Browse by Tags

All Tags » safety and privacy on the Internet » Vulnerabilities (RSS)
Wed, Apr 16 2008 8:43

Another malvertizement featuring yourmusic.com

Here's a screenshot - nothing new here... Malicious SWF URL: adroll.com/u/ads/POOPATPCXNFSNB35TZLVYO/FKM7SN4NXNAJLH75HOCZYB.swf Campaign. (Edited to correct host details) page2.googiesindication.com/crossdomain.xml Note: page2.googiesindication.com...
Posted by sandi | with no comments
Filed under: , , ,
Tue, Apr 15 2008 10:17

Another malvertizement at radiofrance.fr

Here it a screenshot of another malvertizement featuring Lady Speedstick "in situ". The URL for the malvertizement is: media.ftv-publicite.fr/0/OasDefault/2008_1349_I_1_4__Mega-RF-RG//france_728x90_LADY.swf As before, the malvertizement sends...
Posted by sandi | 1 comment(s)
Filed under: , , ,
Tue, Apr 15 2008 8:43

Malvertizement at radiofrance.fr

A French version of the Lady Speedstick malvertizement is being displayed on Radio France's web site. Here is a screenshot: This is the URL of the malvertizement: media.ftv-publicite.fr/0/OasDefault/2008_1349_I_1_3__Pave-RF-RG//france_300x250_LADY...
Posted by sandi | with no comments
Filed under: , , ,
Mon, Apr 14 2008 17:21

Alert: malvertizements targetting Macs reported at nytimes.com

As per this blog comment: http://msmvps.com/blogs/spywaresucks/archive/2008/04/13/1584989.aspx#1585954 Which points to this dslreports forum thread: http://www.dslreports.com/forum/r20328704-imunizator
Posted by sandi | with no comments
Filed under: , , ,
Sat, Apr 12 2008 13:24

Be careful at photobucket.com

"Jack" has posted a comment warning that there is a malvertizement at photobucket.com http://msmvps.com/blogs/spywaresucks/archive/2008/03/23/1550824.aspx#1583568
Posted by sandi | with no comments
Filed under: , , ,
Wed, Apr 9 2008 14:04

usatoday.com hit by malvertizement

We've been looking for this one for a few days; Websense found it first The malvertizement in question, ebooks.com, has been mentioned on this blog several times... The malvertizement has been reported to RealMedia. Report here: http://securitylabs...
Posted by sandi | with no comments
Filed under: , , ,
Wed, Apr 9 2008 10:42

The April Security Updates have been released by Microsoft

Details here: http://www.microsoft.com/technet/security/bulletin/ms08-apr.mspx The Cumulative Security Update for Internet Explorer is also available - details here: http://www.microsoft.com/technet/security/Bulletin/MS08-024.mspx Note that this month's...
Posted by sandi | with no comments
Filed under: , , , , ,
Wed, Apr 9 2008 10:26

Please update Flash

A security update has been released - details here: http://www.adobe.com/support/security/bulletins/apsb08-11.html You can install the update via this URL: http://www.adobe.com/shockwave/download/download.cgi?P1_Prod_Version=ShockwaveFlash Make sure the...
Posted by sandi | 1 comment(s)
Filed under: , , ,
Mon, Apr 7 2008 8:37

Do not click on this advertisement!

Here is a screenshot: If you click on the advertisement you may end up at a web site hosting Exploit.HTML.IframeBof and Trojan-Downloader.JS.Multi.av . We can safely view the target web page by using a web sniffer. When we do that we discover that a couple...
Posted by sandi | 1 comment(s)
Filed under: , , ,
Sat, Apr 5 2008 18:41

You have heard of bio-diversity, yes? Welcome to the brave new world of malver-diversity

Edit: Ok, I admit it, I need glasses dagnabit - super embarrassing typo fixed ... :o) I invented a new word today: malver-diversity The goal of this blog post is to highlight just how diverse a gallery of advertisements has been created by the criminals...
Posted by sandi | with no comments
Filed under: , , ,
Thu, Apr 3 2008 10:05

