Paul's Tech Talk

Understanding the Kik Messenger!

The Kik Messenger is just a little app that allows people to chat without the need to share you phone number. It has several things that help make people want to use Kik, and I am going to share some of them with you and hope that it helps you protect yourself from scammers. With any messaging app, you will always have bots and scammers who only purpose in life is to steal your money or your identity. It seems that I found a few that times when I wondered how they figure out my username. it really wasn’t hard to find me on Kik, I seem to keep Something the same and you could find me to if your really wanted to.

Don’t give out your Phone Number — It seems it is the easiest thing to do but if you give out your phone number to a complete stranger, you are just asking for trouble from people who are going to stalk you or harass you.

Don’t give out specifics — until you really start to be friends it is something that should be in your head at all times. Don’t tell them your personal stuff like where you actually work, or the exact model of your car. If you have to answer them, just generalize it to the point that it would make it really hard for them to find you after that. I wouldn’t say Lie to them but don’t speak the whole truth, until you are sure they are trustworthy.

Quick Repliers — If you find yourself getting almost instant replies from the sender, you can bet that it isn’t truely a person because even I can’t type that fast. It does not mean people who reply with yes or no answer are bots because most people are quick with those. if it is long text in under a minute, you can bet it is a bot!

Don’t share Pictures or Videos — If you don’t want your friends to see the picture or video, you really shouldn’t share it to some unknown bot or person on the messenger app. You really do not know who or What they will do with that stuff. It could cause your embarrassment in the future.

Don’t click links — Unsolicited links are just going to probably get your infected and thus you shouldn’t click on any links or go to sites that that the person says unless you know about that site personally. Just be careful what you do online and you are far better off!

If you use these tips, you are better off than before. Just remember that you do not really know the person unless you meet them in person. HOpe this helps!

Comments Off | in

How-to,

Security | tagged

KIK,

Text Messages,

social media

Wednesday

Jun102009

Wordpress Security Tips -- For the untrained :

Author:

Paul Sylvester | Date:

Wednesday, June 10, 2009 at 5:52PM |

I was reading over at Malware Diaries, about a hacker that doesn't secure his exploits. What gets me is that I am so surprised that he did that, then I thought about it and I read what Trend Micro had to say about it:

Creating a website is indeed a big task but, considering the present threat landscape, monitoring it and keeping it secure from attacks is a bigger one.
Website administrators have the responsibility to keep their systems malware free, secure web server files from unauthorized access, and keep their website clean of malicious codes, for their own sake and most especially, their visitors’.

[via Trend Micro blog]

[ad]Now admittedly Trend talks about the [intlink id="3578" type="post"]Gumblar[/intlink] and how they compromise websites with either a FTP password stealer or and SQL Injection. These are a common practice with hackers and thief to get the credentials to use your server for their means. So I wanted to talk about some things you can do to better protect your Wordpress blog. Since I have a Wordpress Blog this was something I know about.

Wordpress Security Scan -- This is a great plugin to help you identify and also suggests how you can fix them to prevent a hacker from getting in the first place.

Block Wp-Folders from being Indexed -- This can be done by going to your robots.txt file and making sure it says:

Disallow: /wp-*

Protect your Wp-admins folder -- Attackers can use brute force attacks to without much waiting to get access to your Wp-admin page so you should:

Login Logger Plugin -- This is good to see if anyone is trying to login and keeps a log for those instances where you might need to block a certain IP in the .httpaccess file section.

Limit Login Attempts plugin -- This has a set amount of login before that IP is locked out for a certain amount of time. You can have it set to what you want an hour or more, it just depends on your preference.

Bad Behavior -- This is a good little plugin to help with spam such as referral spam and comment spam. I've been using it for the past few months and my referral spam has dropped drastically to almost Zero.

These are just a few things I've done to help protect my blog and protect my community and users. I will not disclose everything because I have to keep those bad guys from getting in but I have I hope started you in the right direction. I would also suggest using something like [intlink id="2646" type="post"]Roboform[/intlink] that comes with a password generator to use that with your wordpress login password. This will also help prevent from gaining access easily.

