According to the MessageLabs Intelligence 2008 Security Report, during 2008 botnets were responsible for 90 percent of all spam, and responsible for a rise in the proportion of email-borne malware contained in links to malicious websites. This proportion peaked at 61.1 percent in February, when an increase of malicious activity from Storm was responsible for 96 percent of these interceptions.

Before its demise, one of Storm’s last activities involved a new bout of malware that appeared in July 2008 using headlines involving celebrities meeting their death and contained links to sites that when activated resulted in the installation of Antivirus XP 2008, a rogue anti-spyware program which could be installed without the user’s involvement. The program runs a fake scan on the computer offering to remove the number of infections found for a fee.

Read more: Here

I decided to create this pack today when i was looking my personal files. Here you can find working bugs and exploits for PHP Nuke 8 and other versions.

Download: Here

Password: d4rk

Microsoft is adopting technology from EMC’s RSA security division for Windows to police data and prevent loss and theft of information.

The companies announced Thursday Microsoft will license RSA’s data loss prevention (DLP) engine for future versions of Exchange Server, SharePoint Server, and “similar” products.

Microsoft would not be drawn on whether the DLP engine will be built into Office or the forthcoming Windows 7. Office would be logical move given it features the Outlook client used by Exchange and is where potentially sensitive documents can be created in Word, Excel, and PowerPoint.

…..Click here to read more

This is easy LAN messaging software for effective intraoffice communication. It does not require a server and is very easy to install and use.

Softros LAN Messenger offers strong encryption options for all incoming and outgoing messages, guaranteeing no unauthorized person ever reads personal correspondence.

Download: Here

Windows File Protection (WFP) prevents programs from replacing critical Windows system files. However attackers can still find ways to infect or corrupt files and harm your system. WFP Tools allows the replacement of the infected/corrupted file with the original clean file you had when Windows was first installed thus avoiding reformatting your computer.

Download: Here

SQLyog provides you with powerful means to manage your MySQL databases.

Features

• All features and benefits of SQLyog Community Edition
• Unlimited “ticket-based” support directly from SQLyog developers
• Includes non-GPL extensions - “Power Tools” featuring:
• Powerful Migration Toolkit
• Smart Autocomplete
• Manage hosted MySQL over SSH, HTTP, HTTPS tunnels
• Scheduled Data Synchronization
• Side by side visual Schema Synchronization
• Wizard Driven Scheduled Backups
• Notification Services

Download: Here

The IDA Pro Disassembler and Debugger is an interactive, programmable, extendible, multi-processor disassembler hosted on Windows or on Linux. IDA Pro has become the de-facto standard for the analysis of hostile code, vulnerability research and COTS validation. See this executive overview for a summary of its features and uses.

Features
The freeware version has the following limitations

• no commercial use allowed
• lacks all features introduced in IDA Pro 5.x (5.0, 5.1, 5.2)
• lacks support for many processors, file format, debugging etc..

Download: Here

SSA (Security System Analyzer) is free non-intrusive OVAL-Compatible software. It provides security testers, auditors with an advanced overview of the security policy level applied.

Features

• OVAL-compatible product
• SCAP (Security Content Automation Protocol)
• Perform a deep inventory audit on installed softwares and applications
• Scan and map vulnerabilities using non-intrusive techniques based on schemas
• Detect and identify missed patches and hotfixes
• Define a patch management deployment strategy using CVSS scores

Download: Here

Virus writers have latched onto the popularity of Firefox with a new variant on the established practice of stealing online banking passwords.

A password pinching Trojan that poses as a Firefox Plugin is doing the rounds, Romanian security firm BitDefender warns. ChromeInject-A is typically downloaded onto Windows PCs already compromised by other strains of malware.

Once installed, the Trojan sits in Firefox’s Plugin folder, activating every time the popular browser is started. The backdoor code looks for data exchanged between a compromised machine and a list of pre-programmed banking sites in Europe, Australia and the US.

…..Click here to read more

All tools you need for PHPBB

Download: Here

Password: d4rk