Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Best Buy sold infected digital picture frames

January 23rd 2008

Source: http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9058638&source=rss_news50 Check out what Insignia had to say in their alert:http://www.insignia-products.com/news.aspx?showarticle=13 “It recently came to our attention that a limited number of Insignia 10.4” digital picture frames (model number NS-DPF-10A) were contaminated with  a computer virus during the manufacturing process. Once informed, we immediately pulled all units of this product from stores and retail web […]

Read On 1 Comment

Sun Java has issued an update that includes security fixes

January 23rd 2008

Source: http://blog.washingtonpost.com/securityfix/2008/01/massive_java_update_includes_s.html I think it’s worthwhile discussing a point that was raised in a comment made about the above article – specifically the comment made by the charmingly named “BelchSpeak”, wherein he said: “As a reminder, new versions of Java do not uninstall old ones automatically. This preserves some backwards compatibility issues with the software […]

Read On Comments Off on Sun Java has issued an update that includes security fixes

Windows Internet Explorer 7 to be distributed via WSUS February 12, 2008; May require administrator action to manage the rollout

January 22nd 2008

It is important to highlight the change highlighted in the Knowledgebase article below because of the brouhaha that occured when, if my memory serves me right, Windows Desktop Services (Windows Desktop Search) was released as an Update Rollup.  Because of a combination of circumstances (including a non-default approval setting), WDS was auto-approved on some networks, […]

Read On Comments Off on Windows Internet Explorer 7 to be distributed via WSUS February 12, 2008; May require administrator action to manage the rollout

Akamahi, newbieadguide and thetechnorati.com move on to new hosts

January 22nd 2008

It seems that FastServers may have finally acted because the malicious domains akamahi.net, newbieadguide.com and thetechnorati.com have moved on to new hosts. That being said, according to a search conducted just a few moments ago, vozemiliogaranon.com is still hosted by FastServers.akamahi.net  81.93.56.55 (Denit Internet Services, Amsterdam)newbieadguide.com 81.93.56.68  (Denit Internet Services, Amsterdam)thetechnorati.com 81.93.56.69 (Denit Internet Services, […]

Read On Comments Off on Akamahi, newbieadguide and thetechnorati.com move on to new hosts

FastServers – let’s try again

January 22nd 2008

As we know, FastServers are hosting several malicious domains and are therefore facilitating the distribution of fraudware via malicious banner advertisements.  To recap, the following domains, akamahi.net, newbieadguide.com, thetechnorati.com and vozemiliogaranon.com, all resolve to IP addressed owned by FastServers. I wrote to FastServers on 12 January 2007 providing comprehensive historical information about malicious behaviour associated […]

Read On Comments Off on FastServers – let’s try again

More stuff about TimeTrack Media

January 21st 2008

I have a copy of an email from TimeTrack Media here – you may recall that somebody wrote to me about TimeTrack a short while ago and said: “After being tricked by proximogroup.com, we received an email from TimeTrack Media overseas. The emails we received were a little weird, so I wanted to investigate a […]

Read On Comments Off on More stuff about TimeTrack Media

Malicious advertisement source – 4cetera.com

January 21st 2008

I received new intelligence overnight about a malicious advertising campaign (that has since been shut down).  I was advised that the content for the campaign in question was provided by 4cetera.com.  I haven’t received permission yet to link the incident with a particular website, so will simply tell you that it happened. So, who are 4cetera.com?  […]

Read On 5 Comments

Attorney General’s consumer protection bills to be heard in committee Monday and Tuesday

January 21st 2008

Four bills requested by Attorney General Rob McKenna to protect Washington consumers have bipartisan support and will be heard early this week by members of the state House of Representatives. “We’re asking for laws that would give prosecutors and victims new tools to fight identity theft, prevent homeowners facing foreclosure from falling prey to cons […]

Read On Comments Off on Attorney General’s consumer protection bills to be heard in committee Monday and Tuesday

Remember how I wrote to FastServers? They have not responded…

January 21st 2008

As a reminder, this blog entry:http://msmvps.com/blogs/spywaresucks/archive/2008/01/12/1458258.aspx FastServers continue to host the malicious domains as of a few minutes ago, so what are we going to do?  Blacklist FastServer’s IP range?  Complain to their upstream provider?  What do you think?  

Read On 5 Comments

Internet Explorer Knowledgebase articles

January 21st 2008

HOTFIX: The exception handler may not catch an exception in Internet Explorer 7 or in Internet Explorer 6 when you view a Web page that throws an exception from a function that is called through the expando property You develop a Web page that throws an exception from a function. The function is called through […]

Read On Comments Off on Internet Explorer Knowledgebase articles


Archives