Honeypot Emulates Searched Attacks

A new open-source honeypot project called Glastopf “dynamically emulates vulnerabilities attackers are looking for” and can auto-detect and allow unknown attacks. The project, designed by Lukas Rist, came out of the Google Summer of Code program. ISPs, web hosting companies and researchers can use Glastopf to collect data about attacks, particularly PHP botnets and other Web applications. Read the full article. [Dark Reading]

A new open-source honeypot project called Glastopf “dynamically emulates vulnerabilities attackers are looking for” and can auto-detect and allow unknown attacks. The project, designed by Lukas Rist, came out of the Google Summer of Code program. ISPs, web hosting companies and researchers can use Glastopf to collect data about attacks, particularly PHP botnets and other Web applications. Read the full article. [Dark Reading]

Suggested articles

My Opera Found To Host Malware

HED: MyOpera found to host malwareBAK: The My Opera free Web hosting service is hosting malicious code, just the latest prominent hosting service to be gamed by malware distributors. Less than a month after Google’s Code hosting service was found to be hosting and serving malicious executables, a search of Opera Software’s My Opera free hosting service has also turned up malicious programs, according to a researcher at Kaspersky Lab. My Opera, a free online hosting service for users of the Opera Web browser, played host to a PHP based IRC botnet, according to a post by Dmitry Bestuzhev, a researcher at Kaspersky Lab. The bot appears to have originated in Brazil, based on an analysis of the code, though its not clear who posted it to the My Opera  hosting service or when, Bestuzhev said. In August, Web security firm zScaler found a number of malicious programs hosted on servers used to power Google Code, a free, Web based platform that provides tools and resources for developers who want  to work on projects related to Google’s various open source software. The company claimed that regular anti malware scans of its servers failed to spot the malicious programs, which included a malicious downloader programs, Trojan horses, backdoor programs and password stealing key logging programs that target massively multi player online games like World of Warcraft. In a blog post, Bestuzhev said that free hosting services are popular among criminals who are looking to upload and disseminate malicious programs. (http://www.securelist.com/en/blog/2303/Google_Mozilla_and_now_Opera_Whos_next) Hosting domains like fileave, ripway, rapidshare and 110mb are common dumping grounds for malicious programs, he wrote. The My Opera free Web hosting service is hosting malicious code, just the latest prominent hosting service to be gamed by malware distributors.