StopBadware | Unmask Parasites. Blog.

Loading site search ...

The Crocodile Hunter Meets Badware in the Wild

01 Oct 12 Filed in Hosting+Security, Tips and Tricks with 0 Comments

October is a cyber security awareness month so lets start it with the most hilarious web security awareness video I’ve ever seen.

It is brought to you by StopBadware.org and Bluehost.
Continue »»

Tags: awareness bluehost StopBadware video

Tweet Week: August 22-28, 2011

29 Aug 11 Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

TimThumb attacks, We Stop Badware Host program, blog scrapers, Apache DOS and workaround »»

Tags: Apache counter-wordpress google kwizhveo.php phpMyAdmin StopBadware timthumb.php WooFramework WordPress

Two Tweet Weeks: August 8-21, 2011

22 Aug 11 Filed in Tweet Week with 1 Comment

Selected short messages and links you might have missed if you don’t follow me on Twitter.

TimThumb attacks, program for responsible hosting providers, analyses of black hat SEO campaigns, osCommerce tips, 4 years of Safe Browsing data »»

Tags: black hat seo BlackHole Firefox google k985ytv osCommerce StopBadware WordPress

Two Tweet Weeks: July 25 – August 7, 2011

08 Aug 11 Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

Crisis in Fake AV industry, story about incompetent security auditor, zero-day in WordPress themes, osCommerce hack, and many more »»

Tags: auditor FastFluxing Google Chrome osCommerce phpMyAdmin scareware StopBadware timthumb.php willysy WordPress

Two Tweet Weeks: May 30 – June 12, 2011

13 Jun 11 Filed in Tweet Week with Comments Off

Selected short messages and links you might have missed if you don’t follow me on Twitter.

SEO poisoning, Mac FakeAV vs PC FakeAV, the state of badware report, Readable SafeBrowsing addon …

Tags: black hat seo IPv6 Mac safe browsing scareware StopBadware

Unmasking “Canonical” Hacks

22 May 11 Filed in Unmask Parasites with Comments Off

As a follow up to the recent Matt Cutt’s tweet and blog post about emerging rel=canonical hacks, I did a detailed guest post on StopBadware blog about this problem.

In that article, I wrote about how such hacks work and how cyber-criminals can use this hard-to-detect attack to hijack search results of compromised sites. You can also find a short review of a real “rel=canonical” attack that affected quite a few websites.

As always, I wrote about tools and techniques that can help you diagnose hacks that try to make Google think that your site has moved to a new domain name. Unfortunately, at this point no tools that I know of specifically check for rogue “rel=canonical” instructions. However, more universal file integrity monitoring solutions can be really efficient as they will inform about any unexpected modifications.
Continue (how Unmask Parasites reveals rel=canonical hacks) »»

Tags: black hat seo canonical StopBadware