Skip to main content

Trojan Tuesday


Trojan-Tuesday we will be discussing about one malware in particular i.e. "TROJAN HORSE". Actually there is a story behind how this malware got its name. The incident took place way back in the history when the Greeks were trying to invade the city of Troy.

The people living in the city of Troy were known as Trojans. During the war between the Greeks and the Trojans, Greeks surrendered and gave a huge wooden horse as a memento to the Trojans. The Greeks sailed back and the Trojans took the wooden horse into their city as a symbol of victory. The master plan behind the wooden horse was that the Greeks filled the wooden horse with few number of their soldiers before the Trojans took it into their city. Now when the dawn came the soldiers creped out of the wooden horse and secured the path for rest of the troop to get inside the city to launch the attack. Eventually Greeks invaded the city of Troy.

Now in cyber security Trojan horse works in a similar way .It is coded in such a way it attracts the user and compels the user to execute it in the system. Once the Trojan horse gets executed, first thing it does is that it creates a backdoor through which that attacker can get a remote access to the host system. The purpose of a Trojan horse are Data destruction, Data theft, to the a particular resource as well as identity, Passive spying, Stealing of money.

Below mentioned are examples of Trojan horse:-

  • Ø FinFisher – used by Lench IT solutions / Gamma International
  • Ø DaVinci / Galileo RCS – used by HT S.r.l. (hacking team)
  • Ø 0zapftis / r2d2 StaatsTrojaner – used by DigiTask
  • Ø TAO QUANTUM/FOXACID – used by NSA
  • Ø Magic Lantern – used by FBI
  • Ø WARRIOR PRIDE – used by GCHQ.

To show support for LogOut Gujarat’s 1st Cyber Awareness Conference Visit http://comexpocybersecurity.com/support to show your support for privacy and security by changing your Facebook Profile picture. #logout #staysafe #stayprotected

Comments

Popular posts from this blog

Here Are 7 Brilliant Cheat Sheets For Linux/Unix

There's nothing better than a cheatsheet when you are stuck and need a reference. So here bringing to you 7 brilliant free cheat sheets. 




1. Unix Tool Box: An incredibly exhaustive reference for all things Linux. This document is a collection of Unix/Linux/BSD commands and tasks which are useful for IT work or for advanced users.

2. One page Linux Manual: Great one page reference to the most popular Linux commands, it is a summary of useful Linux commands.

3. Linux Reference Card: One great reference published by FOSSwire.

4. Linux Command Line Cheat Sheet: This is an interestingly sorted and helpful cheat sheet by cheatography.

5. Linux Command Line Tips: This is a linux command line reference for common operations. Cleanly sorted and well described.

6. Treebeard’s Unix Cheat Sheet: A great reference that shows command comparisons with that of DOS. So if you are someone who was a DOS user and has switched to Linux, this is the best one too have!

7. Linux Shortcuts and Commands:…

Ten Important Rules Of Ethical Hacking

The world of ethical hacking too is bound by a set of rules and principles, here are 10 crucial ones!

Time and again we have been bringing you valuable resources on ethical hacking since we know and understand the nature of things as far as security goes. Ethical hacking is picking up steam each day with more and more organisations spending heftily to maintain the sanctity of their systems and data. As such, ethical hacking is a glorious career option in the current scheme of things.



1.Set your goals straight

To begin with, an ethical hacker must start thinking like the intruder. He must be able to identify the loopholes on the target access points or networks that are prone to attack, he must be aware of the repercussions of these loopholes and how the intruder can use it against the same. An ethical hacker then has to find out if anyone at the target notice the intruder's attempts to carry out his/her acts. Finding out and eliminating unauthorised wireless access points is always t…

Extracting Administrator Passwords Using LCP

Extracting Administrator Passwords Using LCP
Link Control Protocol (LCP) is part of the Point-to-Point (PPP) protocol In PPP communications, both the sending and receiving devices send out LCP packets to determine specific information required for data transmission.
■ Use an LCP tool ■ Crack administrator passwords
Tools Needed
■ A computer running Windows Server 2012 ■ A web browser with an Internet connection ■ Administrative privileges to run tools
■ You can also download the latest version of LCP from the link http: / www.lcpsoft.com/engl1sh/1ndex.htm
■ If you decide to download the latest version, then screenshots shown     might differ ■ Follow the wizard driven installation instructions ■ Run this tool in Windows Server 2012 ■ Administrative privileges to run tools ■ TCP/IP settings correctly configured and an accessible DNS server
Overview of LCP
LCP program mainly audits user account passwords and recovers them in Windows 2008 and 2003. General features of this protocol are password recovery, bru…