pastebin - collaborative debugging tool
kpaste.net RSS


Giant Spider's Blood ### Microsoft Kinect Spy System THIS ARTICLE IS BEING SCRUBBED FROM THE NET. THE SITE IT WAS ORIGINALLY POSTED TO YANKED THE PLUG ON THEIR WHOLE SITE!!! COPY/PASTE THIS ARTICLE AS MUCH AS POSSIBLE TO DISCUSSION FORUMS, BLOGS, FACEB
Posted by Anonymous on Sat 7th Jun 2014 19:50
raw | new post

  1. Giant Spider's Blood
  2.  
  3. ###
  4.  
  5. Microsoft Kinect Spy System
  6.  
  7. THIS ARTICLE IS BEING SCRUBBED FROM THE NET. THE SITE IT WAS ORIGINALLY POSTED TO YANKED THE PLUG ON THEIR WHOLE SITE!!! COPY/PASTE THIS ARTICLE AS MUCH AS POSSIBLE TO DISCUSSION FORUMS, BLOGS, FACEBOOK, TWITTER, AND ARCHIVE AND MIRROR THIS DOCUMENT SO IT DOES NOT VANISH FOREVER!
  8.  
  9. "So you just got the Kinect/Xbox360 gaming system and you're having fun, hanging out in your underwear, plopped down in your favorite lounge chair, and playing games with your buddies. Yeah, it's great to have a microphone and camera in your game system so you can "Kinect" to your pals while you play, but did you read that Terms of Service Agreement that came with your Kinect thingy? No? Here, let me point out an important part of that service agreement.
  10.  
  11.     If you accept the agreement, you "expressly authorize and consent to us accessing or disclosing information about you, including the content of your communications, in order to: (a) comply with the law or respond to lawful requests or legal process; (b) protect the rights or property of Microsoft, our partners, or our customers, including the enforcement of our agreements or policies governing your use of the Service; or (c) act on a good faith belief that such access or disclosure is necessary to protect the personal safety of Microsoft employees, customers, or the public."
  12.  
  13. Did you catch that? Here, let me print the important part in really big letters.
  14.  
  15. "If you accept the agreement, you expressly authorize and consent to us accessing or disclosing information about you, including the content of your communications… on a good faith belief that such access or disclosure is necessary to protect the personal safety of Microsoft employees, customers, or the public."
  16.  
  17. OK, is that clear enough for ya? When you use the Kinect system, you agree to allow Microsoft (and any branch of law enforcement or government they care to share information with) to use your Kinect system to spy on you. Maybe run that facial recognition software to check you out, listen to your conversations, and keep track of who you are communicating with.
  18.  
  19. I know this is probably old news to some, but I thought I would mention it because it pertains to almost all of these home game systems that are interactive. You have to remember, the camera and microphone contained in your game system have the ability to be hacked by anyone the game company gives that ability to, and that includes government snoops and law enforcement agents.
  20.  
  21. Hey, it's MICROSOFT. What did you expect?
  22.  
  23. And the same concerns apply to all interactive game systems.  Just something to think about if you're having a "Naked Wii party" or doing something illegal while you're gaming with your buddies. Or maybe you say something suspicious and it triggers the DHS software to start tracking your every word. Hey, this is not paranoia. It's spelled out for you, right there in that Service Agreement.  Read it! Here's one more part of the agreement you should be aware of.
  24.  
  25.     "You should not expect any level of privacy concerning your use of the live communication features (for example, voice chat, video and communications in live-hosted gameplay sessions) offered through the Service."
  26.  
  27. Did you catch it that time? YOU SHOULD NOT EXPECT ANY LEVEL OF PRIVACY concerning your voice chat and video features on your Kinect box."
  28.  
  29. ###
  30.  
  31. "Listen up, you ignorant sheep. Your government is spending more money than ever to spy on its own citizens. That's YOU, my friend. And if you're one of these people who say, "Well I ain't ever done nothing wrong so why should I worry about it?' -  you are dead wrong. Our civil liberties are being taken away faster than you can spit.  The NSA is working away on its new "First Intelligence Community Comprehensive National Cyber-security Initiative Data Center' to keep track of every last one of us. This thing will be the size of 17 football stadiums. One million square feet, all to be filled with more technology and data storage than you could imagine. And 30,000 spy drones are set to be launched over America which can each stay aloft for about 28 hours, traveling 300 miles per hour. WHY? Why do we want these things in our skies?
