Jump to content

User talk:Paulsumit999

Page contents not supported in other languages.
From Wikipedia, the free encyclopedia

Welcome

[edit]

Hello, Paulsumit999, and welcome to Wikipedia!

Thank you for your contributions to this free encyclopedia. If you decide that you need help, check out Getting Help below, ask at the help desk, or place {{Help me}} on your talk page and ask your question there. Please remember to sign your name on talk pages by clicking or or by typing four tildes (~~~~); this will automatically produce your username and the date. Also, please do your best to always fill in the edit summary field. Below are some useful links to facilitate your involvement. Happy editing! KylieTastic (talk) 23:45, 7 June 2016 (UTC)[reply]

Getting started
Finding your way around
Editing articles
Getting help
How you can help

Koob Hacker

[edit]

Koob Hacker is a network worm that attacks Microsoft Windows, Mac OS X, and Linux platforms.This worm originally targeted users of networking websites like Facebook, Skype, Yahoo Messenger, and email websites such as GMail, Yahoo Mail, and AOL Mail. It also targets other networking websites, such as MySpace, Twitter,[4] and it can infect other devices on the same local network.[5] This infection allows an attacker to access users' personal information such as banking information, passwords, or personal identity (IP address). It is considered a security risk and should be removed from the network.[6]


Infection

Koobface ultimately attempts, upon successful infection, to gather login information for FTP sites, Facebook, Skype, and other social media platforms, and any sensitive financial data as well.[10] It then uses compromised computers to build a peer-to-peer botnet. A compromised computer contacts other compromised computers to receive commands in a peer-to-peer fashion. The botnet is used to install additional pay-per-install malware on the compromised computer and hijack search queries to display advertisements. Its peer-to-peer topology is also used to show fake messages to other users for the purpose of expanding the botnet.[11] It was first detected in December 2008 and a more potent version appeared in March 2009.[12] A study by the Information Warfare Monitor, a joint collaboration from SecDev Group and the Citizen Lab in the Munk School of Global Affairs at the University of Toronto, has revealed that the operators of this scheme have generated over $2 million in revenue from June 2009 to June 2010.[10]

Koobface originally spread by delivering Facebook messages to people who are "friends" of a Facebook user whose computer had already been infected. Upon receipt, the message directs the recipients to a third-party website (or another Koobface infected PC), where they are prompted to download what is purported to be an update of the Adobe Flash player. If they download and execute the file, Koobface can infect their system. It can then commandeer the computer's search engine use and direct it to contaminated websites. There can also be links to the third-party website on the Facebook wall of the friend the message came from sometimes having comments like LOL or YOUTUBE. If the link is opened the trojan virus will infect the computer and the PC will become a Zombie or Host Computer.

Among the components downloaded by Koobface are a DNS filter program that blocks access to well known security websites and a proxy tool that enables the attackers to abuse the infected PC. At one time the Koobface gang also used Limbo, a password stealing program.

Several variants of the worm have been identified:

Worm:Win32/Koobface.gen!F[13] Net-Worm.Win32.Koobface.a, which attacks MySpace Net-Worm.Win32.Koobface.b, which attacks Facebook[14] WORM_KOOBFACE.DC, which attacks Twitter[15] W32/Koobfa-Gen, which attacks Facebook, MySpace, hi5, Bebo, Friendster, myYearbook, Tagged, Netlog, Badoo and fubar[16][17] W32.Koobface.D[18] OSX/Koobface.A, a Mac version which spreads via social networks such as Facebook, MySpace and Twitter.[19] In January 2012, the New York Times reported[20] that Facebook was planning to share information about the Koobface gang, and name those it believed were responsible. Investigations by German researcher Jan Droemer[21] and the University of Alabama at Birmingham's Center for Information Assurance and Joint Forensics Research[22] were said to have helped uncover the identities of those responsible.

Facebook finally revealed the names of the suspects behind the worm on January 17, 2012. They include Stanislav Avdeyko (leDed), Alexander Koltyshev (Floppy), Anton Korotchenko (KrotReal), Roman P. Koturbach (PoMuc), Svyatoslav E. Polichuck (PsViat and PsycoMan). They are based in St. Petersburg, Russia. The group is sometimes referred to as Ali Baba & 4 with Stanislav Avdeyko as the leader.[23] The investigation also connected Avdeyko with CoolWebSearch spyware.[21]

Hoax warnings The Koobface threat is also the subject of many hoax warnings designed to trick social networking users into spreading misinformation across the Internet. Various anti-scam websites such as Snopes.com and ThatsNonsense.com have recorded many instances where alarmist messages designed to fool and panic Facebook users have begun to circulate prolifically using the widely publicized Koobface threat as bait.[24][25] The "Barack Obama-Clinton Scandal" hoax which was popular in 2010 is an example.

Other misconceptions have spread regarding the Koobface threat, including the false assertion that accepting "hackers" as Facebook friends will infect a victim's computer with Koobface, or that Facebook applications are themselves Koobface threats. These claims are untrue. Other rumours assert that Koobface is much more dangerous than other examples of malware and has the ability to delete all of your computer files and "burn your hard disk." However, these rumours are inspired by earlier fake virus warning hoaxes and remain false.[24]

Your submission at Articles for creation: Koob Hacker (June 7)

[edit]
Your recent article submission to Articles for Creation has been reviewed! Unfortunately, it has not been accepted at this time. The reason left by KylieTastic was: Please check the submission for any additional comments left by the reviewer. You are encouraged to edit the submission to address the issues raised and resubmit when they have been resolved.
KylieTastic (talk) 23:45, 7 June 2016 (UTC)[reply]


Teahouse logo
Hello! Paulsumit999, I noticed your article was declined at Articles for Creation, and that can be disappointing. If you are wondering why your article submission was declined, please post a question at the Articles for creation help desk. If you have any other questions about your editing experience, we'd love to help you at the Teahouse, a friendly space on Wikipedia where experienced editors lend a hand to help new editors like yourself! See you there! KylieTastic (talk) 23:45, 7 June 2016 (UTC)[reply]

This is an automated message from CorenSearchBot. I have performed a search with the contents of Draft:Koob Hacker, and it appears to be very similar to another Wikipedia page: Koobface. It is possible that you have accidentally duplicated contents, or made an error while creating the page— you might want to look at the pages and see if that is the case. If you are intentionally trying to rename an article, please see Help:Moving a page for instructions on how to do this without copying and pasting. If you are trying to move or copy content from one article to a different one, please see Wikipedia:Copying within Wikipedia and be sure you have acknowledged the duplication of material in an edit summary to preserve attribution history.

It is possible that the bot was mistaken and found similarity where none actually exists. If that is the case, you can remove the tag from the article. CorenSearchBot (talk) 23:59, 7 June 2016 (UTC)[reply]

Your draft article, Draft:Koob Hacker

[edit]

Hello, Paulsumit999. It has been over six months since you last edited your Articles for Creation draft article submission, "Koob Hacker".

In accordance with our policy that Articles for Creation is not for the indefinite hosting of material deemed unsuitable for the encyclopedia mainspace, the draft has been nominated for deletion. If you plan on working on it further, or editing it to address the issues raised if it was declined, simply edit the submission and remove the {{db-afc}} or {{db-g13}} code.

If your submission has already been deleted by the time you get there, and you wish to retrieve it, you can request its undeletion by following the instructions at this link. An administrator will, in most cases, restore the submission so you can continue to work on it.

Thanks for your submission to Wikipedia, and happy editing. 1989 (talk) 17:07, 15 January 2017 (UTC)[reply]