MS unleashes legal attack dogs to lick up COFEE spill
Microsoft unleashed its legal attack dogs to remove its leaked forensics tool from a respected security site, it has emerged. Cryptome.org was issued with a take-down notice shortly after Microsoft's point-and-click "computer forensics for cops" tool leaked onto the web earlier this month. Redmond's lawyers acted over …
... is the stable door being securely bolted and barred whilst the horse disappears over the horizon!
...it gets posted in a country for which Microsoft does not possess the legal means to have it taken down?
As MS said, it's a package of already available tools - bundled und GUIed, so a person with very limited knowledge about computers can plug in a USB stick and gather data. ( As long as the box runs Windows, has USB ports and unencrypted disks, that is) I fail to see how this could be of any use outside the police.
Where can we get the correct checksums to make sure a bittorrent version of this isn't infected?
If the product is out there it will be downloaded.
It will also have trojan versions created by nefarious people.
If we had a known clean place to get it from, it would reduce the spread of any virus infection.
Or, since the package is made from existing tools out in the wild, how about a list of the tools?
Totally unimpressive.
http://torrentfreak.com/cofee-forensic-tool-leaks-to-what-cd-admins-ban-it-091108/#comment-614726
Just download the NT/XP Resource Kit and SysInternals (all free)
The thing is, with the programs made public (they may have known they could be used forensically), criminals can see which programs can be used to uncover their tracks and can then develop countermeasures against them.
"The thing is, with the programs made public (they may have known they could be used forensically), criminals can see which programs can be used to uncover their tracks and can then develop countermeasures against them."
From whats been said about it, it looks more like catching the people who don't know the basics rather than hackers. These types of people are first spotted by viewing their kiddy fiddling filth at work. Not the sharpest tools in the box.
Sign up, sign up for The Register's weekly IT security newsletter - click here