  32.  
  33. The military is now taking a keen interest in the Microsoft Kinect Spy System, the fastest selling electronic device in history. Conveniently self-installed in over 18 million homes, this seemingly innocent game system, armed with facial recognition programming and real-time recording of both sound and video, will be used by our own government to spy on and record us in our own homes.
  34.  
  35. And it doesn't stop there. Other game systems such as Nintendo's WWII are also being turned into government-controlled spy systems. WHY?
  36.  
  37. That's the real question. WHY?!!! Why is our own government spending billions and billions of dollars to spy on its own people? To keep us safe? Do you really believe that?"
  38.  
  39. Microsoft's Kinect System is Watching You
  40. Published on Apr 5, 2012 by TheAlexJonesChannel:
  41.  
  42. https://www.youtube.com/watch?v=gkYgC-AvPGM
  43.  
  44. ###
  45.  
  46. Big Brother alert: Microsoft wants to know how many friends you've got in your living room
  47.  
  48. - http://blogs.telegraph.co.uk/technology/micwright/100008237/big-brother-alert-microsoft-wants-to-know-how-many-friends-youve-got-in-your-living-room/
  49.  
  50. By Mic Wright Gadgets Last updated: November 9th, 2012
  51.  
  52. - http://blogs.telegraph.co.uk/technology/author/micwright/
  53.  
  54. "One of Microsoft's latest patent applications[1] is a humdinger. It proposes to turn the Kinect camera into a snitch for movie studios, reporting back just how many friends you've got in your living room and what they're watching. Think that sounds alarmist? Here's what it actually says: "The users consuming the content on a display device are monitored so that if the number of user-views licensed is exceeded, remedial action may be taken." It's that blatant – a system to spy on private viewing habits.
  55.  
  56. If put into practice, Microsoft's plan could mean that the film you're watching suddenly stops playing if it detects that you've got more people squashed on to the sofa than the licence allows. You'd then be prompted to buy a more expensive licence to keep watching. It's as if Big Brother had built 1984's Telescreen not to monitor the population but to ensure no one was pirating the Two Minutes Hate.
  57.  
  58. In all likelihood, Microsoft will struggle to actually apply this patent in the real world. While copyright holders would be delighted, customers would be turned off by such a draconian system. But that's what's interesting about this application and patent applications in general: they often reveal what companies would do if they could get away with it. The black and white drawings and blandly technical language can cover immoral, scary and downright evil ideas.
  59.  
  60. There was an even more striking example from Apple earlier this year[2]. In September, it was granted a patent for "Apparatus and methods for enforcement of policies upon a wireless device", i.e. a system allowing companies or governments to remotely disable mobile phones and tablets in a particular area.
  61.  
  62. While Apple mentions benign examples such as preventing phone calls from disturbing concerts or ensuring devices are switched off on planes, it also states: "Covert police or government operations may require complete "blackout" conditions." That's exactly the kind of feature certain governments would love to use to suppress pictures and videos. The patent Apple put its stamp on is a handy form of censorship regardless of whether it will ever apply it.
  63.  
  64. Last year, Google's chairman, Eric Schmidt, said that the company would hold off from creating a facial recognition service because it would be "crossing the creepy line". Still, Google has filed for and been granted extensive patents in the area and, as its Project Glass augmented reality goggles move forward, who knows when the "creepy line" will shift?"
  65.  
  66. [1] http://appft.uspto.gov/netacgi/nph-Parser?Sect1=PTO1&Sect2=HITOFF&d=PG01&p=1&u=%2Fnetahtml%2FPTO%2Fsrchnum.html&r=1&f=G&l=50&s1=%2220120278904%22.PGNR.&OS=DN/20120278904&RS=DN/20120278904
  67.  
  68. [2] http://www.zdnet.com/apple-patent-could-remotely-disable-protesters-phone-cameras-7000003640/
  69.  
