[Full-disclosure] New Whitepaper "Software Misuse: from malicious actions to mind control"

From: Andrey Bayora (andrey_at_securityelf.org)
Date: 07/27/05

  • Next message: J.A. Terranson: "Re: [Full-disclosure] iDEFENSE/VeriSign - VCP Program Changes" 
    To: <full-disclosure@lists.grok.org.uk>
Date: Wed, 27 Jul 2005 02:19:44 +0300

    Hello list,
    I would like to introduce my new whitepaper "Software Misuse: from malicious
    actions to mind control". The ideas for this paper come more than 2 years
    ago. I wrote them down, and then when I saw new viruses using what I wrote
    and think about - I start delete implemented ideas from my notes, the rest -
    presented in this whitepaper. I believe that many of described issues
    "waiting" for release by virus writers, therefore I decided to publish this
    paper. In many cases due to very "sensitive" subject, I provide only the
    general concept without the proof.
    Any opinion or criticism highly appreciated, but remember - no security
    through obscurity.

    INTRODUCTION

    The goal of this whitepaper is to show how dangerous could be a software
    misuse, the problems of current malicious code defense systems and introduce
    a new theoretical threats - NeuroWorm, Subliminal Virus and other.
    One of the main ideas in this whitepaper is that antivirus software could
    have serious problems to stop software that "behave" abnormally.
    There are many new "names and definitions" in this whitepaper, if you like,
    you can use them. It was just a part of the "fun" to write this whitepaper
    and create some "crazy" names.

    Here is the partial list of presented issues:
    - ArchiVirus - malicious code in SFX archives.
    - Antivirus programs detection evasion with commercial anti-cracking
    software.
    - An ultimate file infection engine from Microsoft?
    - The Black Antivirus - antivirus program with signature definition file
    against security tools.
    - The Offline Metamorphic Engine - threats to generate unique malware for
    every user.
    - The NeuroWorm - using Artificial Intelligence in computer malware.
    - Subliminal Virus - how computer virus can control or influence the human
    mind.

    The whitepaper can be found at http://www.securityelf.org in the Whitepapers
    section.
    I know, it is not perfect, but I will improve.

    Regards,
    Andrey Bayora.

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://secunia.com/

  • Next message: J.A. Terranson: "Re: [Full-disclosure] iDEFENSE/VeriSign - VCP Program Changes"