July 21, 2010

[zdnet.com] Adobe adding ’sandbox’ to PDF Reader to ward off hacker attacks

[h-online.com] Mozilla releases Firefox & Thunderbird security updates – 14 security issues addressed in FireFox update

July 22, 2010

[badwarebusters.org] There is a malware attack that only affects sites built with Soholaunch (affected sites via Google diagnostics)

Updated my list of Gumblar zombie URLs – now 1125 items

July 23, 2010

[milestone] 750,000 web pages checked by Unmask Parasites http://www.UnmaskParasites.com

[h-online.com] vBulletin divulges MySQL login – version 3.8.6 is vulnerable

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

July 12, 2010

A lot of WordPress blogs on RackSpace Cloud are still hacked

July 13, 2010

Someone promotes shoponline2011 site via Image search spam. Check Alexa traffic details

July 15, 2010

Just found an #nginx site that redirects search traffic to scareware sites. Previously, such hacks were limited to Apache (mainly)

@baldown Good point. I forgot about this config where nginx is just a reverse proxy for Apache. Thanks.

July 16, 2010

WordPress Redirect Exploit (on MediaTemple)  and suggested clean-up (redirect to qooglesearch .com)

If http://www.UnmaskParasites.com reports script from “ae.awaue .com” for your WP blog, check this

[netcraft.com] Firefox security test add-on was backdoored

July 17, 2010

[forbes.com] “Millions” Of Home Routers Vulnerable To Web Hack

RT @gcluley: Video and detailed analysis of new zero-day Windows .LNK shortcut vulnerability (via @ChetWisniewski)

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

June 28, 2010

added some more hijacked subdomains (rogue DNS records of legitimate domains) – it’s definitely a trend

Updated my list of Gumblar zombie URLs – now 1,000+ items. Analysis will follow soon.

Another SQL injection attack against ASP(.NET) sites. – thousands of affected sites.

@peterkruse told me that SQL injection attack was Asprox. Indeed, M86 Security described this very attack here

June 29, 2010

via @briankrebs : There’s a critical security update for Adobe Reader – but the update process is somewhat “tricky”

[h-online.com] Google integrates safe PDF viewer in Chrome – Adobe Reader may become unneeded one day

June 30, 2010

just decoded a malicious PHP code. It had 20 !!! levels of obfuscation!!! What an overkill and waste of CPU!

RT @mattcutts: Webspam projects in 2010? – what projects do you think Google webspam should work on in 2010+?

RT @JohnMu: Loving the new http://waybackmachine.org/ — try it out with one of your old sites :)

July 1, 2010

[blog] Happy 2nd Birthday, Unmask Parasites! + comparison of the 1st and the 2nd years. Steady growth :)

[h-online.com] Trojan attacks now almost solely from legitimate websites - only 1% of threats come from adult sites

July 2, 2010

[securityweek.com] New Tool Reveals Internet Passwords – trojans can use such tricks too. Do you save passwords in IE?

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

June 22, 2010

RT @mattcutts: New webmaster video: How do you protect your blog from hackers? – mostly about WordPress

June 24, 2010

[h-online.com] Firefox 3.6.4 adds crash protection, fixes vulnerabilities – not all vulnerabilities are fixed though

[status.mosso.com] Status update from RackSpace on the recent attack against WordPress sites

June 25, 2010

[h-online.com] Adobe brings forward security update for Reader – to be available on June 29

June 27, 2010

[status.mosso.com] new status update from RackSpace on their recent security incident

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

June 14, 2010

RT @briankrebs: A security heads-up for Microsoft XP users

June 15, 2010

More on RackSpace case: Backdoor scripts in WordPress mySql tables via @mvandemar

RT @briankrebs: Keylogger posts stolen data for world to see at pastebin.com

updated my post about RackSpace with info about the backdoor script in wp_options table

June 17, 2010

WordPress 3.0 has just been released.  Is your blog ready for this major update?

June 18, 2010

secure file and directory permissions on RackSpace Cloud – 600 and 700 are almost always the best choice

[wordpress.org] My summary of the RackSpace WordPress issue

June 19, 2010

[wordpress.org] some new details about the RackSpace WordPress issue

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

May 31, 2010

[milestone] Just approved 1,000th comment on my blog http://blog.unmaskparasites.com

[fbi.gov] “Scareware” Fraud Scheme That Caused $100 Million in Losses to Internet Victims Worldwide

June 1, 2010

Updated my list of Gumblar zombie URLs – now 835 items. And the list of hijacked subdomains

June 3, 2010

reddit discussion on permissions of PHP files – 644 or 600?

Disposable VMs in QubeOs – single-use single-purpose VMs = improved security

June 4, 2010

Another interesting discussion about how Google image search is actively abused by hot-linkers

[zscaler.com] 300% Increase In Malicious JARs – make sure Java on your PC is up-to-date

[zscaler.com] Spam SEO: Use of Java/Flash leads to more dangerous exploits

June 5, 2010

RT @briankrebs: Adobe warns that hackers are targeting a previously unknown flaw in Flash Player, Reader and Acrobat

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

May 24, 2010

via @briankrebs Revisiting the Eleonore Exploit Kit – new stats on browser vulnerabilities

May 26, 2010

Updated my list of Gumblar zombie URLs – now 785 items

May 27, 2010

[4sysops.com] Scan your website for malware with free tools – 4 tools reviewed, including Unmask Parasites

May 28, 2010

There had been malware problems with Bidvertiser and sites using their ads may be blacklisted

May 30, 2010

[sophos.com] Phishing – Alive and kicking – hijacked DNS used by phishers

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

May 17, 2010

Google Internet Stats – collection of the latest industry facts and insights.

May 19, 2010

jnlcom.com’s adserver is infected with malware. If you are running their ads the chances are your site is blacklisted by Google.

May 22, 2010

Slashdot discussion of my “Malware on Hijacked Subdomains, a New Trend?” article – do you have anything to add?

@nrathaus At this point none of the known rogue subdomains is blacklisted by Google. But Norton blocks whole domains

GoDaddy security tips – account security, anti-phishing, etc.

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

May 10, 2010

Completed the Jarlsberg codelab from Google Code University. Insightful. Found some alternative attack vectors.

May 11, 2010

[pcmech.com] Check If Your Website Has Been Hijacked – about Unmask Parasites

May 12, 2010

[h-online.com] XSS vulnerability fixed in Drupal module Context – update if you use it

May 15, 2010

RT @mattcutts: Good article at about the GoDaddy/WordPress hacking. I fear it’ll get worse for people on lax webhosts.

Follow up on the GoDaddy/WP security issue by @mvandemar – So who is using outdated WordPress?

May 16, 2010

see a lot of web spam on compromised Moodle (e-learning) sites all over the world.

[Moodle] Some examples: 1 2 3 (plus many many more) – check the redirects and the highlighted keywords

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks

May 3, 2010

New Unmask Parasites testimonials – Thanks! If you like Unmask Parasites, consider writing your testimonial too.

May 4, 2010

[hackademix.net] Bug in Ubuntu 10.04 Crashing Your Desktop via Firefox, NoScript

[milestone] 100,000 suspicious web pages detected by Unmask Parasites http://www.UnmaskParasites.com/

Google Code University: Web Application Exploits and Defenses

May 6, 2010

Google calls for for webspam reports in Thai, Indonesian, Romanian, Czech and Farsi

May 7, 2010

Updated my list of Gumblar Zombie URLs – now 725 items

If you want more real-time experience, you can follow @UnmaskParasites on Twitter.

Related posts:

• Previous Tweet Weeks