Category Archives: Project

Project involve

Notice From Mercumaya – Gumblar Attacks

Safeguarding your website from Gumblar Attacks

Over the past few weeks, several websites hosted on our Linux Servers threw up virus alerts. Further investigation revealed that these alerts were triggered by an injection attack on packages hosted on our servers, commonly known as Gumblar Attacks. FTP logs of these infected packages indicated that machines of the customers who own those domains were compromised and had been used to upload malicious content to their respective Hosting Packages. A few pointers for your benefit:


What is a Gumblar Attack?

Gumblar appears to be a combination of exploit scripts and malware. The scripts are embedded in .html, .js and .php files using obfuscated Javascript. They load malware content from Third Party sites without the user’s knowledge, while also stealing FTP credentials from the victim’s computer, which then allows it to spread and infect additional sites. Therefore, when someone visits such an infected site they get infected; if they have FTP credentials for a website on their machine then those sites get infected too. This explains the exponential growth of the exploit in such a short space of time.

Gumblar is a computer virus that first appeared in 2009. It has been identified as one of the most malicious viruses in existence.[citation needed] It is characterized by re-directing user’s Google searches and is suspecting to come from Adobe Flash and PDF files. (Wikipedia)


What makes it different from other Malware exploits?
There are a number of aspects to this exploit that not just help it spread, but also make it difficult to remove. Firstly, it infects users browsing legitimate websites; if these users are webmasters then it infects their websites by using their FTP credentials to inject the script into their site. The obfuscated malicious code being dynamically generated, makes it difficult to detect and difficult to automatically remove. Not only does the script vary from site to site, it can also vary from page to page on that the one site.


CNET published an article for more detailed, check out the following news article.


What steps you should be taken?

  • It is a good practise to reset ypur FTP password change them often.

  • Regards,

    MERCUMAYA.NET A Division Of NETLYNX Solutions.

    Sabily

    What is Sabily ?
    Sabily is an operating system, like MS Windows or Mac OS X. Without an operating system, a computer is unusable, and Windows is not the only OS available! (though you often don’t have the choice, that’s why we are working hard to fix the bug number one)

    I already have Windows, why would I use Sabily ?
    Because Sabily is free, already includes all software you need in your everyday tasks, and is customized specifically for Muslims. And even if you didn’t buy Windows, you should not use pirated copies because then you are still supporting Microsoft by adding to the impression it’s the only OS available.

    It should be a tremendous work to develop an operating system?
    Actually we don’t start from scratch, we use the Ubuntu operating system as a groundwork. Ubuntu is a GNU/Linux distribution whose goal is to provide an easy-to-use, up-to-date, stable and free system, also for companies. Sabily customizes Ubuntu by removing, modifying and adding software, and also customizes the graphic design to make a system adapted to Muslims.

    Is there a company like Microsoft which develops Sabily?
    No there isn’t, just a communauty of voluntaries coming from all over the world (France, Tunisia, Egypt, Indonesia etc.). You can as well participate, as a developer, a graphic designer, a tester or if you just want to share your ideas.

    What are the main features of Sabily?
    The main software are: Zekr and Mus-haf Othman (Quran study tools), Minbar and Firefox-praytimes (prayer times applications), Monajat (application that popups prayers every predetermined time), Hijra (islamic calendar) and WebStrict (parental control tool). Arabic language is also well supported. And of course the graphic design is also customized (see screenshots).