  70. (C) Copyright of Telegraph Media Group Limited 2012
  71.  
  72. ###
  73.  
  74. "People are aware that Windows has bad security but they are underestimating the problem because they are thinking about third parties. What about security against Microsoft? Every non-free program is a 'just trust me program'. 'Trust me, we're a big corporation. Big corporations would never mistreat anybody, would we?' Of course they would! They do all the time, that's what they are known for. So basically you mustn't trust a non free programme."
  75.  
  76. "There are three kinds: those that spy on the user, those that restrict the user, and back doors. Windows has all three. Microsoft can install software changes without asking permission. Flash Player has malicious features, as do most mobile phones."
  77.  
  78. "Digital handcuffs are the most common malicious features. They restrict what you can do with the data in your own computer. Apple certainly has the digital handcuffs that are the tightest in history. The i-things, well, people found two spy features and Apple says it removed them and there might be more""
  79.  
  80. From:
  81.  
  82. Richard Stallman: 'Apple has tightest digital handcuffs in history'
  83. www.newint.org/features/web-exclusive/2012/12/05/richard-stallman-interview/
  84.  
  85. ###
  86.  
  87. Nobody Seems To Notice and Nobody Seems To Care - Government & Stealth Malware
  88.  
  89. In Response To Slashdot Article: Former Pentagon Analyst: China Has Backdoors To 80% of Telecoms 87
  90.  
  91. How many rootkits does the US[2] use officially or unofficially?
  92.  
  93. How much of the free but proprietary software in the US spies on you?
  94.  
  95. Which software would that be?
  96.  
  97. Visit any of the top freeware sites in the US, count the number of thousands or millions of downloads of free but proprietary software, much of it works, again on a proprietary Operating System, with files stored or in transit.
  98.  
  99. How many free but proprietary programs have you downloaded and scanned entire hard drives, flash drives, and other media? Do you realize you are giving these types of proprietary programs complete access to all of your computer's files on the basis of faith alone?
  100.  
  101. If you are an atheist, the comparison is that you believe in code you cannot see to detect and contain malware on the basis of faith! So you do believe in something invisible to you, don't you?
  102.  
  103. I'm now going to touch on a subject most anti-malware, commercial or free, developers will DELETE on most of their forums or mailing lists:
  104.  
  105. APT malware infecting and remaining in BIOS, on PCI and AGP devices, in firmware, your router (many routers are forced to place backdoors in their firmware for their government) your NIC, and many other devices.
  106.  
  107. Where are the commercial or free anti-malware organizations and individual's products which hash and compare in the cloud and scan for malware for these vectors? If you post on mailing lists or forums of most anti-malware organizations about this threat, one of the following actions will apply: your post will be deleted and/or moved to a hard to find or 'deleted/junk posts' forum section, someone or a team of individuals will mock you in various forms 'tin foil hat', 'conspiracy nut', and my favorite, 'where is the proof of these infections?' One only needs to search Google for these threats and they will open your malware world view to a much larger arena of malware on devices not scanned/supported by the scanners from these freeware sites. This point assumed you're using the proprietary Microsoft Windows OS. Now, let's move on to Linux.
  108.  
  109. The rootkit scanners for Linux are few and poor. If you're lucky, you'll know how to use chkrootkit (but you can use strings and other tools for analysis) and show the strings of binaries on your installation, but the results are dependent on your capability of deciphering the output and performing further analysis with various tools or in an environment such as Remnux Linux. None of these free scanners scan the earlier mentioned areas of your PC, either! Nor do they detect many of the hundreds of trojans and rootkits easily available on popular websites and the dark/deep web.
  110.  
  111. Compromised defenders of Linux will look down their nose at you (unless they are into reverse engineering malware/bad binaries, Google for this and Linux and begin a valuable education!) and respond with a similar tone, if they don't call you a noob or point to verifying/downloading packages in a signed repo/original/secure source or checking hashes, they will jump to conspiracy type labels, ignore you, lock and/or shuffle the thread, or otherwise lead you astray from learning how to examine bad binaries. The world of Linux is funny in this way, and I've been a part of it for many years. The majority of Linux users, like the Windows users, will go out of their way to lead you and say anything other than pointing you to information readily available on detailed binary file analysis.
