'The golden age of hacking rolls on'

Gretel Johnston, IDG News Service   Today’s Top Stories   or  Other Spam, Malware and Vulnerabilities Stories  

Advances in SSL and Certificate Management Bringing Order and Security to your Mobile Workforce: Corporate Mobility Policy and Device Management Achiving Compliance Through Good Governance 7 Requirements of Data Loss Prevention Ponemon Study: How much does a data breach "cost"? E-LOAN maintains reputation as a privacy leader with Symantec Data Loss Prevention solutions Virtual Reality SaaS Solutions for Remote Systems Management Mobility @ the Speed of Business Sign up to receive Security Resource Alerts

October 25, 2002 (IDG News Service) -- WASHINGTON -- Over the past eight months, major new hacker tools have been released or revealed, ending a lull in activity among hackers that followed the Sept. 11 terrorist attacks and the enactment of legislation that enhanced law enforcement's ability to prosecute people who break code and wreak havoc on networks by exploiting software vulnerabilities, hacking consultant Ed Skoudis said yesterday.
LibRadiate, Paketto Keiretsu, Setiri and The Defiler's Toolkit are some of the tools that have cropped up since March and are keeping security specialists awake at night, according to Skoudis, who gave a threat update briefing here at a SANS Institute Inc. conference. SANS is a security education and research organization in Bethesda, Md.
Skoudis, vice president of ethical hacking and incident response at consultancy Predictive Systems Inc. in New York, said the June-through-September period saw massive exposures of security vulnerabilities in OpenSSH, Apache Web server software and Microsoft Corp.'s Web browser Internet Explorer.
The popularity of war driving
"This summer has been a huge summer for hackers. There were huge issues discovered all summer long, and things really opened up between March and now," Skoudis said. "The golden age of hacking rolls on."
One of the latest developments involves the security of wireless LANs and the ease with which people are able to detect them. For one week in early September, amateur WLAN sniffers used freeware called NetStumbler to detect hundreds of insecure business and home WLANs in North America and Europe, in an exercise called a "war drive" (see story).
Skoudis said attackers have "flocked to this area" and are finding that many WLANs are set up without basic security. After they detect the WLAN, they can use a tool that's been available since May, called LibRadiate, an application programming interface that allows developers to easily capture, create and transmit arbitrary packets on a wireless LAN using the IEEE 802.11b standard. The tool runs on Linux (Kernel 2.4) with wireless cards that have the Intersil Corp. Prism 2 chip set, Skoudis said.
Capturing TCP/IP packets with LibRadiate
LibRadiate makes it possible for hackers using "fairly simple C code" to capture TCP/IP packets or inject them into a network, Skoudis said. Among the wireless attack tools expected to become available for use with LibRadiate, according to Skoudis, are WEP crackers, which exploit flaws in the Wired Equivalent Privacy (WEP) protocol, allowing a hacker to determine encryption keys even when WEP is in use; and malformed packet generators, which inject strange and noncompliant packets into a network in an attempt to crash systems that can't handle unusual packet structures.
"With tools like LibRadiate, the computer underground is starting to develop far more sophisticated attack tools than what we have seen in the past," Skoudis said.
Another tool, released two weeks ago, is Paketto Keiretsu, which Skoudis referred to as a suite of tools for doing TCP/IP tricks. One of its most fundamental capabilities involves rapid port scans, which it does by separating the packet sender from the receiver.
Setiri, a Trojan horse
Skoudis also described Setiri, a new Trojan horse back door. The tool can bypass personal firewalls, Network Address Translation devices, proxies and advanced firewalls by starting up an invisible browser on the victim's PC. Then Setiri, running on the victim's system, uses OLE to communicate with the hidden browser. As long as the victimized PC's browser can access the Internet, Setiri can reach across the network and get the attacker's commands.
Setiri, developed by a small group of South African security consultants and demonstrated in August at Def Con (see story), hasn't been seen in the wild yet, Skoudis said. Nevertheless, he included it in his presentation because its existence has been acknowledged within the security community and writing the code is something a moderately skilled coder could do.
Skoudis said the system strips out information about the user by going through Anonymizer.com, a Web site that offers anonymous e-mail and Web browsing, so blocking access to that site is a way of defending against Setiri. Another solution would require changes in Internet Explorer that limit the actions of an invisible browser. Skoudis said Microsoft has said it will address the matter.
'Antiforensic' Defiler's Toolkit
In the new area of "antiforensics," hackers have had access to a tool called the Defiler's Toolkit since July. It's able in a number of ways to foil the Coroner's Toolkit, a tool that has been used by computer forensic specialists for several years, Skoudis said. For example, it can destroy or hide the traces of a hack that the Coroner's Toolkit looks for. The Defiler's Toolkit targets the Linux Ext2fs file system, but Skoudis said the concept could be extended to other platforms.
Commenting on Monday's distributed denial-of-service attack on the Internet (see story), Skoudis said major U.S. law enforcement agencies are investigating, but he didn't know whether they had developed any theories about where the attack originated.
Alan Paller, director of the SANS Institute, said the attack is being characterized by security professionals as a Smurf attack that could have been much worse if all 13 root servers had been affected.
"Had it knocked out all of them, there's a reasonable expectation that over a certain amount of time ... the way that you use the Internet would have ceased to work," Paller said.
There's no easy fix for preventing DOS attacks, and the time is fast approaching when Internet service providers aren't going to allow users who don't meet a minimum standard of security on the Internet because they pose a threat to other users, Paller added.
"DOS attacks are not going to be solved because we get some new hardware in the system," Paller said. "You are going to have to re-engineer the whole Internet. That's going to take close to a decade. While we are doing that, we are going to have to start protecting ourselves from [users who] are not going to be careful."

