RE: address sources for virus distribution?

["Thomas Ryan" <tommy () providesecurity com>]

IF you want more info on this you should look at the Berbew.B Trojan.
I researched that then reported to Trend Micro and Symantec......Extremely
interesting.

It dumps everything from IE to a logfile then tunnels it to an IRC server
I mean EVERYTHING, Usernames, Password, Sites, Form Info, AIMEncrypt
encryption passphrases.

securityresponse.symantec.com/avcenter/venc/data/backdoor.berbew.b.html

www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=BKDR_BERBEW.B


Interesting concept but poorly written in VB.

Regards,

Tom


I am well aware that virus writers have, for several years, been harvesting
e-mail addresses from the address books on infected computers for use in
further distributing their wares.  I am now told that they are also
harvesting addresses from browser caches and other sources on the infected
computers.

Is this true?

Where can I go for further reading?

Thanks,

Ken




---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------