Da wir  in Deutschland an der Quelle des damaligen Übels saßen, haben wir uns gedacht euch ein älteres Projekt von uns zugänglich zu machen. Um erst einmal zu verstehen was die Enigma eigentlich ist und wofür sie benutzt wurde im 2. Weltkrieg solltet ihr folgende Informationen wissen. Die ENIGMA ist eine Rotor basierte Schlüsselmaschine, die [...]

This year was the same like other year at the event. But after being spammed 9 emails within one minute by CCC SIGINT, we decided that we should at least show our faces at the event. The subject from the emails where Call for Paper for the SIGINT2010 event. But because we sadly enough we [...]

In the last week we focused us on illegal hosting companies who are mainly located at Russia. After a short while we got lucky and intercepted a rater interesting email from one of those hosting providers. In this email the company is advertising to find new clients. Instead of normally advertising the good products the [...]

This morning a nice mail arrived in our mailbox from some russian and german hackers. Who are working  with a barracuda botnet atm.  These criminals use thousand of computers for fraud & payment crimes around Europe, USA,Lettland & Poland. The writer of the email told the people from the mailing list to hold all information [...]

Time to release some very active russian ip for analysts around the planet. The following servers are hosting till now spam-scripts, card fraud material, a recruit board, webshells & different log entries from were exactly the russian attackers coming from.  After my views around the material & maps … time has come to make all [...]

We are back from work on a new public security project, what have his start-up next month. In the last days i checked out a new FTP client what is very often used in the FXP/Admin Scene. FTPRush is prone to a Stack based Buffer Overflow Vulnerability. A local or remote attacker is able to overwrite [...]

Eines vorab … der Event war super. Alles hat angefangen mit einer total verhackten Woche über die ich hinweg vergessen habe das die 26c3 am Ende ansteht. Als ich Nachmittags fast schon gegen Abend, die Nachricht bekomme von “Beni CCC Gießen” das es morgen zum CCC nach Berlin geht wurde mir klar “OHOH Hotel buchen [...]

This week I audited the new Mozilla PRISM what is usually called as a secure browser engine & used by a lot of software(Zimbra|Desktop). Prism is an application that lets users split web applications out of their browser and run them directly on their desktop in a secure mode. Mozilla Developers have produced 1 application [...]

GESEC Team(~smash & ~rem0ve) discover a SQL Injection Vulnerability on Pandora FMS Monitoring. Attackers can manipulate the application DBMS over a remote sql-injection vulnerability.