Continued...
1 | 2 | NEXT  

Reprinted with permission from

IDG.net
Story copyright 2008 International Data Group. All rights reserved.

Print this Story

Send Us Feedback

E-mail this Story

Digg this Story

Slashdot this Story

"Welcome to a special IT Blogwatch EXTRA: as Richi Jennings watches bloggers' reactions to the Russian hackers who claim to..." Read more... "As if taxpayers needed another reason to scorn the IRS. I read yesterday that the inspector general review of several..." Read more... Read more Security posts or See all Blogs

Feds considering changes to H-1B application process in wake of report Exploit code loose for six-month-old Windows bug With market meltdown, which tech firms become predator or prey? More top stories...

The Grill: Privacy is a thing of the past, says private investigator Report: World Bank servers breached repeatedly Apple asks judge to make iPhone lawsuit moot

Health hazards for IT workers -- how that desk job wears your body down Too much junk food, too little exercise and a 24/7 tether to technology? Your body ain't happy, friend. Let us count the pains. NASA robot sends back evidence it's snowing on Mars Instruments on the surface of Mars have detected falling snow that is likely evaporating before it reaches the planet. Wall Street's collapse may be computer science's gain One positive development stemming from the collapse of Wall Street may be a boost in interest in computer science and IT careers among students who were previously interested in financial services jobs. Installing Linux apps: A few good tips Getting new software installed on Linux doesn't have to be hard, but it can differ depending on what you're installing. Windows Vista A to Z Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS. More Continuing Coverage After 9/11: Homeland Security Apple's iPhone Ask a Premier 100 IT Leader Bill Gates steps down BlackBerry Legal Battle Data Security Breaches Electronic Voting Firefox H-1B Visas HP's Boardroom Scandal Handheld Devices Hurricane Katrina Aftermath Microsoft Legal Issues Microsoft's Vista Open Source RFID Technology SCO's Linux Fight Sarbanes-Oxley Act Spam Voice Over IP Wi-Fi Windows Meta File Vulnerability Windows XP Service Pack 3 IT Careers 2010 Four years from now, the IT field will be a vastly different place. Will you be ready? More Special Reports Premier 100 IT Leaders 2007 Best in Class 2006 Computerworld Horizon Awards 2006 Premier 100 IT Leaders 2006 Salary Survey 2007 Best Places to Work in IT 2007 IT Forecast 2007 Premier 100 IT Leaders 40 Years of Computerworld ASPs, Take Two Best Places to Work in IT 2003 Best Places to Work in IT 2004 Best Places to Work in IT 2005 Best Places to Work in IT 2006 Business Intelligence Home Runs Business Intelligence: Smarter BI Business Intelligence: The Future of BI CRM Goes Vertical CRM: Sober CRM Career Planning Guide 2005 Careers: IT Profession 2010 Computerworld Horizon Awards 2005 Data Management: Mining for Gems Data Management: Taming Data Chaos Development: Hard-Workin' Web Sites Development: New Tools New Choices Development: The New World of Application Development Development: The Web Services Tsunami Development: Web Services Hurdles Disaster Recovery: Preparing for the Worst E-commerce Grows Up E-mail/Groupware: Big Decisions Faces of Mobile IT Forecast 2006 Global Mobile Hardware: Multiple Cores, Multiple Challenges Hardware: On-Demand Un-Hyped Hardware: The Shape of Things to Come Horizon Awards: 10 Cool Cutting Edge Technologies IT Management: Guide to Managing Vendors IT Management: Navigating Global IT IT Management: Recovery Ahead IT Management: The Future of IT IT Management: The Resourceful Project Manager Innovative Technology Awards 2004 Management: Reinventing IT Microsoft in Transition Mobile/Wireless Leaders and Laggards Mobile/Wireless: The Untethered Worker Mobile/Wireless: Tiny Gadgets, Huge Costs Network Management: Taking Control Networking: Turbulence Ahead! Networking: VoIP Goes Mainstream Operating Systems: In the Slow Lane Operating Systems: Linux Goes Global Operating Systems: Should You Nix Unix? Outsourcing: Offshore Buyer's Guide Outsourcing: Outsourcing Dangers Premier 100 IT Leaders 2004 Best in Class Premier 100 IT Leaders 2005 Best in Class ROI: Do the Math! Salary Survey 2003 Salary Survey 2004 Salary Survey 2005 Security Action Plan Security: Compliance Headaches Security: Proactive Security Security: Risk and Reward Security: Tips From Security Pros Souped-up Security Storage: Battling Complexity Storage: Cheap & Secure Data Stores Storage: Stretching Your Storage Dollars Storage: The Lean Storage Machine Storage: The New Rules of Storage Storage: The Ultimate Backup Guide Supply Chain: Missing Links Supply Chain: RFID Reality Check The Business of Security Web 2.0 Security Wireless: Wireless At Work All Zones Application Performance Zone Business Continuity Zone The File Data Management Zone Security Management Zone The SAS Zone Business Intelligence and Analytics Zone Windows Protection Zone The Enterprise Search Zone Software as a Service Zone The Security Zone See your link here