Post a Comment | in

2009,

Sunday

May242009

Twitter and the Acai Berry Spammers

Author:

Paul Sylvester | Date:

Sunday, May 24, 2009 at 6:51PM |

Well According to Sopho's There seems to have been some hacking going on for the Acai Berry spam. Some of the messages were:

It seems to be a random http://random.CN domain but we've talked about this in the past. Sopho's isn't sure how this happen but I have a suspicion that it was a Phishing attack done on the facebook users recent weeks that have the hackers going to other social sites and trying those passwords.

[ad]Although I agree with Sopho's on making sure not to have a dictionary word, I also think users should take care of all your online accounts. As most people will become aware of is most users use only one password for all their accounts online or only have 3 different passwords for 20 different sites. This is something that needs to change and you can do that with [intlink id="2646" type="post"]Roboform[/intlink] to keep your passwords safe and also to make sure they can't guessed.

If you have been compromised on t witter and only use one password, you can bet all you other accounts have been compromised as well. You should change your passwords as soon as possible. You should also make sure in the future not to be tricked into giving out your password which is called Phishing, in which a site with a different url is made to look like Twitter, Facebook, and Myspace log in page.

2 Comments | in

2009,

Acai Berry,

Phishing,

Spam,

Twitter

Tuesday

Feb032009

Offline Update 5.0, Clone of Autopatcher to Some!!

Author:

Paul Sylvester | Date:

Tuesday, February 3, 2009 at 3:51AM |

Offline updater 5.0 has been released a couple months ago and I just realized it now. This is an excellent tool for IT professionals who want to keep all your Systems up-to-date with the last patches from Microsoft. The systems it supports are Windows 2000, Windows XP, Windows Server 2003, Windows Server 2003 x64, And Windows Vista / Server 2008.(32 bit and 64 Bit updates).

[ad#ad2-right]I find this a very useful program for people who have a multitude of problems, from not being able to get on the net to computer virus infections. This is really good for big businesses that want to update a lot of systems in easy way without having to wait for downloads of updates to install. You can take a DVD and update on the fly within Mins. DVD being Cheap or buying them in bulk helps saves time and money for the company. Less time spent downloading the updates and more time actually getting work done. As with the Conflicker, Downadup, and to some the Conflickr Trojan, if you got infected with that little worm. This would help install the updates that it prevented you from doing in the first place. I also found that once you download do the update the files are kept on the hard drive so you no longer have to redownload them again. You just update the updates every second Tuesday of the month and it downloads the newest patches and creates a whole new ISO for you to burn.

Q: How can I create the offline update CD images automate, for example via a "scheduled job"?
A: Create a new batch file in the "cmd", eg "DownloadUpdatesAndCreateISOImage.cmd". Add the desired calls of

"DownloadUpdates.cmd" and "CreateISOImage.cmd" with the necessary parameters in this new file. The file might for

example have the following contents:

@ echo off
call WXP download updates eng
call CreateISOImage WXP eng

Then set a "time-controlled contract" for the new script "DownloadUpdatesAndCreateISOImage.cmd" to your desired

time. For example, after each Microsoft Patchday create new images, select every second Wednesday of the month.

[Via The FAQ's Documentation (Translated Via Google)]

As you can see you can have it do a script and be ready for you in the morning. You then just take it out of the drive and install where you need to install the day after the updates are issued. On another Note if you have clients who use Windows office Xp, 2000, 2003, 2007 then this will also help:

This is nice if you have clients who use the Microsoft Office Suites also. Some Malware will often try to infect people's systems through a office script or some other vector. So this will also prevent infections or hackers from getting onto the system by updating this also. You can have this added to each and every DVD ISO you make to include these as you update the patches also.

