessable, i.e. only via physically plugging a probe into a jack. And none of the devices connected to the "critical" bus are radio/wifi/bluetooth/whatever-else externally accessable.

Comment Re:wft ever dude! (Score 1) 215

> You're right of course... And the intent of the IPv6 space is not to use all
> the numbers, but rather to give every device its own number, do away
> with NAT and DHCP, and to make routing of traffic faster and easier.

There are tons of hacks available.

If things get bad, an ISP could use CIDR on IPV6 for all their customers in a given city. A million customers in a big city could fit into a /64 with 2^44 addresses for each customer. If they're all in one city, routing would not be an issue for routers outside of the ISP's system. And, yes, I'm aware there's no provision for such stuff in IPV6... but then again, CIDR wasn't in the original IPV4 spec.

There's always the UUID bits to play around with.

And to really mess with IPV6 fanbois' minds, we could try NAT on IPV6.

Comment Mark Zuckerberg couldn't get an ordinary job today (Score 1) 318

> My boss was pissed that I don't have one... He asked,
> why in the hell don't you use Facebook?

You're in HR, interviewing a job applicant. Would you hire somebody who once offered his company's personal client information to a friend? And called his customers dumb? What if he said it was "a youthful indiscretion"? Like the following?

Zuck: Yeah so if you ever need info about anyone at Harvard

Zuck: Just ask.

Zuck: I have over 4,000 emails, pictures, addresses, SNS

[Redacted Friend's Name]: What? How'd you manage that one?

Zuck: People just submitted it.

Zuck: I don't know why.

Zuck: They "trust me"

Zuck: Dumb fucks.

Comment To quote Elliot Spitzer (Score 4, Interesting) 86

> "Some people delete their emails on an almost daily basis,
> others just try to avoid putting anything potentially interesting
> in an email in the first place."

Reminds me of an Elliot Spitzer quote...

"Never write when you can talk. Never talk when you can nod.
And never put anything in an e-mail."

He should also have mentioned never using prostitutes so expensive, that paying them triggers "money-laundering-detection" and gets the feds to investigate you. But that's another story.

Comment Re:SFLC's brief explains parts of this well (Score 1) 210

> You mean instructions like JMP which AMD blatantly stole the opcodes from Intel?
> Why can't Intel demand protection for the use of 0xEB 0xbb to instruct the
> computer to jump by signed bb bytes, but Sun/Oracle can claim protection for
> System.out.println() to instruct the computer to output an end-of-line
> character to the standard output?

Old fart here... AMD was cross-licenced by Intel to produce 80x86 cpus This was done because many businesses, especially government, insisted that the components NOT be single-sourced. Ironically, this cross-licencing agreement is what allowed Intel to legally use AMD64 cpu architecture, which Intel named "EMT64".

Comment So ya wanna be an ISP? (Score 1) 390

> Are they just unaware of what advantages running a home server can offer? Or have
> the benefits of a server been explained to them after which they still decline?

Linux nerd here... sorry, but I have better things to do with my time than worry about constantly patching and running smtp/web/ftp servers, and constantly monitoring logs, etc, etc, etc. Having a life gets in the way of an internet.

I have a reasonable idea of how vulnerable linux servers are on the open internet. It's mind-boggling how easily the average Joe/Jane Lunchbucket gets pwnd/social-engineered even with a client machine behind a stateful firewall. Give every one of them a server, and if you think today's botnets are something, you ain't seen nothing yet.

Comment Re:Summarry is misleading... (Score 1) 166

> If a self driving car is seeing something in front of it and launches an app to
> determine what that object is, then that app needs to return an answer
> before the car hits the object and in time to brake to a stop, if necessary.
> It needs a time signal to understand how much time it has left.

What are you talking about? Time to impact = distance-to-object divided by your current speed. Distance is obtainable by radar/sonar/whatever, and speed comes from the same tachometer connected to your car's wheels that provides speed info to the speedometer display. It self-driving-car shouldn't care or need to know what time it is. BTW, how would a GPS system operate in an underground (and/or underwater) tunnel

Comment How do electric vehicles handle cold weather? (Score 1) 229

GM has a cold-weather test facility at Kapuskasing, Ontario, Canada Ordinary batteries tend to lose power when cold. Cold weather doesn't just happen in Canada, but also in a lot of the US "Northern Tier" states. E.g. Minnesota, Wisconsin, the North+South Dakota, etc. And let's not forget Alaska. Is there noticable power/range loss in cold weather with GM's electric cars?

Comment Re:Full blooded American here (Score 1) 671

> But what if POTUS was a lame duck?

American ex-presidents are protected by the Secret Service after their terms, because there are a lot of people around the planet (including in the US), who have grievances (real or imagined) against said ex-president.

> The original act provided for lifetime Secret Service for former presidents.
> In 1997, it was reduced to 10 years for presidents taking office after 1997.
> The 1997 amendment was reverted by the Former Presidents Protection
> Act of 2012 (Public Law 112-257).All living former presidents and their
> spouses are now entitled to receive lifetime Secret Service protection.

Snowden's info releases embarressed the USA. But it is believed that several US agents died or were captured by other countries due to Pollard's espionage. The Secret Service is part of the US "intelligence community". Do you, as a former US president really want to pardon the man who was responsible for thr death of comrades of the people charged with protecting you?

"You know, we've won awards for this crap." -- David Letterman