Cyberpunk Review » Hackers get hacked, or Turnabout is fair play

April 15, 2008

Hackers get hacked, or Turnabout is fair play

Joel Eriksson hacks hackers @ RSA Conference

Joel Ericksson at the RSA Conference, where he shows how he hacks the hackers. Black-hats are getting nervous.

Tit for tat. Wired’s Ryan Singel reports from the RSA Security Conference in San-Fran and gives us a dose of hope for all those whose systems have been nailed by malware:

Eriksson, a researcher at the Swedish (Norwegian?) security firm Bitsec, uses reverse-engineering tools to find remotely exploitable security holes in hacking software. In particular, he targets the client-side applications intruders use to control Trojan horses from afar, finding vulnerabilities that would let him upload his own rogue software to intruders’ machines.

He demoed the technique publicly for the first time at the RSA conference Friday.

“Most malware authors are not the most careful programmers,” Eriksson said. “They may be good, but they are not the most careful about security.”

In other words, he uses hacker tactics to hack and pwn hacker’s systems. Confused yet?

 

How he RAT-ed the rat: Ericksson used a software package called a remote administration tool, or RAT, along with some standard hacking utilities to do his counterstrike:

Eriksson first attempted the technique in 2006 with Bifrost 1.1, a piece of free hackware released publicly in 2005. Like many so-called remote administration tools, or RATs, the package includes a server component that turns a compromised machine into a marionette, and a convenient GUI client that the hacker runs on his own computer to pull the hacked PC’s strings.

Using traditional software attack tools, Eriksson first figured out how to make the GUI software crash by sending it random commands, and then found a heap overflow bug that allowed him to install his own software on the hacker’s machine.


Eriksson believes his techniques can even be used to fubar botnets as well. “If there is a vulnerability, it is still game over for the hacker,” Eriksson said (in the Wired report).

The hacker wars are just warming up…

Comments

April 15, 2008

Com Wedge said:

Skynet in a shell :P

jmalmsten said:

if it’s the same ericsson that makes the telephone systems and mobile phones… then they are Swedish and it’s called “Ericsson”…

Nice to see the hunter becoming the hunted for a change… ;)

Niklas said:

Eriksson is the programmer, not the company. Bitsec is a swedish consulting firm.

http://www.bitsec.com/

Urshanabi said:

Awesome. Sociopathic hackers are on the same level as telemarketers in my book.

April 20, 2008

MAK said:

Awesome, and interesting… I’m on the hackers side…

May 20, 2008

Mehran said:

plz plz give me some commands of hacking r sides

May 25, 2008

Anonymous said:

tyliloilt

August 21, 2008

the tiger said:

hacking ic cool hehehehhe


~All Related Entries Related This~

 

All News as Cyberpunk

<<--Back to top

Made with WordPress and the Semiologic CMS | Design by Mesoconcepts