Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"
Syndication feeds available

Malvertizing at news.com.au

March 28th 2015 in Malvertizing

I just saw the following when visiting the news.com.au website using a Windows 8.1 phone and an Australian IP. news.com.au is a very popular website in Australia, but I’m not set up at the moment for mobile site analysis, so feel free to take a look-see and report… It may be that the full site is affected […]

Read On No Comments

Not a good look there, Optus

March 27th 2015

Enforceable Undertaking offer by Optus to the Office of the Australian Information Commissioner: http://www.oaic.gov.au/privacy/applying-privacy-law/enforceable-undertakings/singtel-optus-enforceable-undertaking What did Optus do wrong?… In February 2013, Optus made a change to its website. Due to a coding error that occurred during this change, between February 2013 and April 2014, when Optus customers who had elected not to have their […]

Read On No Comments

Fix for XP Microsoft Update site error code 0x80248015

March 11th 2015

Yes, I know, Microsoft stopped supporting Windows XP a long time ago. However, users of XP should still go to *Microsoft Update* to check for updates to other Microsoft software on their computer. Anyway, I saw this error in a couple of XP virtual machines today. The fix is to change your computer’s clock to a […]

Read On No Comments

If you say so…

December 30th 2014
Read On Comments Off

For those of you in Australia, welcome ACORN

December 12th 2014

The Australian Cybercrime Online Reporting Network: “The Australian Cybercrime Online Reporting Network (ACORN) is a national policing initiative of the Commonwealth, State and Territory governments. It is a national online system that will allow the public to securely report instances of cybercrime. It will also provide advice to help people recognise and avoid common types of […]

Read On Comments Off

Hold off installing MS14-066 / KB 2992611

November 16th 2014

Word is it is breaking stuff, including the ability to access using secure sites using Chrome. Possible fixes if you’re already affected: Open gpedit.msc Go to computer configuration > administrative templates > Network > SSL Configuration Settings > SSL Cipher Suite Order Set it to enabled Reboot The policy populates the Windows registry with the […]

Read On Comments Off

Ah, Toshiba, you disappoint me

November 5th 2014

I haven’t had my Qosmio laptop for that long, I am sure, but now that I need to replace the laptop battery, do you think there is a non-faulty **genuine Toshiba** battery available for purchase? Well, no. I did get a new battery costing $176 only to have it die within 48 hours of starting to […]

Read On Comments Off

Malvertizing is still around…

October 28th 2014

Incident reported on 22 October 2014.  Cite: http://www.proofpoint.com/threatinsight/posts/malware-in-ad-networks-infects-visitors-and-jeopardizes-brands.php “Without having to click on anything, visitors to the impacted websites may be stealthily infected with the CryptoWall 2.0 ransomware. Using Adobe Flash, the malvertisements silently “pull in” malicious exploits from the FlashPack Exploit Kit. The exploits attack a vulnerability in the end-users’ browser and install CryptoWall 2.0 […]

Read On Comments Off

Do you use Chrome? And have a Google account? And use 2 Factor Authentication? You may want a “security key”

October 28th 2014

https://support.google.com/accounts/answer/6103523 “If you use 2-Step Verification, you can choose Security Key as your primary method, instead of having verification codes sent to your phone. With Security Key, there’s no looking at codes and re-typing―you simply insert your Security Key into your computer’s USB port when asked.” Yes, you have to make sure you don’t lose […]

Read On Comments Off