i2 Security Blog

Keeping you upto date on the world of IT Security

i2 Security Blog - Keeping you upto date on the world of IT Security

Xbox Kinect Malware created by Indian Researchers

A 15year old Indian security researcher ‘Shantanu Gawde’ from MalCon Research has created a malware that utilizes the Microsoft xbox kinect controller.

The Indian researcher from MalCon created a malware that utlises Microsoft Kinect to secretly capture pictures and upload them to a picasa account.

In recent months, there have been a number of innovative Kinect hacks that make use of the Kinect, using both Open source drivers and the Kinect SDK.

The malware, code-named ‘gawde’ after its creators name, works on Windows 7 to secretly capture pictures of the victim / surroundings from a connected Kinect device and uploads them to a picasa account.

Rajshekhar Murthy, Director at ISAC, (Information Sharing and Anaysis Center), a scientific non-profit body that holds the International Malware Conference, MalCon said. “We believe that in coming years, a lot of windows based applications will be developed for Kinect and the device will gain further immense popularity and acceptance- and from a perspective of an attacker, such a popular device can be an exciting target for visual and audio intelligence. At MalCon research labs, we promote proactive security research and the malware utilizing Kinect is only a proof of concept. ”

The Kinect malware ‘gawde’ goes a step ahead and even uses voice recognition to execute a program based on keyword, without the knowledge of the victim. The malware proof of concept (PoC) will be demonstrated at the upcoming MalCon 2011 in Mumbai, India.

Windows 7 God Mode

Today I received an email detailing the “Windows7 God Mode”. OK, so its not quite God Mode but it gives you all the Administrator tools you could dream in one place, just by creating a new folder. Yes I know it sounds odd but carry on reading and try, you’ll be amazed. I just hope server administrators don’t let their users run as local administrators otherwise ALL of these tools will be available to them now, oops!!

 

Start by creating a New Folder on the Desktop (right click and choose New Folder)

 

 

 

 

Then rename the folder to “GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}” (no inverted commas)

 

 

 

 

 

 

 

 

Once this is created it automatically populates with a huge number of useful Windows administrative tools which are ready to use.

Now this is really useful for windows admins, however you should also make sure that your users cannot create this file. If they can create it they will still need to have admin rights to use most of the tools, however it’s best not to give them the chance.