Pondus
4881
polonus
4882
Cybercriminal skimmers find creative solution: creditcard data hidden inside image:
https://blog.sucuri.net/2016/10/magento-credit-card-swiper-exports-image.html
Scan your webshop that has Magento here to be alerted to insecurity: magereport.com/scan/?s=
We see that the so-called Willem de G. list made some researchers look a bit sharper for e-commerce siteās insecurity.
All reported to Google Safe Browsing that cooperates firmly with Sucuriās.
polonus (volunteer website security analyst and website error-hunter)
Asyn
4883
Tens of millions of websites at risk in latest mega breach
https://www.leakedsource.com/blog/weebly/
WTF >:(!!! For one of my uni papers at my institute uses weebly as a source for giving us (students) lecture notes, notices, timetable, and etc etc. I will pass this info to my uni IT support and let them know. Thanks Asyn for posting this
DavidR
4885
Interesting when WOT doesnāt trust/like leakedsource.com.
One thing for sure when I come across sites like this there is absolutely no way I would check user name and passwords. As soon as you do that you have pretty much compromised your information and canāt/shouldnāt use that data again.
Who would trust that the data wouldnāt be harvested, certainly not me and Iām a trusting sort NOT.
I wonāt even use sites to check the strength of my passwords, for the very same reasons.
polonus
4886
Hi DavidR,
Striking again that a Russian source seems to come with a bad web reputation,
lots of that demonizing going on lately.
The leakedsource dot com organization is into data harvesting, so it sits on big pile of cloud data.
At the moment for whatever reason there is a concerted action going on to make Russia look like the evil empire of cyberwarfare?
In this case: JSC DBA RU-CENTER, privacy protection service.
Comodo Certification - PositiveSSL Multi-Domain,Domain Control Validate seems OK.
What is CloudFlareās role in all this.
The bad side of it all is that CloudFlare seems indifferent to what they have in that cloud traffic they are facilitating.
The good, the bad and the ugly as long as it brings them big profits.
Big data cloud security is bad.
For the majority of big enterprise do not have protection as it should be implemented.
This will not be the last of such big data-breaches, where and when we may find them.
polonus
Pondus
4888
Locky Adds Support for a New āS**Tā Extension
Security researcher MalwareHunterTeam tells Softpedia that the infamous Locky ransomware has returned today with a new spam campaign thatās spreading a new version of the ransomware.
http://news.softpedia.com/news/locky-adds-support-for-a-new-s-t-extension-509588.shtml
polonus
4890
There are being warnings given out about a new spam botnet.
Important is the advice that shortened urls in an e-mail should always be frowned upon as suspicious.
Do not click such links.
Here is the information link given on a Dutch news forum, use Google translate to be able to read on this new spam botnet:
https://www.security.nl/posting/490176/Nieuw+spam+botnet%3F
Be aware of the obfuscated 146&ā¦ look out for patters like e.g. 146&AGTfVq or 146&cc4by etc. in the URL address link.
This could create a handle for blocking this smut-spam
with domain names found to be like:
-hookupclub4[.]com
-flirthookup5[.]com
-flirthookup6[.]com
-flirthookup4[.]com
-claimyourprize2[.]com
-claimyourprize1[.]com
-Info credits here go to : SecGuru_OTX & NSG
polonus
@Asyn: Itās all good. The IT department at my uni, they knew about this problem and had already taken precautions. Thanks again 
polonus
4892
Trying to halt Mirai through a security hole: https://www.invincealabs.com/blog/2016/10/killing-mirai/
link author = Scott Tenaglia.
pol
polonus
4893
Effective regular expression to be used against new spam botnet:
/[a-z]+\.php\?[a-z]\=146\&[\w]+\=[\w]+\&J9p\=[\w]{3}\&/
Spambot linked to SEO Spam and social media abuse, zie https://www.mywot.com/en/scorecard/urlrate.net?utm_source=addon&utm_content=popup
The important Joomla update seems almost too late for mentioned website, re: code error: undefined function window.addEvent ā htxp://tivaen.com/templates/ZAjax_Temp/js/roksortable.js
info credits security.nl anonymous posts 25-10-2016, 01:05 & Yesterday, 21:28
Remarkable is that people who have ISP mail accounts with good and decent working spam filters might not see it
or may get it only as junk mail ready to be deleted. I for instance have not seen these mails with obfuscated shortened url link spam.
pol
Asyn
4896
polonus
4897
Grand scale attacks on outdated Joomla almost a certainty. according to Sucuriās:
https://blog.sucuri.net/2016/10/joomla-mass-exploits-privilege-vulnerability.html
This is so for those who havenāt found this Joomla update icon yet:
https://docs.joomla.org/Where_is_the_auto_update_for_Joomla%3F
polonus
P.S. How to block malicious account creation for vuln. Joomla: https://github.com/fcoulter/accountblocker
Pondus
4898
DavidR
4899
I think that when the IoT (idea) came into being there was little or no thought given to security.
There is no way I would give internet access to a bloody fridge, etc. I have a so called Smart TV (and that is over 7 years old) and there is absolutely no way I would hook it up to the internet.
bob3160
4900
I have a chrome device hooked into one TV and enjoy some of the smart things available on the new āsmart TVā.
Different strokes for different folks.