Download:

Offline update 5.0 Download site

Official Site for Offline Update (Translated into English)

Post a Comment | in

2009,

DVD,

Down,

Downloads,

Hard,

Job,

Other,

Trojan,

UP,

Update,

Updates,

Use,

computer virus infections,

Win,

cmd,

day,

fly,

necessary parameters,

offline update,

patches,

people,

problem,

system,

target,

tech,

time and money,

way,

windows 2000,

windows server,

worm

Saturday

Jan242009

Brace for Impact, Brace for Botnet! (Conflicker Worm)

Author:

Paul Sylvester | Date:

Saturday, January 24, 2009 at 10:16AM |

The Worm that has infected 6% of Personal Computers is starting to build into something totally different. According to some Researchers, they are saying this has to happen soon. And I'll quote:

In any case, today seems better than the day before and we think that growth of Downadup has been curbed. Disinfection of the worm remains a challenge.

[Via F-secure]

[ad#ad2-right]Although this sounds like it has stopped, I don't think so I am sure the worm will get even bigger. I don't think it has been curbed we might have a rest period before the Worms tries again.

"Why is it taking so long?" asked Huger. "That's what we're all asking." He couldn't recall an attack of this size with such a long lag time between the initial attacks and follow-on downloads of more malware to the hijacked systems.

[Via PcWorld]

Now We know this exploit is being patched as quickly as possible in some areas of the industry but that leaves the question? What isn't being patched, I am guess the next stage of this worm is mutant into a new worm much like the way it tries to communicate to download new software or instruction. I believe it will be using a newer exploit so that it can infect even more computers. I also think it will be a botnet and so does others.

But he also pointed out that the clock is ticking. "If they don't hurry up and do it, someone else will," he said, explaining that hackers must fend off not only security researchers, but also other criminals, who would like nothing better than to pinch a ready-to-use botnet.

[Via PcWorld]

So they are going to use this Downadup Worm soon, I am counting on it. Somethings for IT professionals to prevent more infections are to make sure you have patched the latest security holes before they exploit that. Like my favorite program, the Clone of Autopatcher, which you can create a month by month patch DVD to install on all important systems. IT professionals must not start getting relax, because of people saying it is on the downfall. In nature there are always going to be periods of rest before growth. So I am sure something will happen rather quickly, and probably in the next week or two.

Post a Comment | in

Autopatcher,

Clock,

Clone,

botnet,

security researchers,

worms

Thursday

Jan222009

Spammers defies Bill Gates 'magic Solution'

Author:

Paul Sylvester | Date:

Thursday, January 22, 2009 at 9:05AM |

Sopho's published statistics and I thought I would talk about it here. Bill Gates promised to have a Magic Solution 5 Years ago. Sophos Also provide a Chart of the Dirty Dozen:

Sopho's also is claiming that "US retains its crown as spam king". I don't think so because of the the Other 32.4%. The US can't be the main culprit to spam. So What was this 'Magic Solution' that they promised 5 years ago?

Microsoft has two techniques in mind for solving the spam issue, both based on the premise of changing the economics of email to place a greater burden on the sender.

[Via CBR]

Microsoft did have some good ideas but they wouldn't work for right now because the first part of the 'magic Solution' was to add mathmatical question to each and every email we sent out.   I know that this wasn't going to work because hackers have already created a systems to get around the captcha verification.

[ad#ad2-right]Spammers of course are the ones who is sending out the spam but they have people who write virus software, which I consider a hacker. You see they want to infect systems so they can easily send out even more email. When a system becomes a Botnet they usually are used to send out email. If your curious as to what a Botnet is Check out the Wikipedia entry for further details. So they need these systems to be able to send out spam, and other types of email phishing.   Most of the time a spammers spam just for money because they make money by spamming people.   I hate spam because it clogs up our email accounts with unwanted emails.

So Did Microsoft come up with a fix? According to Sopho's they seem to be dropping percentages from 2004 to now in the US.   I have to wonder if Microsoft proclomation made them worry and go outside of the US. I don't think it will stop in fact, I suspect with the economy like it is we will undoubtedly start seeing even more spam and even more computer infections.

In order to prevent yourself from viruses and computer infections, you will need to install Anti-virus software and a Good firewall, not just the Default Windows Firewall. This will greatly increase your chances of not getting a virus and possibly help prevent some of the spam.   You should also tell your associates or customers the benefits of preventive updates. You should also remind people about not clicking links in emails and also not everything you read is true.

