RE: Hidden Copying Software

From: terry (tvernon24@comcast.net)
Date: Tue Jul 25 2006 - 10:32:29 EDT

• Next message: killy: "Re: Hidden Copying Software"
• Previous message: Nicolas RUFF: "Re: Hidden Copying Software"
• In reply to: Benny Herlambang: "Re: Hidden Copying Software"
• Next in thread: Maxim Kostyukov: "Re: Hidden Copying Software"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Maybe Windows file sharing somehow was accidentally enabled on his thumb
drive. Win2k I just noticed shares c by default but I didn't pay attention
to the permissions before I changed it. It might be worth checking. If
that's the case, it's a simple miss-configuration.

-terry

-----Original Message-----
From: Benny Herlambang [mailto:bennyherlambang@gmail.com]
Sent: Monday, July 24, 2006 9:52 PM
To: pen-test@securityfocus.com
Subject: Re: Hidden Copying Software

Many free trojan can be downloaded from internet.
Many tojran can copy files from network easily.
So it doesn't to use an expensive software, try to check if there is a
trojan server on the PC or check the sharing policies. maybe the usb drive
was automatically shared, and everybody has full acess on it.

----- Original Message -----
From: "Kish Pent" <kish_pent@yahoo.com>
To: <pixscreenpoint@gmail.com>; <pen-test@securityfocus.com>
Sent: Tuesday, July 25, 2006 6:11 AM
Subject: RE: Hidden Copying Software

> Rocky <pixscreenpoint@gmail.com> wrote: Hi list,
>
> A friend of mine who is a medical professor asked me
> if
> it is possible to copy his usb thumb drive from their
> class room pc without knowing it? he told me maybe
> there's a hidden software that copying it in the
> background?
>
> His exam from his usb thumbdrive was exposed all over
> to his student.I told him that you need a very high
> tech
> software or expensive to do it? Is any such software
> capable
> of this? this some kind of impossible task in my
> views.
>
> Thanks.
>
> netcat is a simple tcp util that can read/write data
> across networks.It's free and it works like a charm.
> That "hidden" software could possibly be a backdoor or
> a trojan-server with someone controlling / connecting
> to the listening connection remotely. IF a connection
> canNOT be established with the TARGET, then there is
> no oppurtunity of a remote-hacking incident. And there
> is no requirement for "expensive software"
>
> Cheers :)
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>
>
----------------------------------------------------------------------------

--
> This List Sponsored by: Cenzic
>
> Concerned about Web Application Security?
> Why not go with the #1 solution - Cenzic, the only one to win the 
> Analyst's
> Choice Award from eWeek. As attacks through web applications continue to 
> rise,
> you need to proactively protect your applications from hackers. Cenzic has
> the
> most comprehensive solutions to meet your application security penetration
> testing and vulnerability management needs. You have an option to go with 
> a
> managed service (Cenzic ClickToSecure) or an enterprise software
> (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
> help you: http://www.cenzic.com/news_events/wpappsec.php
> And, now for a limited time we can do a FREE audit for you to confirm your
> results from other product. Contact us at request@cenzic.com for details.
>
----------------------------------------------------------------------------
--
> 
----------------------------------------------------------------------------
--
This List Sponsored by: Cenzic
Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to
rise, 
you need to proactively protect your applications from hackers. Cenzic has
the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request@cenzic.com for details.
----------------------------------------------------------------------------
--
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to rise, 
you need to proactively protect your applications from hackers. Cenzic has the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request@cenzic.com for details.
------------------------------------------------------------------------------

• Next message: killy: "Re: Hidden Copying Software"
• Previous message: Nicolas RUFF: "Re: Hidden Copying Software"
• In reply to: Benny Herlambang: "Re: Hidden Copying Software"
• Next in thread: Maxim Kostyukov: "Re: Hidden Copying Software"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:23 EDT