  112.  
  113. Don't let them get you down, the information is plenty and out there, some from some well known publishers of Linux/Unix books. Search, learn, and share the information on detecting and picking through bad binaries. But this still will not touch the void of the APT malware described above which will survive any wipe of r/w media. I'm convinced, on both *nix and Windows, these pieces of APT malware are government in origin. Maybe not from the US, but most of the 'curious' malware I've come across in poisoned binaries, were written by someone with a good knowledge in English, some, I found, functioned similar to the now well known Flame malware. From my experience, either many forum/mailing list mods and malware developers/defenders are 'on the take', compromised themselves, and/or working for a government entity.
  114.  
  115. Search enough, and you'll arrive at some lone individuals who cry out their system is compromised and nothing in their attempts can shake it of some 'strange infection'. These posts receive the same behavior as I said above, but often they are lone posts which receive no answer at all, AT ALL! While other posts are quickly and kindly replied to and the 'strange infection' posts are left to age and end up in a lost pile of old threads.
  116.  
  117. If you're persistent, the usual challenge is to, "prove it or STFU" and if the thread is not attacked or locked/shuffled and you're lucky to reference some actual data, they will usually attack or ridicule you and further drive the discussion away from actual proof of APT infections.
  118.  
  119. The market is ripe for an ambitious company or individual to begin demanding companies and organizations who release firmware and design hardware to release signed and hashed packages and pour this information into the cloud, so everyone's BIOS is checked, all firmware on routers, NICs, and other devices are checked, and malware identified and knowledge reported and shared openly.
  120.  
  121. But even this will do nothing to stop backdoored firmware (often on commercial routers and other networked devices of real importance for government use - which again opens the possibility of hackers discovering these backdoors) people continue to use instead of refusing to buy hardware with proprietary firmware/software.
  122.  
  123. Many people will say, "the only safe computer is the one disconnected from any network, wireless, wired, LAN, internet, intranet" but I have seen and you can search yourself for and read about satellite, RF, temperature, TEMPEST (is it illegal in your part of the world to SHIELD your system against some of these APT attacks, especially TEMPEST? And no, it's not simply a CRT issue), power line and many other attacks which can and do strike computers which have no active network connection, some which have never had any network connection. Some individuals have complained they receive APT attacks throughout their disconnected systems and they are ridiculed and labeled as a nutter. The information exists, some people have gone so far as to scream from the rooftops online about it, but they are nutters who must have some serious problems and this technology with our systems could not be possible.
  124.  
  125. I believe most modern computer hardware is more powerful than many of us imagine, and a lot of these systems swept from above via satellite and other attacks. Some exploits take advantage of packet radio and some of your proprietary hardware. Some exploits piggyback and unless you really know what you're doing, and even then... you won't notice it.
  126.  
  127. Back to the Windows users, a lot of them will dismiss any strange activity to, "that's just Windows!" and ignore it or format again and again only to see the same APT infected activity continue. Using older versions of sysinternals, I've observed very bizarre behavior on a few non networked systems, a mysterious chat program running which doesn't exist on the system, all communication methods monitored (bluetooth, your hard/software modems, and more), disk mirroring software running[1], scans running on different but specific file types, command line versions of popular Windows freeware installed on the system rather than the use of the graphical component, and more.
  128.  
  129. [1] In one anonymous post on pastebin, claiming to be from an intel org, it blasted the group Anonymous, with a bunch of threats and information, including that their systems are all mirrored in some remote location anyway.
  130.  
  131. [2] Or other government, US used in this case due to the article source and speculation vs. China. This is not to defend China, which is one messed up hell hole on several levels and we all need to push for human rights and freedom for China's people. For other, freer countries, however, the concentration camps exist but you wouldn't notice them, they originate from media, mostly your TV, and you don't even know it. As George Carlin railed about "Our Owners", "nobody seems to notice and nobody seems to care".
  132.  
  133. [3] http://www.stallman.org/
  134.  