Post a Comment | in

Anti-virus,

Phishing,

cbr,

Wednesday

Jan212009

Security Researchers warn of potential flaws in Windows

Author:

Paul Sylvester | Date:

Wednesday, January 21, 2009 at 6:38AM |

I read an article today from Techworld. I wanted to Discuss this in detail. I also found some links that suggest that Techworld is right.

[ad#ad2-right]

Andrew Storms, director of security operations at nCircle Network Security, speculated that the latest bugs were found by researchers using information disclosed in SMB fixes Microsoft released in October and November.[va Techworld]

According to my investigation, and I have been looking. I found a few SMB Vulnerabilities. One of them is CVE-2008-4835 and CVE-2008-4834. These two are capable of Remote Code Execution, and are Consider very High on the Impact list and all.

So Did people find these exploits or vulnerabilities from the last MS 08-067 patch? I would have to conclude it is a real possibility.

Although Microsoft did patch those holes this month. I grow to wonder just how much these hackers keeping the IT professionals on there toes. I hope people updated their system to prevent another worm because you don't want the worm like Downadup Do you? I am sure there will be a worm or a virus that will exploit this in time, and I think sooner or later someone will use this just like the other one.

Post a Comment | in

2008,

bugs,

holes,

storms,

worm

Tuesday

Jan202009

More Information on the downadup Worm

Author:

Paul Sylvester | Date:

Tuesday, January 20, 2009 at 2:36PM |

If your working to get rid of this Downadup Worm, F-secure is giving out a free removal tool to help with that task. According to F-Secure Worm:W32/Downadup.gen description which Talks about how bad this worm is.

[ad#ad2-right]Due to companies not updating the MS 08-067 patch, it is the primary way for this worm to get onto a system.

Graham Cluely's Blog ask a question and got quite a few answers from the users. The results of the poll are 53% believe the hackers are to blame, and 30% think the System Administrators are to blame, and 17% think Microsoft is to blame for this worm.

I have a mix feelings over who is to be blamed for this worm. I think the person who wrote this, did it for a specific reason. We can't expect any software we use to be 100% safe, even Macintosh are not 100% safe. Microsoft isn't to be blamed because they tried to patch this as quickly as they could. I know that companies have a hard time keeping up with Microsoft updates, and they really can't be blamed. I think Hackers are always going to make a virus just because they can. That's in there nature and we will never be really rid of the virus or worm writers. They are in it for the Money, to boast, to take control of, or steal sensitive information. Windows being the Alpha Dog, people are always going to test the waters because of that.

So who do you think is to be blamed? I'd like to hear your thoughts on this.

Who do you think is to blame for the Downadup Worm?

1) End Users
2) Microsoft who did patch it
3) The person who Wrote this Worm
4) Companies who didn't implement updates
5) No one it is going to happen
6) People who pay the writers of Virus/Worms

View Results

Make your own poll

If you think someone else is to be blamed just make a comment.

Please bear in mind that this poll is not scientific and is provided for information purposes only. The comments expressed on this page are those of a subsection of poll participants, and not necessarily those of Tech-linkblog. Tech-linkblog makes no guarantees about the accuracy of the results other than that they reflect the choices of the users who participated.

Post a Comment | in

Macintosh,

Microsoft,

information purposes,

money,

poll,

system administrators,

virus removal,

virus worms,

worm

Saturday

Dec132008

Uncovering a Virus/Trojan

Author:

Paul Sylvester | Date:

Saturday, December 13, 2008 at 7:47PM |

Getting done with the first part really got my juices flowing. I was shopping looking and thinking about this next article. I came up to only one option turning this into a 3-5 length post due to all the content that I will have. So where did we leave off? Oh that is right figuring out if you have a virus/Trojan. The instant I made a post about this 12 hours later someone make a comment and here is what he said:
[ad#ad2-right]

Rene Van Belzen

I can't wait to read part two of this article. I always wondered how you'd know you're infected if a virus don't want to be detected and no virus definitions are yet available, because the virus is so new.

