Browse by Tags

All Tags » safety and privacy on the Internet » Security » Vulnerabilities (RSS)
Fri, May 9 2008 10:05

Malvertizements on mininova.org

Several comments have been posted to my blog recently about a malvertizement problem at mininova.org: http://msmvps.com/blogs/spywaresucks/archive/2008/03/23/1550824.aspx#1601871 http://msmvps.com/blogs/spywaresucks/archive/2008/03/23/1550824.aspx#1602159...
Posted by sandi | with no comments
Filed under: , , ,
Fri, May 9 2008 9:41

Hooray for teamwork - the malvertizements at photobucket.com have been identified

Once again, communication and cooperation between anti-malvertizement activists around the world has resulted in success. We have found the malicious malvertizements on photobucket.com - Kimberley has the details . The incident has been reported to Photobucket...
Posted by sandi | 1 comment(s)
Filed under: , , ,
Thu, May 8 2008 12:18

ALERT: Firefox 2 Vietnamese Language Pack infected by malware

Thanks to Susan for the heads up... Cite: http://blog.mozilla.com/security/2008/05/07/compromised-file-in-vietnamese-language-pack-for-firefox-2/ Cite: https://bugzilla.mozilla.org/show_bug.cgi?id=432406 Anybody who downloaded and installed the Vietnamese...
Posted by sandi | with no comments
Filed under: , , ,
Thu, May 8 2008 9:53

Warning: malvertizements have been reported on photobucket.com

I received an email alert overnight warning that photobucket is displaying malvertizements. The problem we face in tracking down the reported malvertizements on photobucket.com is that the advertisements are country specific. This blog has readers all...
Posted by sandi | with no comments
Filed under: , , ,
Wed, May 7 2008 9:58

ALERT: Akamai Download Manager Arbitrary Program Execution Vulnerability

Akamai supplies both an ActiveX and a Java based download manager. The ActiveX control remains installed on the users computer until it is manually removed. It is important to note that Akamai has been used by vendors such as Symantec and Microsoft (eg...
Posted by sandi | with no comments
Filed under: , , ,
Tue, May 6 2008 10:58

Microsoft Security Intelligence Report - July to December 2007

I have been reading through the Microsoft Security Intelligence Report covering the period July through to December 2007 over the past few days. Although the bulk of the report focuses on security vulnerabilities, there are statistics specific to "rogue...
Posted by sandi | with no comments
Filed under: , , ,
Sat, May 3 2008 9:42

Update re malvertizements appearing on Yahoo web pages

Yahoo have removed the malvertizements featured on this blog - I am hopeful that such malvertizements will be removed from circulation much faster in future.
Posted by sandi | with no comments
Filed under: , , ,
Tue, Apr 29 2008 8:39

New malvertizement - americansingles.com

Here it is: The malvertizement, if triggered, redirects victims to the URL windowsxp-privacy.net/?id=987650085. That URL, if a malicious redirect is not triggered, simply dumps the victim at Google. windowsxp-privacy.net is hosted in Russia, with mail...
Posted by sandi | with no comments
Filed under: , , ,
Mon, Apr 28 2008 12:41

Alert: malvertizements at moli.com

Kimberley found these ones - full information here: http://www.bluetack.co.uk/forums/index.php?s=ae5aae56f29889c26c465d6f3aa4e9c1&showtopic=18064&st=30&p=87072&#entry87072 atlas-ads.com is registered using the infamous Estdomains, and...
Posted by sandi | with no comments
Filed under: , , ,
Sun, Apr 27 2008 12:21

Yahoo aren't listening...

Edit: the malvertizements have been removed from circulation . And still the problems continue.... I wonder how many hits Yahoo gets per day, and how many people are being exposed to fraudware, while these advertisements are allowed to remain online....
Posted by sandi | 4 comment(s)
Filed under: , , ,
Sun, Apr 27 2008 11:29

Be very cautious if accepting advertising from ReachWe LLC

Cite this discussion: http://www.geekvillage.com/forums/showthread.php?p=178973 There are three complaints about malicious advertisements being supplied by ReachWe in that discussion. You'll note that somebody who claims to be from Yahoo posted a...
Posted by sandi | with no comments
Filed under: , , ,
Sat, Apr 26 2008 20:29

Yet another malvertizement at Yahoo Mail...

Edit: the malvertizement has been removed from circulation And another one - the URL for this one is: eur.a1.yimg.com/java.europe.yimg.com/eu/any/yahoonew300x250.swf Even if you don't get redirected, the malvertizement still let's the bad guys...
Posted by sandi | with no comments
Filed under: , , ,
Sat, Apr 26 2008 18:57

Malvertizement problems continue at Yahoo

Edit: the malvertizement has been removed from circulation Here it is at Yahoo Mail:
Posted by sandi | with no comments
Filed under: , , ,
Sat, Apr 26 2008 11:35

Warning: malvertizement at Yahoo Groups!

Edit: the malvertizement has been removed from circulation Here it is, in situ - it is familiar, yes? This is the URL of the malvertizement: eur.a1.yimg.com/java.europe.yahoo.com/eu/any/yahoonew728x90.swf The malicious SWF leads us to: adtds2.promoplexer...
Posted by sandi | 1 comment(s)
Filed under: , , ,
Wed, Apr 23 2008 10:50

Old malvertizement featuring getsafeonline

I was intrigued to see this malvertizement pop up on my radar - Mike of mikeonads.com first wrote about this advert back in early 2007 . Perhaps the bad guys think we have short memories The URLs (thanks Kimberley) used by the malvertizement are: burnads...
Posted by sandi | 1 comment(s)
Filed under: , , ,
Wed, Apr 23 2008 8:30

New malvertizement featuring Nielsen/NetRatings

Yet another big name is being impersonated via a malvertizement. The Nielsen malvertizement reveals a new malicious domain, xp-vista-update.net , hosted in Russia with name servers provided by the infamous estboxes. The domain was created on 25 March...
Posted by sandi | 2 comment(s)
Filed under: , , ,
Wed, Apr 23 2008 8:23

Update re malvertizement at livejournal.com

I have been advised that the malvertizement has been removed from circulation.
Posted by sandi | 1 comment(s)
Filed under: , , ,
Tue, Apr 22 2008 23:02

Malvertizement appearing on livejournal.com

This incident has been reported to livejournal, Atlas Solutions (aka adbureau.net) aquantive and Microsoft. Here is a screenshot of the malvertizement: The malvertizement is being displayed at community.livejournal.com . (Screenshot at end of article...
Posted by sandi | 2 comment(s)
Filed under: , , ,
Fri, Apr 18 2008 16:12

New malvertizement featuring driveway.com

This malvertizement is *very* new Cite - Kimberley's site - she has all the details: http://www.bluetack.co.uk/forums/index.php?s=8085d39a6043e446198cbd9ab8234f01&showtopic=18064&st=30&p=86950&#entry86950
Posted by sandi | with no comments
Filed under: , , ,
Fri, Apr 18 2008 10:16

New malvertizement featuring WeightWatchers

Here's a screenshot - the SWF leads you to adtds2.promoplexer.com/statsa.php?campaign=bebo
Posted by sandi | 1 comment(s)
Filed under: , , ,
More Posts « Previous page - Next page »