    What other software are included in Sabily?
    OpenOffice (word processor, spreasheet, presentation), Firefox (web browser), Pidgin (instant messaging), F-spot (photos management), Gimp (image manipulation program) and other multimedia software (video/audio). All of this in included in the “small” version of Sabily, but the “full” version contains dozens of other software! (educational software, tools and entire Quran recitations, see the full list here)

    Sabily seems very interesting, what should I do to use it?
    You have to download the ISO file and to burn it on a DVD, then to start your computer from the DVD. You will have the choice to test or to install the system. In a first time we advise you to test it because it is safe for your computer, nothing will be written on your hard disk. You can even test Sabily directly from Windows, by using a Virtual Box image.

    source: http://www.sabily.org

    About Linux

    tux
    tux

    Linux is an operating system that was initially created as a hobby by a young student, Linus Torvalds, at the University of Helsinki in Finland. Linus had an interest in Minix, a small UNIX system, and decided to develop a system that exceeded the Minix standards. He began his work in 1991 when he released version 0.02 and worked steadily until 1994 when version 1.0 of the Linux Kernel was released. The kernel, at the heart of all Linux systems, is developed and released under the GNU General Public License and its source code is freely available to everyone. It is this kernel that forms the base around which a Linux operating system is developed. There are now literally hundreds of companies and organizations and an equal number of individuals that have released their own versions of operating systems based on the Linux kernel. More information on the kernel can be found at our sister site, LinuxHQ and at the official Linux Kernel Archives. The current full-featured version is 2.6 (released December 2003) and development continues.

    Apart from the fact that it’s freely distributed, Linux’s functionality, adaptability and robustness, has made it the main alternative for proprietary Unix and Microsoft operating systems. IBM, Hewlett-Packard and other giants of the computing world have embraced Linux and support its ongoing development. Well into its second decade of existence, Linux has been adopted worldwide primarily as a server platform. Its use as a home and office desktop operating system is also on the rise. The operating system can also be incorporated directly into microchips in a process called “embedding” and is increasingly being used this way in appliances and devices.

    Throughout most of the 1990’s, tech pundits, largely unaware of Linux’s potential, dismissed it as a computer hobbyist project, unsuitable for the general public’s computing needs. Through the efforts of developers of desktop management systems such as KDE and GNOME, office suite project OpenOffice.org and the Mozilla web browser project, to name only a few, there are now a wide range of applications that run on Linux and it can be used by anyone regardless of his/her knowledge of computers. Those curious to see the capabilities of Linux can download a live CD version called Knoppix . It comes with everything you might need to carry out day-to-day tasks on the computer and it needs no installation. It will run from a CD in a computer capable of booting from the CD drive. Those choosing to continue using Linux can find a variety of versions or “distributions” of Linux that are easy to install, configure and use. Information on these products is available in our distribution section and can be found by selecting the mainstream/general public category.

    Additional Information

    If you’re interested in learning about Linux, need help with some aspect of its use or are enthusiastic about it and want to help foster its adoption, you may want to get in touch with a Linux User Group in your area. There are groups in practically every country, region and city in the world, so there is likely to be one near you.

    Each day, Linux use is increasing in every sector of our society. We have information about Linux deployments in government, industry and the arts.

    Linux has an official mascot, Tux, the Linux penguin, which was selected by Linus Torvalds to represent the image he associates with the operating system. Tux was created by Larry Ewing and Larry has generously given it to the community to be freely used to promote Linux. More information on use of the image can be found on his webpage. More links to variations on the image and alternative logos can be found on our logo page

    Many people are not sure of the pronunciation of the word Linux. Although many variations of the word exist, often due to native language factors, it is normally pronounced with a short ” i ” and with the first syllable stressed, as in LIH-nucks. You can hear how Linux creator Linus Torvalds pronounces the word in Swedish and in English .

    source :  http://www.linux.org/info/

    Journey to Paka

    I just arrive in Paka for the 3P program in Politeknik Sultan Mizan Zainal Abidin (PSMZA). On the way to Rumbia Resort, I saw the Oil Plant, very beautiful in the night with the lighting and fire burning. I took few pictures but the quality not so good and planing to took the picture again next time coming back to Shah Alam

    3P At UMS Labuan

    I just went back from Universiti Malaysia Sabah (UMS) Labuan. Working with Prestariang System Sdn Bhd for the 3P project over there as Project Executive. Very nice view from my office and love the sea and lots of sea food over there. Almost a month stayed over there and have many new expriences.