Now the truth is anytime a Virus does something it usually leaves a footprint somewhere and somehow.   Even the hardest working hacker can't plan for all possibilities and that is where we begin.   I have been helping people for a while with viruses and know that no matter how hard the virus tries to hide you can usually find it relatively quickly and easily do to virus check here are the ways I've done to figure out if they may or may not have a virus/Trojan.

Now if this is a client's computer and you don't want to be rude to the client, there are a few indications of user error and installing a virus.   This is relatively simple, all you do is do a quick inventory of all the start menu programs. You'd want to look for any P2P file sharing program, If they have Firefox Installed, and if they are using Window Mail and not Thunderbird.   You see 80% to 90% of virus downloaded are installed by the End USER. They either downloading a game and installing a virus with [ad#ad2-left]a game, or not protecting themselves by using Internet Explorer or Using Windows Mail. That is usually my first step due to the fact, I've got to be diplomatic about finding out about security ways. Also make sure they are up to date on there Window updates, unless they are using a really old system then you will have to work even harder. Also you can suspect a virus if the client is talking about having problem with a program recently although this isn't always true it sometimes is the case due to the fact hackers don't have a big chance to test these viruses/Trojans out before they set them into the wild. So there are always going to be unplanned problems associated with them.

After the first initial search of desktop, you should really know the likely hood of a possible virus getting on the system and later we will talk about counter measures to prevent virus attacks in the future.   There are a few places a hacker likes to put commands. Hackers love to put in the Registry to run a program every time Windows starts. It usually in:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\

Usually 50% to 70% of virus like to make sure the program to runs. This is a flaw in Windows because hackers can edit this without much effort but there isn't many places a hacker can go to make sure a program is set to run when you boot. So this is also a benifit to finding those little programs.

Now just like the Regisitry, Hackers also like to put programs in a few areas on the hard drive. This is also kinda hard to hide because most of the time these are consider important to the system but if you know what to look for you can pretty much figure out if it is truelly a system file. These areas of the hard drive are:

C:\WINDOWS\System32[ad#ad2-right]

C:\WINDOWS

%programfiles%\common files\microsoft shared

%windir%\temp\

These are just a few but if you look hard enough it can be found most of the time. Most of the time I use the registry to tell me where these programs are so I can do a further check of the program. Some of this is not needed with some of the programs that I recommend but this is for those who want to be a through job and make sure the virus is gone.

On my next post we will talk about some good tools for the trade to help get rid of a virus/Trojan. This little step here is used to better help identify a virus and also give you chance to google each name on the list of registry and the hard drive to see if you can identify the virus.

Post a Comment | in

Game,

HKLM,

Mail,

Trojan,

p2p file sharing program,

WIndows,

Window,

Windows,

Windows Vista,

cl,

client,

date,

drive,

fact,

file,

footprint,

hacker,

internet explorer,

inventory,

length,

matter,

menu programs,

option,

post,

rene van,

something,

start,

system,

user,

while,

Friday

Dec122008

What is a Virus and Why do I have one

Author:

Paul Sylvester | Date:

Friday, December 12, 2008 at 7:04PM |

After seeing more and more the updates coming from the net. I wanted to talk about what a Computer Virus or Trojan is and how you get it. So how did you could of gotten a Virus in the first place. So here are some information to consider:

The vulnerability of operating systems to viruses

So what does that mean to you? Most of the times when you get a virus you have a vulnerability in some place in your Operating system and it is either something that has not be known by Microsoft, Apple, and Linux or is know as a Zero-day Exploit. [ad#ad2-right]

A zero-day (or zero-hour) attack or threat is a computer threat that tries to exploit unknown, undisclosed or patchfree computer application vulnerabilities. The term Zero Day is also used to describe unknown or Zero day viruses.

[Via Wikipedia]

This is one of the most used because if it is an unknown exploit by the Operating System creators then they have a longer to us the exploit. Most of the time hackers like to use this because that means there is a possibility of finding even more vectors to infect other systems. You see if they can get on one system they can then find ways to get on other systems.

In the Old days, you'd ask

How Did I Get This Virus, Anyway?

