Re: NSA Writes More Potent Malware Than Hackers

["Dude VanWinkle" <dudevanwinkle () gmail com>]

On 9/28/07, Paul Ferguson <fergdawg () netzero net> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Via The Register.
>
> [snip]
> Richard Dagnell, VP of sales and marketing at Iometrix, said the six month
> project also featured tests involving two worm samples developed by a
> convicted hacker. The potency of the malware supplied by the NSA far
> exceeded that created by the hacker.

interesting quote from Sophos

"You don't need to write viruses to test security technologies.
There's no shortage of new malware. Also you examine existing stuff
and study techniques," said Graham Cluley, senior technology
consultant at Sophos. (r)

One would think that the results would show that you DO need to write
malware based at fragging your own app, just as a precautionary step.
Maybe that explains why puremessage sucks so bad :-)

-JP
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.