Thứ Năm, 26 tháng 5, 2011

Seems the bad guys don't believe we actually check sites/files we're coming across anymore, only that we look for a specific filename. I've been monitoring a couple sites leading to trojans, and having the domains shut down. Over the past few days (approx the 20th), they've disabled the specific filename the malicious code points to, possibly believing we'll say "okay, it doesn't exist anymore,
Just an FYI folks. To allow my ISP to identify a fault on the line, I've got to take the entire network offline for an hour. This will obviously mean all servers will be unavailable.The network will be taken offline this evening at 19:00 GMT London, and will be back at 20:00 GMT London.Sites affected:*.mysteryfcm.co.uk*.

Thứ Tư, 25 tháng 5, 2011

The hpHOSTS Hosts file has been updated. There is now a total of 149,988 listed hostsnames.If you are NOT using the installer, please read the included Readme.txt file for installation instructions. Enjoy! :)Latest Updated: 25/05/2011 15:30Last Verified: 25/05/2011 01:00Download hpHosts now!http://hosts-file.net/?s=Download

Thứ Ba, 24 tháng 5, 2011

My other half, though in her 20's, is also part of the "share it all" and "it'll never happen to me" generation, despite being as paranoid and insecure as heck about everything (though generally only paranoid about what her friends think, what I think etc, rather than things that actually matter). Drives me up the wall, especially given she should be mature enough to know better.Kids are already
Oh dear, this isn't going to end well (especially given they were involved in the Phorm debacle too);BT reserves, and makes use of, the right to remotely detect all devices connected to LANs owned by its broadband customers – for their own good, of course.BT Broadband customers can expect to have their network checked any time the operator feels it needs to take a peek to help it provide the

Chủ Nhật, 22 tháng 5, 2011

As if you needed telling, but sadly to state the obvious, the scammers traced back to India are still very much involved in defrauding insuspecting victims, and are now apparently going one step further by infecting their machines to boot.In previous iterations of this scam the person on the phone would get you to click through to the event viewer to "find something red". Strangely enough there
My friend and co-admin at MalwareDomainList just alerted me to a site impersonating VirusTotal, for the purposes (surprise surprise) of infecting unwitting victims with both a fake AV and a trojan.I've sent an e-mail to my friend Ross at Dot.tk, to have the .tk domain taken out, and will be getting in touch with the host and registrar, for the site it's pointing to, but in the meantime, you can

Thứ Năm, 12 tháng 5, 2011

Oh I do love good news in the morning. Zango/Pinball need no introduction, everyone is aware of their ongoing shenanigans over the years, and it looks like they're down for the count for now. Or at least, business filings say they are (well all know Zango tried the same hide and seek method, and left a trail that led to the switch to Pinball Corp being discovered relatively quickly).I've said it

Thứ Năm, 5 tháng 5, 2011

Ever wonder why some hosting companies try and send you on a "we're waiting, it's resolved, really we're just the innocent victims here, please be patient" game, that results in your getting frustrated and the criminals staying online even longer?Well, the answer is companies (and I use the term companies loosely in this case) such as Don Servers, which is actually the same "company" as CompLife
hpHOSTS - Updated May 2011The hpHOSTS Hosts file has been updated. There is now a total of 124,448 listed hostsnames.If you are NOT using the installer, please read the included Readme.txt file for installation instructions. Enjoy! :)Latest Updated: 05/05/2011 17:00Last Verified: 05/05/2011 06:00Download hpHosts now!http://hosts-file.net/?s=Download

Thứ Tư, 4 tháng 5, 2011

Hat tip to the guys at the ISC for the heads up (got the Microsoft RSS on the reader but didn't notice this one).We have received notification that Sysinternals has had some updates. One in particular that is a favorite among handlers is Process Explorer. It now includes: Process Explorer v14.11 includes the ability to configure network and disk activity icons in the tray. Check out the
Seems the fake AV gang responsible for these campaigns, have gone from Tucows, back to Instra Corp again. This lot were first created March 24th, and are now being used yet again;