You get a virus when you copy infected files to your computer, then activate the code inside by running the infected application or opening an infected document. How you copy the infected files is irrelevant: Viruses don't care if you get them as an e-mail attachment, a download, or via a shared floppy disk, though e-mail attachments are the most prevalent (and easiest) mode of transport.

[via PcWorld] (Dated Oct 13, 2000 11:00 pm)

That was before hackers wanted to infect for more personal gains. There is a list of things that hackers want to get when they Infect a system and it is usually very few things. In the Old days they wanted the fame but now they want money and to take control over the internet. They usually want to infect for Money or to have computers become botnets. Now We aren't talking about the Movie, I Robot. Once a system becomes a bot it doesn't think for itself but follows a line of command from the Command and Control center. So lets say we have several hundred bots on one net, and the hacker blacked mailed a server saying if they didn't pay up they'd get DoS attacked. With enough bots going to one site at one time can slow or even bring down a site, that is how A hacker sometimes uses a virus or trojan to get into a system.

Viruses & Trojans try to Avoid detection

So you have a virus, it wouldn't do a virus any good to be detected right after getting onto a system. More and more, viruses are trying to avoid being seen and heard. Most hackers who program are wanting to infect more than one system so they have to make really sure that you don't find out your infected. So with that said there are several ways and I won't try to explain them because I think the link talks about it better than I could. It however will give people something to think about.

In the next few days there will be another post on How you will be able to figure out if you have a virus. I had to talk about this first so people could understand how to figure out if you have in the next post. So stay tuned for more

2 Comments | in

2008,

Computer virus,

Control,

Dated,

Disk,

Linux,

Trojan,

Via,

Zero,

attack,

computer application,

computer threat,

download,

fame,

hacker,

infect,

list,

mail attachment,

mail attachments,

microsoft apple,

mode,

money,

place,

site,

term,

time,

Tuesday

Dec022008

Windows 7 will sport Direct X 10 Compliance!

Author:

Paul Sylvester | Date:

Tuesday, December 2, 2008 at 6:24PM |

The new feature is called WARP10, for “Windows Advanced Rasterization Platform,” and it’s essentially a DX10-compliant, software-only rasterizer that was written by Microsoft; it runs directly on the CPU. In a situation where a DX10 app needs to run but can’t find DX10-compliant hardware, it will run on WARP10, albeit very, very slowly. Ultimately, you can think of WARP10 as a “software DX10 GPU” that will exist as a fallback in Windows.
[via Arstechnica]

[ad#ad2-left-1]This will make Windows 7 work more smoothly with Windows XP and Vista games. This looks to be like having more compatibility with the older games. When Vista came out they were complaining about not being able to play games on Vista. Vista has been really updated with being able to play games. People are starting to play games on a Vista machine. This is also a step for Windows 7 to be one that Microsoft, being that they are trying to get the next O/s to look like an Angel probably. What I expect is Microsoft will advertise about Windows 7 will be gamer friendly. This is a move on Microsoft to get gamers on board with this release and to try to get people to forget about Vista.

[ad#ad2-right]Having said that here’s some things that will be most likely be Advertised with Windows 7 when it comes out. Microsoft will want it to be game friendly, User Account Control to be less obtrusive, and program compatibility. These the main points to get people to start buying Microsoft’s products. Microsoft should be worried because of Apples comments about how you should use an Anti-virus for Macintosh’s. This is definitely worrying Microsoft. It means Microsoft has an competitor that Hackers are trying to exploit. I would be willing to guess that Microsoft is worried people are switching to Apple products. These are just guesses but I am quite certain Microsoft is really worried. What do you think, do you think it will happen?

1 Comment | in

ATI,

Account,

Advanced,

Advertised,

Angel,

Anti,

Anti-Virus,

App,

Apples,

Arstechnica,

CPU,

Cam,

Control,

Direct,

Friend,

Game,

Hardware,

Lay,

Left,

Macintosh,

Microsoft,

Rasterization,

Real,

Run,

Runs,

Software,

The,

US,

Updated,

Via,

WARP,

Win,

ad2,

board,

date,

dx10,

gamers,

guess,

mean,

move,

right,

ru,

situation,

sport,

step,

tech,

try,

ua,

user,

war,

work

Thursday

Nov202008

Vista has a new Vulnebility!

