Great Reviews!Need help setting up your website, installing Apache, PHP, MySQL, or RavenNuke(tm)?Need help customizing or designing scripts?Please contact us via the Contact Us option for further details and pricing.
Emails that claim to solicit humanitarian support for flood victims in the state
Websense(R) Security Labs(TM) has discovered emails that claim to solicit humanitarian support for flood victims in the state of Tabasco, Mexico. If users click an embedded link, they are prompted to download a banker Trojan horse, disguised as an HTML file. The file is displayed with the blue Internet Explorer icon. When a user opens the file, the Trojan horse modifies the hosts file to replace the legitimate Banamex with the IP address of a host controlled by the attacker.
If users attempt to go to the Banamex site, they receive no visual indicators that they are not at a legitimate site. The phishing toolbars that were tested did not detect this fake site as a fraud. Neither the downloaded banker Trojan horse nor the subsequent executable that it drops (win32.exe) are detected as malicious by the 32 anti-virus products tested.
Posted by Raven on Wednesday, November 21, 2007 @ 01:38:35 EST (1202 reads) (Read More... | 1338 bytes more | Score: 0)
New email attack variant similar to attacks previously launched on the IRS and B
Websense® Security Labs(TM) has discovered a new email attack variant similar to attacks previously launched on the IRS and Better Business Bureau. The spoofed email claims to be from the United States Department of Justice (USDOJ). We have been tracking these attacks and have previously reported on them here and here.
The message claims that a complaint to the USDOJ has been filed against the recipient's company. The email informs the reader that a copy of the original complaint has been attached to the email. The attached "complaint" is a Trojan Downloader .scr file with an MD5 of aeb784bc17c4c7e6edc5f1faaa9ed24f.
Posted by Raven on Wednesday, November 21, 2007 @ 01:35:22 EST (1737 reads) (Read More... | 1273 bytes more | Score: 0)
New malicious code that utilizes the YouTube brand to lure users into running th
Websense Security Labs ThreatSeeker has received reports of new malicious code that utilizes the YouTube brand to lure users into running the code.
The attack begins with an email lure written in html that invites users to view a video from YouTube. Upon connecting to the site, users are directed to a page that resembles the real YouTube site. The page then reports that the video cannot load and attempts to dupe users into downloading and installing a flash player.
In what could be a disturbing sign of things to come, the site is hosted on a server that has hosted more than one hundred Phishing sites over the last 4 months. This server is managed by the infamous "Rock Phish" group, which is the largest phishing gang on the Internet and which is responsible for the majority of Phishing URL's.
Posted by Raven on Wednesday, November 21, 2007 @ 01:30:32 EST (1138 reads) (Read More... | 1723 bytes more | Score: 0)
OPERATING SYSTEM: rPath Linux 1.x - http://secunia.com/product/10614/
DESCRIPTION: rPath has issued an update for php5. This fixes some vulnerabilities and weaknesses, where some have unknown impacts and others can be exploited to bypass certain security restrictions. This is related to: SA27648
Posted by Raven on Tuesday, November 20, 2007 @ 11:47:52 EST (1142 reads) (Read More... | 1301 bytes more | Score: 0)
Spam Stopper v 0.2
Spam Stopper v 0.2 by Guardian2003 - Please see the BugTraq file within the distro for bug fixes (Thanks to Evaders99)
1 Check incoming referer to see if your own site is listed on the referers site (a form of a back-link check )
2 Check incoming referer to see if the referer contains banned words (viagra, vwar etc)
3 Check incoming referer against several third party referer blacklists
4 Check incoming referer to see if it has an open relay (most spammers can be caught this way)
5 Facility to 'whitelist' domains at will
6 Facility to 'blacklist' domains at will
7 One-click facility to report spammers to the Code Authors spamlist database
8 Facility to report hacking attempts to the Code Authors database
9 Extensive color coded logs to enable admins to see 'at-a-glance' which referers are black/white listed
10 Facility to maintain your own list of 'bad words'
11 Facility to ban domains and also send that data to Nuke Sentinel (tm) blocked IP table to permanently block the domain.
Nuke-Cast Version: 1.9.p2 shows the shoutcast server status Current Listeners
Bitrate
Current song, 9 played songs
Total Listeners
Total hits to server
DJs Icq
DJs Aol IM handle
Average time spent listening
Genre for station
Peak users Stats"
Posted by Raven on Monday, November 19, 2007 @ 12:38:37 EST (830 reads) ( | Score: 0)
PMCCT PMC Customizable Theme
papamike writes "Today I released PMCCT after months of coding and testing. This is a stable release tested on IE and Firefox with excellent results.
PMCCT is a theme building utility written in PHP. If you have never been able to build your own theme then you can now.
The package comes with 2 sample themes I created during early and later stages of development and one to get you started called ReNameMe.
There is only one file to go to and make your configuration changes. Configuration.php holds all of the settings to change almost every aspect of a theme.
And this is only version 1.0. I have lots of supporting features for later releases. Some are theme add-ons, forum configuration, and more.
PMCCT comes with a indepth tutorial to help you along and you can also get support through my forums.
Go to to become a member and download PMCCT for free.
AS A FOOTNOTE: PMCCT was designed to run on RavenNuke (TM) 76 V2 Only.
Helping to support the Raven community!"
Posted by Raven on Saturday, November 17, 2007 @ 23:37:38 EST (782 reads) ( | Score: 0)
IP to Country Updates
The weekly updates have been posted. Get them from Diff Pack and Full Pack.
Read More for additional notes.
Posted by BobMarion on Friday, November 16, 2007 @ 02:04:50 EST (1173 reads) (Read More... | 1707 bytes more | Score: 0)
AOL Radio AmpX ActiveX Control Multiple Buffer Overflows
![[Valid RSS]](http://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