3 malvertizements featuring textbookx.com, free ringtones and a travel service

SWF name: 1-independent.swf Analysis http://www.adopstools.net/index.asp?page=quicklink&id=o579B3w7x6fkmk60 Associated malicious URLs: openadstream.net/crossdomain.xml openadstream.net/ad0.php?url=ads.doubleclick.net/ads/bid=28/nxtgcbb80290000125ave...
Posted by sandi | with no comments
Filed under: , , ,
Wed, Apr 2 2008 11:08

Malvertisement featuring FedEx Kinko reported to be appearing on www.diynetwork.com

This alert was sent to me via private email, by the same person who reported the latest malvertizement at 123greetings.com. It should be noted that I have not personally seen the advertisement appearing on www.diynetwork.com . The advertisement itself...
Posted by sandi | with no comments
Filed under: , , ,
Tue, Apr 1 2008 10:26

Malvertizements - cyberipod and mediaman

IMPORTANT: THE TWO ADVERTISEMENTS FEATURED BELOW WERE SHUT DOWN IN JUNE 2007. My mistake. I'll be more careful in future to ensure that reports I see are for current malvertisements. My apologies to Doubleclick. Lesson learned: previously identified...
Posted by sandi | with no comments
Filed under: , , ,
Tue, Apr 1 2008 10:15

News: Malware victim tries in vain to punish its source

It has been reported that Joseph Bochner's lawsuit against a some people allegedly behind the distribution of "Winfixer" type software has been dropped. I have correspondeded several times with Joseph over the past year or so, and am disappointed...
Posted by sandi | 1 comment(s)
Filed under: , , ,
Tue, Apr 1 2008 0:51

Yet another malicious banner advertisement at www.123greetings.com

OK, so tell me oh gentle reader... just how many "free passes" should a website get? 123greetings.com is, once again, displaying a malicious banner advertisement. This is the third incident that I have personally experienced thanks to an advertisement...
Posted by sandi | 5 comment(s)
Filed under: , , ,
Fri, Mar 28 2008 14:03

Bucksbill.com overcharging victims of fraudware

This is an update to my article written on 5 March wherein I warned that Bucksbill.com overcharging for fraudware such as "MalwareAlarm and Registry Defragmentation". It is worth pointing out that several readers have commented that they, too...
Posted by sandi | 42 comment(s)
Filed under: , , ,
Thu, Mar 27 2008 23:23

Gemini Interactive caught distributing malvertizements

You may recall that I theorised that the URLs for the malvertizements that were displayed at classmates.com may indicate that the malvertizements were supplied by Gemini Interactive (cite: http://msmvps.com/blogs/spywaresucks/archive/2008/03/23/1550951...
Posted by sandi | 7 comment(s)
Filed under: , , ,
Wed, Mar 26 2008 8:56

Press Release - AG McKenna sues Arizona man for spyware act violations

The Washington Attorney General’s Office is accusing a Scottsdale, Ariz., man of coercing consumers to buy software to block computer pop-ups by first bombarding them with ads for pornography and Viagra. In a civil lawsuit filed today in King County Superior...
Posted by sandi | with no comments
Filed under: , , ,
Tue, Mar 25 2008 15:04

Crazy looping malware....

Wow... I just saw one outta control copy of Internet Explorer ... As near as I can tell, youhide.com, a web proxy service for anonymous web surfing, has been infiltrated by malicious banner advertisements.. again... But this time, so many MalwareAlarm...
Posted by sandi | with no comments
Filed under: , , ,
Tue, Mar 25 2008 14:35

How can web sites avoid malicious banner advertisements?

Boyd Anderson posted this comment tonight: " What can Classmates do about xponlinescanner.com/2008/1/freescan.php?aid=77011807? " This was my response: @BoydAnderson, What can classmates.com do? First, source reliable instructions and advice...
Posted by sandi | 3 comment(s)
Filed under: , , ,
More Posts « Previous page - Next page »