Web blog d'un ingénieur en sécurité informatique. IT Security watcher's blog: news, threats analysis, AV issues, PoC, IT security, bugs... Contact: philippe.vialle@wanadoo.fr
I would believe we are back to Win 9x systems fashion, when adwares used to be legion (at least, in proportion compared to global threats trends at this time). But this case seems to concern any Android OS from 1.6 to 2.x, much more modern systems......
Lire la suite
A bit strange, isn't it, that alert from Certificate patrol? This came up while accessing Facebook with Firefox... Well, that would mean Facebook rolled back their HTTPS certificate, to re-use a former one, issued on November 2010... Why so? no real clue......
Lire la suiteQui a dit que cela n'arrivait pas à tous les fournisseurs de service ? GMail ne fait pas exception à la règle. Bien que le Copyright sur la page date de 2008, le message lui, date bien de 2011 ! (je n'avais pas eu l'occasion de le poster). Attention donc...
Lire la suite
Il y a peu, en démarrant la machine, Kaspersky a affiché des avertissements et la session ne se chargeait plus correctement (pas complètement). Voici tout d'abord les infos de version du produit, pour savoir de quoi il est question : Ensuite, le message...
Lire la suiteL'avertissement est, je pense, suffisamment explicite ! Mais où se cache le HTTPS ? Solution possible : utiliser HTTPS EveryWhere dans Firefox...
Lire la suiteFirst I thouht this was like regular spam, and something close to Viagra (and others...). But, in the end, no... The contact told me his "mail account" had been stolen, whereas I do believe his computer has been compromised (and then, the bad guys used...
Lire la suiteWarning. If you access your Facebook profile, from your cellphone, without using the "facebook app", you'll most likely be redirected to: m.facebook.com. The problem is that HTTP is being used when you send your email address and password over the network,...
Lire la suiteYes, a bit surprising, but yeah, even Google...! I'm talking about the classical GMail interface, which is still regular (the new one has not yet been put as a standard...) While trying to reply to an email, or even write a new one, here is the warning...
Lire la suite
This malware did succeed to install itself on the following configuration: - Win7 64 bits, fully-patched - KAV 2011 - user account not administrator (account switch using UAC) - Opera 11.52 up-to-date I was just surfing... Therefore I do believe it is...
Lire la suiteJust to say that the Opensource world does manage to provide tools being able to filter spams according to a sender's reputation. Below a few (daily) stats that I have on a messaging server, running: - Debian fully-patched - SpamAssassin and Exim4 (with...
Lire la suite