Ken Dunham
Ken Dunham
birth computer control credit date extended hiding identity maintain maximum profile profit remaining running social steal theft
It's all about hiding it so you can maintain extended control over a computer because then you can profile it and steal more. In today's world, with identity theft running rampant, they need more than just your credit card. They need to get your date of birth and your social to get maximum profit on your computer. So it's about remaining stealthy.
computers connect date download found infected last likely reverse sober works
We did reverse engineering on the variants, and found this date in the code. The way this works is that at a pre-determined time, computers already infected with Sober will connect with specified servers and download a new payload, which will likely be spammed out in the millions, as was the last version.
computers effort files handful reality security thousands victory
The reality is that there could have been hundreds of thousands of computers with overwritten files today. Instead, we only have a handful of reports, and that is a hands-down victory for the collaborative effort of the security community.
computer opened people removal unless
It is already underway and will be activated unless people get removal tools. If you have opened an e-mail and your computer froze up, you should be very concerned.
exactly growth predicted
In August, 2004, we predicted we'd see exponential growth, and that's exactly what we saw.
assets available small
It's such a small population. Other assets are available to attack.
afternoon anytime evening
The attack, if it comes, could come anytime after the afternoon and the evening of the 5th.
almost available data doubt evolving help impossible increased intelligence lead qualified research slowly threats worm
Slowly evolving threats like Grew.A often lead to increased fear, uncertainty and doubt without the help of an intelligence provider. It makes it almost impossible for some to get qualified research data on a worm when there is so much misinformation, aliases, and other data available on the Internet.
likely near past successful taken twelve
WMF exploitation has taken off in the past twelve hours. It's likely that WMF exploitation will be very successful in the near term.
dangerous site whether
There's no way for you to know whether a site is dangerous for a WMF exploit.
code compared criminals expect financial fraud high might people profits types yield
This is not something I would expect to yield very high profits for criminals as compared to other types of financial fraud and extortion that might take place. Many people have backups of their files, and now the code has been cracked.
attacks concerned targeted threats trend
This is one of those big, under-the-radar threats that we've been concerned about. There has been a trend away from big-bang attacks to very targeted and sophisticated attacks that take place right under your nose. This is one of them.
attacks macintosh might serve
This could serve as a springboard for more attacks on the Macintosh because it might spawn copycats.
identified increases likelihood widespread
This increases the likelihood of exploitation, but widespread exploitation has not been identified to date.