Botnet Takedown May Yield Valuable Data (PC World)
Botnet Takedown May Yield Valuable Data Researchers are hoping to get a better insight on botnets after taking down part of Pushdo, one of the top five networks of hacked computers responsible for most of the world's spam. Thorsten Holz, an assistant professor of computer science at Ruhr-University in Bochum, Germany, said his group is working on an academic paper focused on methods to figure out ... Read more »
Related Bugtraq Messages
Symantec 'Black Market' Event Highlights Perils of Cybercrime (PC Magazine)
Symantec 'Black Market' Event Highlights Perils of Cybercrime On September 1, New Yorkers will have a chance to peer inside the sleazy world of cybercrime when the "Norton Black Market Experience" rolls in to Times Square via a converted semi truck. The event is free and open to the general public between 11am and 3pm. Read more »
Related Bugtraq Messages
Huge Spamming Botnet Injured but Still Alive (PC World)
Huge Spamming Botnet Injured but Still Alive A botnet responsible for a significant amount of spam has been crippled but may reconstitute itself in a matter of weeks, according to vendor M86 Security. The Pushdo or Cutwail network of hacked computers ranked in the top five or so botnets for spam, responsible for as much as 10 percent of all spam, said Ed Rowley, product manager for M86 Security. Read more »
Related Bugtraq Messages
Jordan amends cyber crimes law after media outcry (AFP)
Jordan amends cyber crimes law after media outcry AMMAN (AFP) – Jordan on Sunday approved a temporary law on cyber crimes after amending it to appease the fury of journalists who said the legislation was a means to control local news websites. The law had initially allowed the authorities to raid and search offices from which websites are published and to access computers without prior approval ... Read more »
Related Bugtraq Messages
Hackers attack Philippine government website (AFP)
Hackers attack Philippine government website MANILA (AFP) – The Philippines on Sunday ordered all government offices to tighten Internet security after its main information website was brought down by hackers. "We are alerting all government agencies to review and improve security of their websites in view of the hacking of the website this afternoon," presidential spokesman Herminio Coloma said. Read more »
Related Bugtraq Messages
For the past several years, I have been archiving Bugtraq emails and placing them on LinuxRocket, mainly for my own use. It was a good resource, but needed more functionality, especially with regard to grouping related information. Recently, I decided to build a custom tf-idf engine, using LinuxRocket's Bugtraq archive as the corpus. Preliminary results were promising, so LinuxRocket now leverages that index along with a new engine that creates mutual document associations for those emails. The functionality was then extended to also tie in relevant documents from the AP Security feed.
On the front page, you now see the results of this mutual document association engine. Below each AP security news article are the top 10 most-relevant Bugtraq emails. Upon clicking on one, you are taken to a page where you can read the entire message. At the top of that page you will see a group of related terms. These terms are ones that have been identified as the most relevant to that page and link to other such pages within LinuxRocket. Clicking on one of those links you are then taken to a Term Landing Page that lists the top 30 emails, each with a snippet that includes the relevant terms.
This engine is a custom application written in C++. It uses libexpat, htmltidy, libcurl, and the snowball stemmer. The index generation is completely written from scratch. It runs as a background process and provides regularly updated results in the form of a feed for the frontend webserver to retrieve and display.
People have used LinuxRocket to monitor vulnerabilities, malware reports and software security. Often, emails within Bugtraq suggest security measures that are needed to thwart these issues. LinuxRocket is not a security service, but an information portal for the security minded.
