[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm

To: morning_wood <se_cur_ity@xxxxxxxxxxx>, full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
From: Will Image <xillwillx@xxxxxxxxx>
Date: Mon, 20 Sep 2004 17:45:51 -0700 (PDT)

i wouldnt exactly call fc a 'coder'
he slaps together delphi code from other sources
and if GFI aquired him it'd create less business
knowing that he also creates backdoors within his
backdoors using masterpasswords i.e. the trojan
'infector' had the masterpass ITS_ME_FC
here's some examples of his sourcecode
http://mitglied.lycos.de/master0305/fag/

proof of ripping
http://spiff.tripnet.se/~iczelion/files/CapScreen.txt
v.s.
http://mitglied.lycos.de/master0305/fag/fc_code_capture.txt








--- morning_wood <se_cur_ity@xxxxxxxxxxx> wrote:

> guess they shouldnt have publicized it. ( who cares
> )
> 
> @stake / Symantec - business is business, Symantec
> is aquiring not only
> tools and expertise,
>  but possibly more importantly a broader, richer
> client base. ( again, who
> cares )
> 
> I do however find this interesting... the below
> "suggests" that a persons
> and or persons affilliated
> with a TROJAN coding history ( and a bad one at that
> ) is now ( or has
> been ) working
> with / for GFI.
> 
> look here:
> http://s93625203.onlinehome.us/news.php
> 
> "we will see you on sub7.net...
> in the not so distant future,
>  for new tools...
> in the mean time visit www.forcedcontrol.com
> and www.gfi.com for blades LanGuard"
> 
> "fc.com  ( trojan ddos kiddie :ed) and its crew have
> finished to move onto
> other
>  professional projects." bla bla
> 
> conclusion:
> blade ( a former? virus / trojan coder ) works for
> and is / was a major
> player for GFI.
> and now ( blade / GFI ) is possibly now recruting
> other known viri / trojan
> coders?????
> 
> research:
>
http://www.google.com/search?hl=en&ie=UTF-8&newwindow=1&safe=off&q=blade+Languard&spell=1
> 
> www.come.to/soul4blade  <---- GFI
> 
>
http://www.google.com/search?q=soul4blade&btnG=Search&hl=en&lr=&ie=UTF-8&newwindow=1&safe=off
> 
>
http://www3.ca.com/securityadvisor/virusinfo/virus.aspx?ID=3282
> "Removal of the file and/or the registry entry will
> disable Blade Runner.
> For further information on Blade Runner please see
> http://www.come.to/soul4blade (link valid 29/03/00).
> "
> 
> 
> 
> nuff said,
> m.wood
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter:
> http://lists.netsys.com/full-disclosure-charter.html
> 



                
__________________________________
Do you Yahoo!?
Yahoo! Mail - 50x more storage than other providers!
http://promotions.yahoo.com/new_mail

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
  - From: morning_wood

Prev by Date: Re: [Full-Disclosure] Buliding computer security infrastructure for a country.
Next by Date: Re: [Full-Disclosure] Sick of stupid analogies
Previous by thread: Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
Next by thread: Re: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
Index(es):
- Date
- Thread