  135. Try this yourself on a wide variety of internet forums and mailing lists, push for malware scanners to scan more than files, but firmware/BIOS. See what happens, I can guarantee it won't be pleasant, especially with APT cases.
  136.  
  137. So scan away, or blissfully ignore it, but we need more people like RMS[3] in the world. Such individuals tend to be eccentric but their words ring true and clear about electronics and freedom.
  138.  
  139. I believe we're mostly pwned, whether we would like to admit it or not, blind and pwned, yet fiercely holding to misinformation, often due to lack of self discovery and education, and "nobody seems to notice and nobody seems to care".
  140.  
  141. (Remotely Attacking Network Cards)
  142. http://theinvisiblethings.blogspot.com/2010/04/remotely-attacking-network-cards-or-why.html
  143.  
  144. (Persistent BIOS Infection)
  145. http://www.phrack.org/issues.html?issue=66&id=7#article
  146.  
  147. (BIOS --> Vbootkit code(from CD,PXE etc.) --> MBR --> NT Boot sector --> Windows Boot manager --> Windows Loader --> Vista Kernel)
  148. http://www.securityfocus.com/columnists/442/2
  149.  
  150. (The ROMOS project)
  151. http://web.archive.org/web/20100111040625/http://rayer.ic.cz/romos/romose.htm
  152.  
  153. Secure boot is Microsoft's attempt to maintain computer OS market share as their influences is being stripped away by the likes of Google (Android) and Apple (iOS). With HTML5 on the way, we will have WEB based applications that rival desktop versions, and run on ANY device. The OS is just a layer to get to where the real work gets done, information exchange.
  154.  
  155. AND the worst part is, secure boot doesn't actually fix the problem it pretends it solves. It can't. This is the whole DRM of DVD's and BluRay all over again. Look at how well that is working out.
  156.  
  157. DRM is broken by design."
  158. - linux.slashdot.org/comments.pl?sid=2985953&cid=40681007
  159.  
  160. "Richard Stallman has finally spoken out on this subject. He notes that 'if the user doesn't control the keys, then it's a kind of shackle, and that would be true no matter what system it is.' He says, 'Microsoft demands that ARM computers sold for Windows 8 be set up so that the user cannot change the keys; in other words, turn it into restricted boot.' Stallman adds that 'this is not a security feature. This is abuse of the users. I think it ought to be illegal.'""
  161. - linux.slashdot.org/story/12/07/17/2326253/richard-stallman-speaks-about-uefi
  162.  
  163. I'm concerned about new rootkits which target PCI devices, such as the graphics card and the optical drives, also, BIOS. Where are the malware scanners which scan PCI devices and BIOS for mismatches? All firmware, BIOS and on PCI devices should be checksummed and saved to match with others in the cloud, and archived when the computer is first used, backing up signed firmware.
  164.  
  165. When do you recall seeing signed router firmware upgrades with any type of checksum to check against? Same for PCI devices and optical drives and BIOS.
  166.  
  167. Some have begun with BIOS security:
  168.  
  169. http://www.biosbits.org/
  170.  
  171. Some BIOS has write protection in its configuration, a lot of newer computers don't.
  172.  
  173. ###
  174.  
  175. CIA Head: We Will Spy On Americans Through Electrical Appliances
  176. Global information surveillance grid being constructed; willing Americans embrace gadgets used to spy on them
  177. http://www.prisonplanet.com/cia-head-we-will-spy-on-americans-through-electrical-appliances.html
  178.  
  179. ###
  180.  
  181. Comparing the unique pattern of the frequencies on an audio recording with a database that has been logging these changes for 24 hours a day, 365 days a year provides a digital watermark: a date and time stamp on the recording.
  182. Philip Harrison, from JP French Associates, another forensic audio laboratory that has been logging the hum for several years, says: "Even if [the hum] is picked up at a very low level that you cannot hear, we can extract this information." It is a technique known as Electric Network Frequency (ENF) analysis, and it is helping forensic scientists to separate genuine, unedited recordings from those that have been tampered with."
  183. - http://www.bbc.co.uk/news/science-environment-20629671
  184. - http://cryptogon.com/?p=32789
  185.  
  186. ###
  187.  
