Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

SPAM: “official-reader-upgrade.com”

December 20th 2011

It’s not legit people: Click on the link you end up here: But click on “Download Now” and look where you end up… And, of course, it’s not free… Interestingly, the McAfee logo is not clickable

Read On Comments Off

We get it–you won :-D

December 19th 2011
Read On Comments Off

More on the Telstra stuff up…

December 9th 2011

Word is emails are flowing again, which is good… as for the rest of this sorry tale.. More information is flowing in about what was exposed: http://www.watoday.com.au/it-pro/security-it/telstra-customer-database-exposed-20111209-1on60.html?comments=34#comments “detailed information outlining the customer’s account number, what broadband plan they’re on, what other Telstra services they’re signed up to and notes associated with the customers’ accounts including […]

Read On Comments Off

Scammer paradise….

December 9th 2011

Oh great…   Imagine this. Some scammer spots the above tweet and thinks, “cool, let’s do some cold calls”… “Hi Mr Telstra customer, we’re calling from Telstra about our screwup last week .. you saw our tweet on our official Twitter account saying we’d call everybody? Cool…” … and so the scam conversation goes on… […]

Read On Comments Off

Telstra exposes customer user names and passwords to the world

December 9th 2011

Unbelievable, isn’t it: http://www.theage.com.au/it-pro/it-news/telstra-probes-privacy-breach-amid-network-outage-20111210-1ooez.html Email, online billing, BigPond self-care and “My Account” have been down since Friday evening, and Twitter has been in meltdown.  Note: it seems that only *incoming* email is affected now – reports indicate that outgoing email is working just fine at time of writing (2:54 EST) A horrid situation, to be […]

Read On Comments Off

Malvertizing activity

December 6th 2011

There has been a lot going on in the malvertizing world lately, with a spike in the number of reports coming in about malvertizing incidents that are occurring because the Ad Server in question is running an old and exploitable version of OpenX – people, we need to be running version 2.8.8. The bad guys […]

Read On 1 Comment

International Checkout (URL: internationalcheckout.com) hacked

December 6th 2011

A friend received the email below the other day.  Note that not only do International Checkout advise that “an intruder accessed and potentially compromised [their] system”, but the intruder / intruders also “gained access to part of [their] system that contained credit card numbers of customers” AND the intruder / intruders were able to “access […]

Read On Comments Off