Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

16th MVP Award received

October 8th 2014

I really didn’t think it would happen this year

Read On Comments Off

More information about the Doubleclick / Zedo malvertizing incidents

October 1st 2014

http://arstechnica.com/security/2014/09/advertising-firms-struggle-to-kill-malvertisements/ Take particular note of the fact that only every 3rd to 100th ad was bad, making it very hard to catch the bad guys in the act. Also, this wasn’t a matter of a failure of due diligence when choosing to allow onto network. According to the report, one of the online tools that Zedo provides […]

Read On Comments Off

Silk Road pirate caught by CAPTCHA

October 1st 2014

Gotta laugh at the irony: captured thanks to CAPTCHA. http://securitywatch.pcmag.com/security/327646-the-dread-pirate-roberts-s-fatal-mistake

Read On Comments Off

Nasty malvertizing via doubleclick

October 1st 2014

Yep, it’s happened again – details here: https://blog.malwarebytes.org/malvertising-2/2014/09/googles-doubleclick-ad-network-abused-once-again-in-malvertising-attacks/ The days where people could say “only visit reputable sites and you’ll be safe” are well and truly gone.

Read On Comments Off

Google hit by malvertizing

September 23rd 2014

Sad to read this; its been a little while since we’ve read about such a big outbreak: http://arstechnica.com/security/2014/09/google-stops-malicious-advertising-campaign-that-could-have-reached-millions/ So, what can you do to protect yourself between the time something like this hits, the ad networks or others identify it, and it gets shut down? Update **all** software on your computer and your operating system, […]

Read On Comments Off

web-sniffer.net is back again… temporarily?

September 1st 2014

Functionality *seems* to be back.  But, the site is still listed for sale, and WHOIS has changed. Registrant is now a “Leonard Quack” of “MenschDanke GmbH”, Berlin.  Previously the Registrant was a Mario Mueller of Lingo4you GbR, Machern. Hosting has changed too, from Sedoparking.com to Namespace4you.com Be warned, things could go south again.  The domain has […]

Read On Comments Off

It looks like web-sniffer.net is no more…

August 29th 2014

The domain is for sale, and it’s been taken over by sed0 parking.  If you go to the site you are automatically redirected to an advertising page.  To add insult to injury, using a USA IP address I was redirected to a fake java update page Google Search is reporting that the site is possibly […]

Read On Comments Off

Oh dear.

August 15th 2014

VNC without a password… and the script kiddies know all about it… Forbes report: http://www.forbes.com/sites/kashmirhill/2014/08/13/so-many-pwns/ The researchers: http://atenlabs.com/blog/scanning-the-whole-internet/ The pictures, with lots of script kiddy action: https://twitter.com/viss/media  

Read On Comments Off

Excellent news. Internet Explorer is going to start blocking out-of-date ActiveX controls starting August 12, 2014

August 8th 2014

“As part of our ongoing commitment to delivering a more secure browser, starting August 12th Internet Explorer will block out-of-date ActiveX controls. ActiveX controls are small apps that let Web sites provide content, like videos and games, and let you interact with content like toolbars. Unfortunately, because many ActiveX controls aren’t automatically updated, they can become outdated […]

Read On 1 Comment