Ken Dunham
Ken Dunham
birth computer control credit date extended hiding identity maintain maximum profile profit remaining running social steal theft
It's all about hiding it so you can maintain extended control over a computer because then you can profile it and steal more. In today's world, with identity theft running rampant, they need more than just your credit card. They need to get your date of birth and your social to get maximum profit on your computer. So it's about remaining stealthy.
close date earlier found gotten group inside likely maybe might police sober version
Then, we thought maybe the police had gotten inside the group that made Sober and might be close to an arrest. But now it's likely that they found a date coded inside an earlier version of the worm.
computers connect date download found infected last likely reverse sober works
We did reverse engineering on the variants, and found this date in the code. The way this works is that at a pre-determined time, computers already infected with Sober will connect with specified servers and download a new payload, which will likely be spammed out in the millions, as was the last version.
attacks attempt automated codes file found hackers impact increased level leverage methods sinister threat
The threat level for this vulnerability may be dramatically increased if more automated methods of distribution are found to be successful, such as e-mail or IM or file shares. The impact of attacks may also increase, with more sinister codes being installed as new hackers attempt to leverage the vulnerability to their advantage.
dangerous site whether
There's no way for you to know whether a site is dangerous for a WMF exploit.
likely near past successful taken twelve
WMF exploitation has taken off in the past twelve hours. It's likely that WMF exploitation will be very successful in the near term.
media people primarily
It's primarily a media term. It's something people are going to read about.
assets available small
It's such a small population. Other assets are available to attack.
activity future increased mac shows threats viability
It shows increased activity and viability for future Macintosh-based threats on the Mac OS X platform.
afternoon anytime evening
The attack, if it comes, could come anytime after the afternoon and the evening of the 5th.
computers effort files handful reality security thousands victory
The reality is that there could have been hundreds of thousands of computers with overwritten files today. Instead, we only have a handful of reports, and that is a hands-down victory for the collaborative effort of the security community.
plenty ways
There are plenty of ways to get around all of those things.
computer opened people removal unless
It is already underway and will be activated unless people get removal tools. If you have opened an e-mail and your computer froze up, you should be very concerned.
fraud involve next personal profit telling terms week
We don't know if it's fraud-related or whatever. Clearly, they're being silently and illegally installed, at a minimum, for personal profit and they may also involve fraud or exploitation. I think the next week is going be the most telling and the most significant in terms of risk.