Lost+Found: Shadow Copies, Screen savers, Twitter and Clouds
Too short for news, too good to lose; lost+found is a round up of useful security information. Today, Shadow Copies, Screen savers, Twitter and Clouds.
- The automatic Volume Shadow Copy (VCS) service under Windows 7 and Vista can possibly circumvent a users privacy when a document is deleted, even if the original file has already been overwritten by other data, as the files can easily be restored. However, this problem can be solved with only a few steps.
- The installation of a screen saver offered on Gnome-Look.org apparently installs a script that lead to a Denial of Service (DoS) attack against the MMOwned web site.
- Botnet operators continue to use the Twitter API to generate domains of new attack sites and trigger “drive-by” downloads. Because of this, even with knowledge of the algorithms, it has become more difficult to forecast domain names in the long run.
- After using Google's Cloud Services, virus authors are now moving to and using Amazon's EC2 for their command and control (C&C) servers, used to direct bots, such as a Zues bot (Zbot). These cloud-based services are effective in covering their tracks.