Microsoft unleashed its legal attack dogs to remove its leaked forensics tool from a respected security site, it has emerged. Cryptome.org was issued with a take-down notice shortly after Microsoft's point-and-click "computer forensics for cops" tool leaked onto the web earlier this month. Redmond's lawyers acted over …
The sound you hear...
... is the stable door being securely bolted and barred whilst the horse disappears over the horizon!
But what happens when...
...it gets posted in a country for which Microsoft does not possess the legal means to have it taken down?
As MS said, it's a package of already available tools - bundled und GUIed, so a person with very limited knowledge about computers can plug in a USB stick and gather data. ( As long as the box runs Windows, has USB ports and unencrypted disks, that is) I fail to see how this could be of any use outside the police.
Where can we get the correct checksums to make sure a bittorrent version of this isn't infected?
Surely they are aiding in the spred of viruses
If the product is out there it will be downloaded.
It will also have trojan versions created by nefarious people.
If we had a known clean place to get it from, it would reduce the spread of any virus infection.
Or, since the package is made from existing tools out in the wild, how about a list of the tools?
Just download the NT/XP Resource Kit and SysInternals (all free)
re: correct checksums
From Microsoft, silly.
The thing is, with the programs made public (they may have known they could be used forensically), criminals can see which programs can be used to uncover their tracks and can then develop countermeasures against them.
"The thing is, with the programs made public (they may have known they could be used forensically), criminals can see which programs can be used to uncover their tracks and can then develop countermeasures against them."
From whats been said about it, it looks more like catching the people who don't know the basics rather than hackers. These types of people are first spotted by viewing their kiddy fiddling filth at work. Not the sharpest tools in the box.
- iPad? More like iFAD: Now we know why Apple ran off to IBM
- +Analysis Microsoft: We're building ONE TRUE WINDOWS to rule us all
- Climate: 'An excuse for tax hikes', scientists 'don't know what they're talking about'
- Analysis Nadella: Apps must run on ALL WINDOWS – on PCs, slabs and mobes
- Major problems beset UK ISP filth filters: But it's OK, nobody uses them