Author:

Paul Sylvester | Date:

Thursday, November 20, 2008 at 11:41AM |

According to Techworld.com, Vista has a new Vulnerability that could let a hacker infect a Vista machine with a rootkit. The talk from them is quite intriguing. I will quote it to better let you know what the Vulnerability is:

The vulnerability could allow a hacker to install a rootkit, a small piece of malicious software that is very difficult to detect and remove from a computer, Unterleitner said.

[ad#ad2-left]Phion notified Microsoft about the problem on 22 October. Microsoft indicated to Phion that it would issue a patch with Vista's next service pack. Microsoft released a beta version of Vista's second service pack to testers last month. Vista's Service Pack 2 is due for release by June 2009.
[via Techworld.com]

The way they could do this is through the Device IO Control which in turn could corrupt the Kernel of Windows Vista. Now we all know that Microsoft will release a patch quicker than 6 months away. According to this article, people are already looking for the exploit and want to know more about it. I would be willing to bet they will have a patch out sooner than later. Probably January or Febuary, which will be a big deal because no one will expect it. I would also imagine hackers will start trying to figure out how they could install software as quick as possible before Microsoft pushes out the patch. So what can you do to protect yourself, Get a firewall, a Antivirus and learn how to protect yourself to prevent yourself from getting a computer virus.

Post a Comment | in

22 october,

Anti,

Beta,

Better,

Big,

CAT,

Computer,

Computer virus,

Control,

Deal,

Device,

Exploit,

Firewall,

GE,

Hack,

How-to,

IE,

IO Control,

January,

Jun,

June,

Left,

Mac,

New,

Oct,

Phion,

Root,

Small,

Sue,

The,

Turn,

US,

Unterleitner,

Use,

Via,

Vice,

Wal,

Will,

Win,

Window,

ad2,

com,

due,

febuary,

hacker,

infect,

issue,

kernel,

look,

lt,

month,

pack,

patch,

piece,

problem,

quote,

rootkit,

ru,

service pack 2,

service pack microsoft,

start,

talk,

tech,

try,

ua,

version,

vulnerability,

war,

way,

wind,

world

Monday

Oct202008

What's with Google trends?

Author:

Paul Sylvester | Date:

Monday, October 20, 2008 at 1:10PM |

Having been going to the Google Trends and keeping watching. I am starting to wonder something? Take a look at this and you tell me?

[ad]Can you see how someone might use this to create a Goog-411 and use it to promote there website? It is all about the hits and getting what publishers like to say the eyes on a website. Now is that going to confuse people or make people not want to come to a site. So how would people abuse this?

Very Simple, they'd watch what is trending and post accordingly. Now you as a reader would click on the website expecting to see what you want to see but instead it would popup with advertisements and maybe malware? Check these links to better understand it:

Skype isn't always safe!

Some Important programs to prevent yourself from having viruses and Malware!!

[ad]
Now even though these are just a few. You can see how someone might want to abuse it and get there site up on Google trends and be able to infect several to even millions of computers before Google sees that or stops. You could in theory take over a website high in Google rankings and do exactly that.

Then I have to ask myself, why would hackers want to do it in the first? One they'd be able to direct people to sites that they could use to phish your information, or maybe make money by you going to these sites. It is all about money, I don't say that lightly, but it seems to always be true.

So what is Google doing to prevent this? is it right to use Google for your advantage? Do we need it for anything other than to see what people are looking at? Is that a form of them tracking your every click.

[ad]
Are you comfortable with them keeping the list of what people searched for last year? if you don't believe me, go check it out yourself. These are important questions to answer and should be explored.