  188. "I'd worry about a Tempest virus that polled a personal computer's
  189. CD-ROM drive to pulse the motor as a signalling method:
  190.  
  191. * Modern high-speed CD-ROM drive motors are both acoustically and
  192. electrically noisy, giving you two attack methods for the price of one;
  193.  
  194. * Laptop computer users without CRTs, and the PC users that can afford
  195. large LCD screens instead of CRTs, often have CD-ROM drives;
  196.  
  197. * Users are getting quite used to sitting patiently while their
  198. CD-ROM drives grind away for no visibly obvious reason (but
  199. that's quite enough about the widespread installs of software from
  200. Microsoft CD-ROMs that prompted Kuhn's investigation in the first place.)"
  201.  
  202. http://catless.ncl.ac.uk/Risks/19.60.html#subj9
  203.  
  204. ###
  205.  
  206. "I'd worry about a Tempest virus that polled a personal computer' personal computer' CD-ROM drive"
  207.  
  208. Yes and the hard drive and in some PC's the cooling fans as well are under CPU control.
  209.  
  210. You can also do it with PC's where the CPU does not control the fan, but the hardware has a simple thermal sensor to control it's speed. You do this by simply having a process that uses power expensive instructions in tight loops, thus raising the CPU temprature (it's one of the side channels I was considering a long time ago when thinking about how the temp inside the case changed various things including the CPU clock XTAL frequency).
  211.  
  212. The change in sound side channel is one of the first identified problems with Quantum Key Distribution. Basicaly the bod who came up with the idea whilst first testing the idea could tell the state of "Alice's polarizer" simply by the amount of noise it made...
  213.  
  214. The CD-ROM motor idea I'd heard befor but could not remember where till I followed your link.
  215.  
  216. Dr Lloyd Wood has worked with the UK's Surrey Uni, the European Space Agency and Americas NASA and one or two other places as part of his work for Surrey Satellite Technology Ltd. He has been involved with CLEO (Cisco router in Low Earth Orbit) and other work on what's being called "The Space Internet".
  217.  
  218. Of interest is his work on Delay and Disruption Tolerant Networks (DTN). It's not been said "publicaly" as far as I'm aware but the work has aspects that are important to anonymity networks such as TOR.
  219.  
  220. You can read more on Dr Wood's DTN work etc at,
  221.  
  222. Lloyd Wood - Delay-Tolerant Networking work
  223. http://personal.ee.surrey.ac.uk/Personal/L.Wood/dtn/
  224.  
  225. The UK occupies an odd position in the "Space Race" it is the only nation who having put a satellite into space then stopped further space rocket development (the Black Knight launch platform was considerably safer and more economic than the then US and CCCP systems). The UK has however continued in the Space Game and is perhaps the leading designers of payloads for scientific and industrial satellites (it probably is on military sats as well but nobody who knows for sure is telling ;-)
  226.  
  227. Clive Robinson
  228. Schneier on Security: Information-Age Law Enforcement Techniques
  229. http://www.schneier.com/blog/archives/2012/12/interesting_win.html#c1049823
  230.  
  231. ###
  232.  
  233. Schneier has covered it before: power line fluctuations (differences on the wire in keys pressed).
  234.  
  235. There's thermal attacks against cpus and temp, also:
  236.  
  237. ENF (google it)
  238.  
  239. A treat (ENF Collector in Java):
  240.  
  241. sourceforge dot net fwdslash projects fwdslash nfienfcollector
  242.  
  243. No single antimalware scanner exists which offers the ability to scan (mostly proprietary) firmware on AGP/PCI devices (sound cards, graphics cards, usb novelty devices excluding thumb drives), BIOS/CMOS.
  244.  
  245. If you boot into ultimate boot cd you can use an archane text interface to dump BIOS/CMOS and examine/checksum.
  246.  
  247. The real attacks which survive disk formats and wipes target your PCI devices and any firmware which may be altered/overwritten with something special. It is not enough to scan your hard drive(s) and thumb drives, the real dangers with teeth infect your hardware devices.
  248.  
  249. When is the last time you:
  250.  
