Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

EOLAS patent – settled

August 31st 2007

I’m not sure how I feel about this; the fall out from the now infamous EOLAS patent dispute has had a fundamental effect on how we interact with the Web when using Internet Explorer, and I have never felt that the change was for the better.  Heck, I never supported the patent in the first […]

Read On Comments Off

Yay! Anti-Spyware Vendor protected by 47 USC 230(c)(2) – Zango v Kaspersky

August 30th 2007

“The court says, clearly and unambiguously, that anti-spyware vendors’ labeling judgments are completely protected by 47 USC 230(c)(2), a statute designed to protect online filtering judgments. In support of this conclusion, the court says that: 1) Kaspersky qualifies as an interactive computer service provider (specifically, as an access software provider)2) The labeled software does not […]

Read On Comments Off

Calling all Geekgirls

August 30th 2007

Bronwyn has put out a call for members to join geekgirlsblog; I suppose I’d better put my name in the hat [;)] I haven’t met Bronwyn – our respective home towns are many thousands of miles apart, and I don’t get to travel much nowadays – but those I know who have met her have […]

Read On 1 Comment

Fiddlercap – designed to help the non-expert gather HTTP logs (great for helping to track down malware-adverts)

August 30th 2007

One of the biggest problems I face when tracking down malicious banner advertisements is gathering proof sufficient to convince a web site and/or advertising network that they have a problem.  Sometimes I am unable to reproduce a reported hijack by a banner advertisement despite my best efforts.  When my correspondent is inexperienced they can struggle […]

Read On 4 Comments

Spam slam

August 30th 2007

Ok, so the neanderthals behind the Storm spam (whose grammatical skills leave a lot to be desired) have given up, for now, on the idea of playing to the guilty conscience and voyeurism.  Now they’re trying to lure people in with music videos. Subject: dude this is not even on MTV yetSubject: Cool Video is outSubject: […]

Read On 1 Comment

HOTFIX: When you use IE7 to browse a Web page, the state of the "Edit with <HTML editor>" command on the File menu may be inconsistent with the state of the "Edit with <HTML editor>" command on the Page menu

August 30th 2007

You use Windows Internet Explorer 7 to browse a Web page, and you examine the state of the Edit with <HTML editor> command on the File menu. However, you notice that the state of this command is inconsistent with the state of the Edit with <HTML editor> command on the Page menu. For example, the […]

Read On Comments Off

Winfixer at seo.mhvt.net

August 29th 2007

All URLS broken for safety reasons: The bad advertisement is hxxp://b1.adbrite.com/iads/35249.swf (an advertisement for monstermarketplace.com).  Please read this article if you cannot reproduce the hijack. Note: there may be more hijacking adverts – this is just the one I found today.  The owner of the blog knows about this information and will be able to […]

Read On Comments Off

MSN Messenger Web Camera Stream Vulnerability

August 28th 2007

MSN Messenger and Windows Live Messenger contain a heap overflow in the handling of malformed webcam streams. By convincing a user to accept a webcam invitation, a remote attacker may be able to execute arbitrary code with the privileges of the user on an affected system. US-CERT is aware of publicly available exploit code for […]

Read On Comments Off

FIX: Windows Mail – email stuck in outbox

August 28th 2007

Two updates have been released, one for Vista and one for Vista x64 – both require validation. This update apparently resolves an issue where messages become stuck in the Outbox and cannot be deleted when using Windows Mail. After you install this update, you may have to restart your computer. Vistahttp://www.microsoft.com/downloads/details.aspx?FamilyID=09f002d9-a140-42a8-99f5-a86f2b7e39f1&DisplayLang=en Vista x64http://www.microsoft.com/downloads/details.aspx?FamilyID=09dabf39-1e37-46dd-91bc-be5abe3f39b7&DisplayLang=en

Read On 10 Comments

What the???

August 27th 2007

The feeds are not password protected!!!

Read On 1 Comment