Post a Comment | in

Google,

Hack,

Links,

Skype,

Tab,

Trends,

US,

Watch,

Ways,

Website,

XP,

advantage,

anything,

center,

com,

form,

information,

list,

look,

money,

phish,

post,

reader,

something,

start,

theory,

viruses

Saturday

Dec152007

Hot, sexy bot sweet-talks personal data out of chatters

Author:

Paul Sylvester | Date:

Saturday, December 15, 2007 at 9:39AM |

security software company,

[ad#ad2-left]

Security software company PC Tools warns that the bot can easily be used for malicious purposes. The company said that the program's ability to mimic human behavior to dupe chatters is worrisome, and could readily be used to collect all manner of information. "As a tool that can be used by hackers to conduct identity fraud, CyberLover demonstrates an unprecedented level of social engineering," said PC Tools senior malware analyst Sergei Shevchenko in a statement. "CyberLover has been designed as a bot [robot] that lures victims automatically, without human intervention. If it's spawned in multiple instances on multiple servers, the number of potential victims could be very substantial."
[Via Arstechnica]

This is really a security issue here. Never give out your personal information online. I just want to post this to remind people not everything online is safe.

1 Comment | in

AT&T,

Anti,

Arstechnica,

Bot,

Call,

Chat,

CyberLover,

Data,

Hack,

IDE,

Online,

Sue,

Tool,

Tools,

Via,

ad2,

fraud,

issue,

lt,

number,

personal data,

program,

purpose,

rate,

robot,

talk,

Wednesday

Oct312007

Trojan horse targets Mac OS X

Author:

Paul Sylvester | Date:

Wednesday, October 31, 2007 at 6:08PM |

A new trojan horse designed specifically for Mac OS X systems has been discovered on several pornography websites that can hijack Web traffic, according to security firm Intego. Affected systems are used to hijack some Web requests that lead users to other phishing sites, or simply display ads for other pornographic websites to generate ad revenue. Phishing attacks may lead users to believe they are surfing to eBay, Paypal, or various banks when in fact they are accessing specially-crafted mockups designed to retrieve usernames and passwords for those sites. The trojan, titled OSX.RSPlug.A, is rated as a critical risk by Intego, and is known to affect Mac OS X 10.4 Tiger as well as Mac OS X 10.5 Leopard. Intego is testing prior versions of Mac OS X, but believes them to be vulnerable as well.

The trojan claims to install a video codec necessary for viewing free pornographic videos on Macs, but when users click on the still images to view the content they are directed to a Web page stating that they must download a new version of a codec to play the movie file with QuickTime. Safari users who have checked the "Open 'Safe' Files After Downloading" option in General Preferences will find that the disk image which is downloaded to their Mac automatically mounts, and the installer application will automatically launch.

Thought it was going to happen soon, Now since apple is getting bigger they are going to have more hackers wanting to get into the system.

Post a Comment | in

Monday

Oct222007

MPAA hacker interview

Author:

Paul Sylvester | Date:

Monday, October 22, 2007 at 5:42AM |

Wired has an interview with Robert Anderson, a hacker-for-hire who went to work for the MPAA, illegally breaking into BitTorrent trackers and snooping on their email:

According to Anderson, the MPAA told him: "We would need somebody like you. We would give you a nice paying job, a house, a car, anything you needed.... if you save Hollywood for us you can become rich and powerful..."
But once Anderson turned over the data and cashed the MPAA's check, he quickly realized that Garfield had no further use for him. "He lost interest in me," he says. Anderson felt abandoned: During negotiations with Garfield, the hacker had become convinced he was starting a long-term, lucrative relationship with the motion picture industry. "He was stringing me along personally."
Hollywood's cold shoulder put Anderson's allegiance back up for grabs, and about a year later he came clean with TorrentSpy's Bunnell in an online chat. "'I sold you out to the MPAA,'" Anderson says he told Bunnell. "I felt guilty (for) what happened and I kinda also thought at that point the MPAA wasn't going to do anything."
Link

I thought people would like to read the interview also!! Enjoy

Post a Comment | in

Illegal Activities,

MPAA,

Uncategorized

Sunday

Oct142007

Teenager claims to have easy iPod Touch jailbreak

Author:

Paul Sylvester | Date:

Sunday, October 14, 2007 at 4:27PM |