Re: Re: Malware sharing? People are full of shit [was: Get your computer viruses here!]

[Nick FitzGerald <nick () virus-l demon co uk>]

Blue Boar to Drsolly to ??? (Gadi?):

> > > Then let us agree most Bad Guys won't bother with it as they have better
> > > surces?
> > I don't agree. What are these sources?
>
> I would like to further muddy things by pointing out that I would much 
> rather the bad guys go ahead and use public, known malware rather than 
> the alternatives.

But this site will not only provide the bad guys with samples (which 
they'd be stupid to use) but also, in some cases, the wherewithal to 
improve their own malware to make it more effectively evade antivirus, 
PFW, etc "protections" commonly installed on their intended victims' 
machines.

Making the samples (at least of viruses) freely available is entirely 
undesirable and ethically indefensiblt, but making the (detailed) 
analysis of _any_ "clever", "advanced" or otherwise "useful" malware 
technique publicly available, we have the supposed good guys openly 
assisting (especially) the less clueful bad guys.

That is a very bad thing and turns the purported "good guys", and 
especially those providing the mechanism of that assistance, into 
contributory bad guys _despite_ the best of their good intentions in 
setting up the system...

Without vetting the site's membership, Val is providing much more 
valuable assistance to the bad guys than the good guys will ever get.


Regards,

Nick FitzGerald

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.