From Laggard to Leader: Transforming the Data Center From Laggard to Leader: Transforming the Data Center Register for this complimentary webcast today! Go to the webcast  Computerworld Executive Bulletin: Building a Robust Antivirus Defense Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs. (Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more. Download this executive briefing  Quick Sizing Guide for SAS Grid Running on HP BladeSystems and EVA Storage Download this white paper today! (Source: HP) Designed for CIOs, IT managers, data center managers and grid computing architects seeking to improve performance, SAS Grid Computing on the HP BladeSystem c-Class helps accelerate growth and mitigate risks with a simplified, consolidated infrastructure that's agile enough to efficiently handle change. SAS Grid Manager on HP BladeSystem can lower costs through automation, virtualization and improved IT efficiency. Download this white paper  White Papers Read up on the latest ideas and technologies from companies that sell hardware, software and services. Business Transaction Management: Facilitating the Management of Virtual Environments Quick Sizing Guide for SAS Grid Running on HP BladeSystems and EVA Storage Prudential Financial protects its brand with Symantec Data Loss Prevention solutions View more whitepapers

• Feds considering changes to H-1B application process in wake of report
• The Grill: Privacy is a thing of the past, says private investigator
• Exploit code loose for six-month-old Windows bug
• More top stories 

The Security Zone Securing your network begins at the gateway, also called the perimeter, to keep unauthorized users, viruses and malicious code from entering your systems. Deploying multilayer technologies is your first line of defense. With the mobility of employees and the ease with which external devices can be brought in and out of a network, continuing to build your security plan for network servers and clients is a must. Fortunately, there is much that organizations can do to protect themselves from attacks - internal and external. One of the key facets of a successful security strategy is protecting the servers that run critical applications and house so much of your essential data. Having the right policies, procedures and server configurations is critical. Learn more in The Security Zone See All Zones

Fired up about IT? Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT – the good, the bad, and the rest of the weird stuff you deal with every day. New baits

"Turning information into a Competitive Advantage" Companies today are realizing that competitive advantage is harder to sustain when based solely on gains in productivity and cost efficiency. The focus is shifting to invest more in business optimization initiatives which rely on trusted information to develop new insights that deliver better business results. But how can this be done efficiently in a business environment across multiple applications and processes. The answer is an Information Agenda - an innovative approach to transforming business information into a strategic asset for competitive advantage. View this webcast now!  See more Webcasts

Preston Gralla: Apple plays the bully again Apple is once again unleashing its attack dog lawyers. This time against a college for using an apple in its logo. ... [more]