tag:blogger.com,1999:blog-25010298.post115370650756470884..comments2009-01-03T09:29:25.033-08:00hdmhttp://www.blogger.com/profile/02163635320992069812noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-25010298.post-1154343702422022212006-07-31T04:01:00.000-07:002006-07-31T04:01:00.000-07:00hey Mr Moore, some virus writers were theorizing some years ago on the possibility of exploiting browsers before they became more commonplace.<BR/><BR/>the initial idea was to create an IRC bot which would attempt to establish a conversation with 2 random people.<BR/><BR/>it would act as a proxy, monitoring the conversation throughout, for certain key words.<BR/><BR/>upon recognition of a keyword, the virus would "inject" a message to each user (appearing as though it came from one another) like "check out this site here http://virus_host/exploit.html for [keyword]"<BR/><BR/>then, because both users have a level of trust (assumed) between each other, they would both visit the system with malicious www server on it.<BR/><BR/>the server would then attempt to identify the type of operating system/browser used before sending the malicious html.<BR/><BR/>although this idea seems very elaborate, it may already be used, who knows?<BR/><BR/>the discussion on this IRC/Bot/WWW idea happened around July 2003.<BR/><BR/>keep up the good work as always!<BR/><BR/>Kevin<BR/><BR/>wyse101 [at] gmail [dot] comAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-25010298.post-1153835669584349842006-07-25T06:54:00.000-07:002006-07-25T06:54:00.000-07:00asalways intresting read.<BR/>and your maleware search engine is just awesome.<BR/>keep up the good work :)Hardik Shahhttp://www.blogger.com/profile/06887722951886712696noreply@blogger.com