Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

ALERT: Please treat all content from plexusmedia-adv.com and plexusmedia.net with extreme caution

March 30th 2010

As always, all domains listed here (except for plexusmedia.co.uk) should be treated with extreme caution.   Sources report that suspicious content using the domain plexusmedia-adv.com has been discovered.  This domain redirects to plexusmedia.net.  Both domains should not be confused with the legitimate plexusmedia.co.uk. What is interesting is that plexusmedia-adv.com AND plexusmedia.net are BOTH new domains.  […]

Read On 3 Comments

These people are not the real MediaPlex

March 30th 2010

ww1-mediaplex.com ICANN Registrar: BIZCN.COM Created 3 March 2010 IP: 188.72.252.150 – Netdirekt E.k Shares IP with excladri.com, lianeu.com and turn-srv.com Registrant: Amber Clevenger, DNS, admin@ww1-mediaplex.com ***** excladri.com ICANN Registrar: BIZCN.COM Created 3 March 2010 Registrant: Amber Clevenger, DNS, admin@excladri.com ***** lianeu.com ICANN Registrar: BIZCN.COM Created 24 February 2010 Registrant: Claudia Rubio, admin@lianeu.com ***** turn-srv.com ICANN […]

Read On Comments Off on These people are not the real MediaPlex

ALERT: Please treat content from coneincorporated.com with extreme caution

March 26th 2010

  My sources tell me that at least two major online sites have been approached by coneincorporated.com in recent days, and that coneincorporated.com have been caught using the same spoofing sub-domain trick that I wrote about earlier. coneincorporated.com should NOT be confused with the legitimate coneinc.com. One domain being used by coneincorporated.com is altfarm.mediaplex.com.knucers.com.  knucers.com […]

Read On Comments Off on ALERT: Please treat content from coneincorporated.com with extreme caution

ALERT: Please treat content from STERERLE.com and FORLIFEMEDIA.COM with extreme caution

March 25th 2010

  A report has come in about a malvertizing incident involving stererle.com, being distributed by forlifemedia.com stererle.com ICANN Registrar: BIZCN.COM Created 17 February 2010 IP: 89.248.173.61 – Ecatel, Stockholm Shares IP with anastem.com and azoleta.com Registrant: Brian Punch (domains@stererle.com) forlifemedia.com ICANN Registrar: BIZCN.COM Created 1 December 2009 IP: 213.163.75.241 – Zuid-holland, Rotterdam – Interactive 3d […]

Read On Comments Off on ALERT: Please treat content from STERERLE.com and FORLIFEMEDIA.COM with extreme caution

Movement in the malvertizing world – using sub-domains to impersonate legitimate businesses

March 25th 2010

As always, domains mentioned in this blog entry (and highlighted in bold) should be treated with extreme caution.   It has been a little while since I have written about specific malvertizing incidents, but that does not mean that things have been quiet – on the contrary, the bad guys seem to be as busy […]

Read On Comments Off on Movement in the malvertizing world – using sub-domains to impersonate legitimate businesses

New Scientist writes about Innovative Marketing Inc: “ ‘Infections found’: Inside the great scareware scam”

March 24th 2010

A marvelous piece of work by Jim Giles, and well worth a read. http://www.newscientist.com/article/mg20527532.400-infections-found-inside-the-great-scareware-scam.html?full=true

Read On Comments Off on New Scientist writes about Innovative Marketing Inc: “ ‘Infections found’: Inside the great scareware scam”


Archives