msgbartop
Unmask Parasites - Check your web pages for hidden links, iframes, malicious scripts, unauthorized redirects and other signs of security problems.
msgbarbottom
Loading site search ...

The Crocodile Hunter Meets Badware in the Wild

01 Oct 12   Filed in Hosting+Security, Tips and Tricks with Comments Off

October is a cyber security awareness month so lets start it with the most hilarious web security awareness video I’ve ever seen.

It is brought to you by StopBadware.org and Bluehost.
Continue »»

Tweet Week: August 22-28, 2011

29 Aug 11   Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

TimThumb attacks, We Stop Badware Host program, blog scrapers, Apache DOS and workaround »»

Two Tweet Weeks: August 8-21, 2011

22 Aug 11   Filed in Tweet Week with 1 Comment

Selected short messages and links you might have missed if you don’t follow me on Twitter.

TimThumb attacks, program for responsible hosting providers, analyses of black hat SEO campaigns, osCommerce tips, 4 years of Safe Browsing data »»

Two Tweet Weeks: July 25 – August 7, 2011

08 Aug 11   Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

Crisis in Fake AV industry, story about incompetent security auditor, zero-day in WordPress themes, osCommerce hack, and many more »»

Two Tweet Weeks: May 30 – June 12, 2011

13 Jun 11   Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

SEO poisoning, Mac FakeAV vs PC FakeAV, the state of badware report, Readable SafeBrowsing addon …

Unmasking “Canonical” Hacks

22 May 11   Filed in Unmask Parasites with Comments Off

As a follow up to the recent Matt Cutt’s tweet and blog post about emerging rel=canonical hacks, I did a detailed guest post on StopBadware blog about this problem.

In that article, I wrote about how such hacks work and how cyber-criminals can use this hard-to-detect attack to hijack search results of compromised sites. You can also find a short review of a real “rel=canonical” attack that affected quite a few websites.

As always, I wrote about tools and techniques that can help you diagnose hacks that try to make Google think that your site has moved to a new domain name. Unfortunately, at this point no tools that I know of specifically check for rogue “rel=canonical” instructions. However, more universal file integrity monitoring solutions can be really efficient as they will inform about any unexpected modifications.
Continue (how Unmask Parasites reveals rel=canonical hacks) »»

Tweet Week: March 14-20, 2011

21 Mar 11   Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

Best practices for hosting providers, security statistics, basicpills in WordPress, Rustock, phishing …

Tweet Week: January 17 – January 23, 2011

25 Jan 11   Filed in Tweet Week with 1 Comment

Selected short messages and links you might have missed if you don’t follow me on Twitter.

Google’s anti-malware and webspam efforts, StopBadware asks for your comments, FileZilla trick, etc.. »»

Two Tweet Weeks: January 3 – January 16, 2011

18 Jan 11   Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

Black-hat SEO campaigns, PDF dangers, etc.. »»

Tweet Week: November 15-21, 2010

22 Nov 10   Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

StopBadware’s new initiative, Adobe Reader X, osCommerce under attack, … »»