Full Circle Magazine: Issue 36

Please join me in congratulating the editors of FCM (Full Circle Magazine), for reaching their 3rd anniversary.Lets hope they'll get to including some security related stuffage at some point too ;o)Wow! I can’t believe it’s been three years. The release of issue 36 (and Lucid Lynx!) marks the 3rd anniversary of FCM. We’ve gone far from those first posts in the Ubuntu Forums and we have you — all

Read More

Foxit' forced Ask installation, Adobe' bloat with bundling - there is an alternative

Hat tip to Bill for the heads up. I've known about Sumatra for a while, but kept forgetting about it.Adobe makes extra money every time someone downloads and installs the Google Toolbar. I usually know better but even I didn’t see the check box in my haste to download most recent Acrobat reader. Given the number of vulnerabilities that keep occurring with the Acrobat reader I always recommend

Read More

Crimeware friendly ISPs: Alantron BLTD

Accredited by ICANN as of March 25th 2010, Turkey based registrar, Alantron (alantron.com, 212.175.233.69 - mailer2.alantron.com, TurkTelecom AS9121) has been a thorn in the side of the internet community, with so far, not a single legit domain having been registered by their "customers" (that I've seen). Every single one has been either spam/fraud (1, 2, 3), malware (1) or exploits.If you

Read More

Crimeware friendly ISPs: xorg.pl

I don't speak Polish, but the Google translation suggests xorg.pl advertises themselves as a free domain provider, much like dot.tk. The problem of course, is that like dot.tk, their service gets abused to hell and back.Normally, this wouldn't have earnt them a place in the crimeware friendly list. However, an exception has to be made in this case for one specific reason - the malicious "aliases"

Read More

Microsoft, Google, Facebook, Tagged et al - they never learn

You'd have thought, given the amount of bad publicity that companies have received over the years, about their rather lackadaisical approach to your privacy, that they'd have learnt from their mistakes and started to take it a little more seriously - alas, not surprisingly, those of you thinking company x, y or z can be trusted - are very very wrong.Lets take Tagged for example, who were sued by

Read More

hpHOSTS - UPDATED April 21st, 2010

hpHOSTS - UPDATED April 21st, 2010The hpHOSTS Hosts file has been updated. There is now a total of 127,058 listed hostsnames.If you are NOT using the installer, please read the included Readme.txt file for installation instructions. Enjoy! :)Latest Updated: 21/04/2010 21:00Last Verified: 21/04/2010 06:00Download hpHosts now!http://hosts-file.net/?s=Download

Read More

Hostek is putting their customers at risk

If you are hosting your site at Hostek.com, you are probably at a higher risk of being hacked. Why? Because they do not do the proper separation of accounts internally, so anyone can access the pages of everyone else.How do we know that? We were helping a friend with his site over there and when we checked their permissions, we found a big (BIG) security hole on Hostek. Every PHP script is

Read More

Fraud Fighter ‘Bobbear’ to Hang Up His Cape

The owner and curator of bobbear.co.uk, a site that specializes in exposing Internet fraud scams and phantom online companies, announced Saturday that he will be shuttering the site at the end of April.Bobbear and its companion site bobbear.com, are creations of Bob Harrison, a 66-year-old U.K. resident who for the last four years has tirelessly chronicled and exposed a myriad of fraud and scam

Read More

Spambot Search Tool: v0.49

v0.49Changes:* Fixed a bug in functions.php (line 219)Ref:http://temerc.com/forums/viewtopic.php?p=3442085#p3442085* Fixed a bug in check_spammers_plain.php (line 128)Ref:http://temerc.com/forums/viewtopic.php?p=3442078#p3442078Download:http://support.it-mate.co.uk/?mode=Products&p=spambotsearchtool&act=DL

Read More

Yet another MSN phish

Yet more for your blocking funnage (I really do have to stop making words like "funnage", "stuffage" etc, up ....).Name: msnapps.netIP: 91.191.144.84IP PTR: srv584.sd-france.netASN: 35393 91.191.144.0/20 EURO-WEB-AS Euro Web NetworkName: f.msn-verif.comIP: 91.191.144.88IP PTR: srv584.sd-france.netASN: 35393 91.191.144.0/20 EURO-WEB-AS Euro Web NetworkName: msn-blocked.comIP:

Read More

Crimeware friendly ISPs: Eveloz - A continuation

I said I'd get back to this, and I am (finally). If you read the previous article concerning Eveloz, you'll already be familiar with the back story concerning them, so lets continue.I've been monitoring Eveloz for quite some time now, as they've seemingly decided to be rather open about their provision of a haven for criminals, and things haven't stopped, changed or errr, well gotten anything but

Read More

Spambot Search Tool: v0.48

Apologies for yet another bug fix folks. My fault for doing this stuff when I'm half asleep (I broke the last update).v0.48* Fixed display of results (now properly centered)* Modified check_spammers.php (submission to FSL/SFS)* Fixed IsValidEmail function+ Added resolve_host function (makes things a little cleaner)* Modified query so username + email are case insensitive.Download:http://

Read More

AS29073 Ecatel: Need more proof of their being crimeware friendly?

We didn't exactly need anymore proof that Ecatel (AS29073) were crimeware friendly, but I came across ryan1918.com (again) earlier, and the following just kinda jumped out at me - thanks for providing the final nail in Ecatels coffin!I've already had Ecatels ranges blocked for some time now, and I believe this should now convince everyone else to do the same. To save you some time, these are all

Read More

Great News source code released!

You've been asking for it, and waiting patiently since Jack originally announced his changing the project to Open Source, and now - you've to wait no more. Great News, as of April 1st (and nope, it's not a AFJ!) is officially open source (released with a GPL licence), with the source code available at;http://www.curiostudio.com/forum/viewtopic.php?f=9&t=3073Source code is C++, for those wondering.

Read More