  251. Audited your sound card for malware?
  252. Audited your graphics card for malware?
  253. Audited your network card for malware?
  254.  
  255. Google for:
  256.  
  257. * AGP and PCI rootkit(s)
  258. * Network card rootkit(s)
  259. * BIOS/CMOS rootkit(s)
  260.  
  261. Our modern PC hardware is capable of much more than many can imagine.
  262.  
  263. Do you:
  264.  
  265.     Know your router's firmware may easily be replaced on a hacker's whim?
  266.     Shield all cables against leakage and attacks
  267.     Still use an old CRT monitor and beg for TEMPEST attacks?
  268.     Use TEMPEST resistant fonts in all of your applications including your OS?
  269.     Know whether or not your wired keyboard has keypresses encrypted as they pass to your PC from the keyboard?
  270.     Use your PC on the grid and expose yourself to possible keypress attacks?
  271.     Know your network card is VERY exploitable when plugged into the net and attacked by a hard core blackhat or any vicious geek with the know how?
  272.     Sarch out informative papers on these subjects and educate your friends and family about these attacks?
  273.     Contact antimalware companies and urge them to protect against many or all these attacks?
  274.  
  275. Do you trust your neighbors? Are they all really stupid when it comes to computing or is there a geek or two without a conscience looking to exploit these areas?
  276.  
  277. The overlooked threat are the potential civilian rogues stationed around you, especially in large apartment blocks who feed on unsecured wifi to do their dirty work.
  278.  
  279. With the recent news of Russian spies, whether or not this news was real or a psyop, educate yourself on the present threats which all antimalware scanners fail to protect against and remove any smug mask you may wear, be it Linux or OpenBSD, or the proprietary Windows and Mac OS you feel are properly secured and not vulnerable to any outside attacks because you either don't need an antivirus scanner (all are inept to serious attacks) or use one or several (many being proprietary mystery machines sending data to and from your machine for many reasons, one is to share your information with a group or set database to help aid in threats), the threats often come in mysterious ways.
  280.  
  281. Maybe the ancients had it right: stone tablets and their own unique language(s) rooted in symbolism.
  282.  
  283. ###
  284.  
  285. 'Disconnect your PC from the internet and don't add anything you didn't create yourself. It worked for the NOC list machine in Mission Impossible'
  286.  
  287. The room/structure was likely heavily shielded, whereas most civvies don't shield their house and computer rooms. There is more than meets the eye to modern hardware.
  288.  
  289. Google:
  290.  
  291. network card rootkits and trojans
  292. pci rootkits
  293. packet radio
  294. xmit 'fm fingerprinting' software
  295. 'specific emitter identification'
  296. forums(dot)qrz(dot)com
  297.  
  298. how many malware scanners scan bios/cmos and pci/agp cards for malware? zero, even the rootkit scanners. have you checksummed/dumped your bios/cmos and firmware for all your pci/agp devices and usb devices, esp vanity usb devices in and outside the realm of common usb devices (thumbdrives, external hdds, printers),
  299.  
  300. Unless your computer room is shielded properly, the computers may still be attacked and used, I've personally inspected computers with no network connection running mysterious code in the background which task manager for windows and the eqiv for *nix does not find, and this didn't find it all.
  301.  
  302. Inspect your windows boot partition in *nix with hexdump and look for proxy packages mentioned along with command line burning programs and other oddities. Computers are more vulnerable than most would expect.
  303.  
  304. You can bet all of the malware scanners today, unless they are developed by some lone indy coder in a remote country, employ whitelisting of certain malware and none of them scan HARDWARE devices apart from the common usb devices.
  305.  
  306. Your network cards, sound cards, cd/dvd drives, graphics cards, all are capable of carrying malware to survive disk formatting/wiping.
  307.  
  308. Boot from a Linux live cd and use hexdump to examine your windows (and *nix) boot sectors to potentially discover interesting modifications by an unknown party.

Submit a correction or amendment below (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.

Syntax highlighting:

To highlight particular lines, prefix each line with {%HIGHLIGHT}




All content is user-submitted.
The administrators of this site (kpaste.net) are not responsible for their content.
Abuse reports should be emailed to us at