Panda Security videos in Swedish

Daniel Nyström — Tue, 27 Dec 2011 12:28:34 +0000

Hello all

It’s been something like a year, or maybe two, since last time but now I’m back! I’m thinking of rebranding the blog and re-shaping it in its entirity.

For now, I’ll give you a sample of what I’m doing at work atm:

Daniel Nyström
This is me holding a seminar on the development of cloud security solutions, and what we at Panda Security mean by “cloud security”. In Swedish.

Panda Sweden people talking (again, in Swedish) about different types of threats that might face home-users today:

Thanks for this time, I’ll be back soon and probably with a bit of changes to this site!

//Daniel

Playing around with Gimmiv.A (MS08-067)

Daniel Nyström — Wed, 05 Nov 2008 01:13:00 +0000

Received some samples of the malware exploiting MS08-067 earlier today and decided to set up a little lab where I’m more or less manually installed the worm in a controlled environment.

Does not seem to be very advanced, but then again it’s just a dropper with worm functionality. The server that this sample tries to contact is down and therefore it cannot download the “stage 2″ software pack or send back any information. If it had been able to do so, the picture probably would have been different.

Recorded one of my attempts with Jing, but didn’t turn out too good. Jing ate a lot of CPU (and my testmachine is not made of muscles directly ) which made any quick movements very jumpy and in the video it looks like everything goes extremely fast in some sections. This behavior made it miss the fast, and failed, attempts to exploit another box in this subnet… argh..

Anyways, click here to see the video! And yeah, sorry about the Swedish OS…

A good technical analysis of the Gimmiv.A trojan/worm can be found on the ThreatExpert blog. More information from Microsoft and The Register.

ICMPECHO » video

Panda Security videos in Swedish

Playing around with Gimmiv.A (MS08-067)