Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Hooray for teamwork – the malvertizements at photobucket.com have been identified

May 8th 2008

Once again, communication and cooperation between anti-malvertizement activists around the world has resulted in success. We have found the malicious malvertizements on photobucket.com – Kimberley has the details. The incident has been reported to Photobucket.  The malvertizements themselves are not new.  Speedstick and TokyoDrift have been featured on this blog several times.  As noted by […]

Read On 1 Comment

ALERT: Firefox 2 Vietnamese Language Pack infected by malware

May 7th 2008

Thanks to Susan for the heads up… Cite:  http://blog.mozilla.com/security/2008/05/07/compromised-file-in-vietnamese-language-pack-for-firefox-2/ Cite:  https://bugzilla.mozilla.org/show_bug.cgi?id=432406 Anybody who downloaded and installed the Vietnamese language pack ***since 18 February*** will have got an infected copy.  Symptoms include the display of unwanted advertising. Mozilla notes that because only “16,667 total downloads of the Vietnamese language pack since November 2007” they consider that […]

Read On Comments Off on ALERT: Firefox 2 Vietnamese Language Pack infected by malware

Warning: malvertizements have been reported on photobucket.com

May 7th 2008

I received an email alert overnight warning that photobucket is displaying malvertizements. The problem we face in tracking down the reported malvertizements on photobucket.com is that the advertisements are country specific.  This blog has readers all over the world – if anybody has seen something, please grab proof using Fiddler and let me know.  

Read On Comments Off on Warning: malvertizements have been reported on photobucket.com

Me.dium has undergone a major rework…

May 7th 2008

We have gone from this…                     to this….                                          Or this… showing only online friends.          And we get a choice of backgrounds.  The last background, “70s Tux”, doesn’t seem to be working properly on my system. Me.dium have chosen to turn off “find similar pages” by default; instead, Me.dium will only show you the […]

Read On 1 Comment

ALERT: Akamai Download Manager Arbitrary Program Execution Vulnerability

May 6th 2008

Akamai supplies both an ActiveX and a Java based download manager. The ActiveX control remains installed on the users computer until it is manually removed.  It is important to note that Akamai has been used by vendors such as Symantec and Microsoft (eg: Technet and MSDN) for file distribution. Vulnerable versions: Akamai Technologies Inc’s DownloadManagerV2.ocx […]

Read On Comments Off on ALERT: Akamai Download Manager Arbitrary Program Execution Vulnerability

Important information about Windows XP SP3 for Internet Explorer users

May 6th 2008

You will be unable to remove IE8 Beta or IE7 after installing Windows XP SP3 because Microsoft wants to make sure that you do not encounter a problem commonly known as “DLL Hell“. IE8 Beta 1 users You will NOT be offered Windows XP SP3 unless and until you remove IE8 Beta 1.  This is because if you install  windows […]

Read On 7 Comments

Microsoft Security Intelligence Report – July to December 2007

May 5th 2008

I have been reading through the Microsoft Security Intelligence Report covering the period July through to December 2007 over the past few days.  Although the bulk of the report focuses on security vulnerabilities, there are statistics specific to “rogue security software” (aka fraudware) and “potentially unwanted software” that I found interesting: The most prevalent rogue […]

Read On Comments Off on Microsoft Security Intelligence Report – July to December 2007

I love it when spammers screw up…

May 5th 2008

As irritating as it may be to have to approve every comment to this blog, and as disheartening as it is to know that the cretins behind spam are using tools that maximize output whilst minimizing personal effort, I still derive pleasure from seeing them screw up. Spyware Sucks was hit by a spike in […]

Read On Comments Off on I love it when spammers screw up…

Problem – unable to change Internet Explorer’s home page

May 4th 2008

Another cry for help received via email… “You are my last best hope…  I am just a regular guy from NY (not the city) with a problem.  My homepage in IE7 is locked on a page I dont want.  I try to change it in Internet options and it even says the homepage I want […]

Read On 2 Comments

Problems with website certificates – IE7

May 4th 2008

Over the past few days I have seen a spike in the number of emails asking for help with website certificates.  For example, two correspondents have written: “Thanks for providing the information about problems with certificates of IE7 in your website.  I tried to follow your instructions to access a secured site in IE 7 […]

Read On Comments Off on Problems with website certificates – IE7


Archives