Overblog Tous les blogs Top blogs Technologie & Science Tous les blogs Technologie & Science
Suivre ce blog Administration + Créer mon blog
MENU

Le blog sécurité de Philippe Vialle / Phil Vialle's blog

Web blog d'un ingénieur en sécurité informatique. IT Security watcher's blog: news, threats analysis, AV issues, PoC, IT security, bugs... Contact: philippe.vialle@wanadoo.fr

Publicité

Android ad-ware case study

Android ad-ware case study

I would believe we are back to Win 9x systems fashion, when adwares used to be legion (at least, in proportion compared to global threats trends at this time). But this case seems to concern any Android OS from 1.6 to 2.x, much more modern systems......

Lire la suite
Publicité

Facebook HTTPS certificate rollback?...

Facebook HTTPS certificate rollback?...

A bit strange, isn't it, that alert from Certificate patrol? This came up while accessing Facebook with Firefox... Well, that would mean Facebook rolled back their HTTPS certificate, to re-use a former one, issued on November 2010... Why so? no real clue......

Lire la suite

Déni de service GMail

Déni de service GMail

Qui a dit que cela n'arrivait pas à tous les fournisseurs de service ? GMail ne fait pas exception à la règle. Bien que le Copyright sur la page date de 2008, le message lui, date bien de 2011 ! (je n'avais pas eu l'occasion de le poster). Attention donc...

Lire la suite

Erreur de mise à jour Kaspersky, menant au plantage...

Erreur de mise à jour Kaspersky, menant au plantage...

Il y a peu, en démarrant la machine, Kaspersky a affiché des avertissements et la session ne se chargeait plus correctement (pas complètement). Voici tout d'abord les infos de version du produit, pour savoir de quoi il est question : Ensuite, le message...

Lire la suite
Publicité

Viadeo rappelé à l'ordre par Trusteer...

Viadeo rappelé à l'ordre par Trusteer...

L'avertissement est, je pense, suffisamment explicite ! Mais où se cache le HTTPS ? Solution possible : utiliser HTTPS EveryWhere dans Firefox...

Lire la suite

New fake AV, spreading over email (GMail...)!

New fake AV, spreading over email (GMail...)!

First I thouht this was like regular spam, and something close to Viagra (and others...). But, in the end, no... The contact told me his "mail account" had been stolen, whereas I do believe his computer has been compromised (and then, the bad guys used...

Lire la suite

Facebook mobile: HTTP & password theft (m.facebook.com)

Warning. If you access your Facebook profile, from your cellphone, without using the "facebook app", you'll most likely be redirected to: m.facebook.com. The problem is that HTTP is being used when you send your email address and password over the network,...

Lire la suite

Firefox 8.0 non compliant with GMail

Firefox 8.0 non compliant with GMail

Yes, a bit surprising, but yeah, even Google...! I'm talking about the classical GMail interface, which is still regular (the new one has not yet been put as a standard...) While trying to reply to an email, or even write a new one, here is the warning...

Lire la suite
Publicité

New fake antivirus, quite dangerous!

New fake antivirus, quite dangerous!

This malware did succeed to install itself on the following configuration: - Win7 64 bits, fully-patched - KAV 2011 - user account not administrator (account switch using UAC) - Opera 11.52 up-to-date I was just surfing... Therefore I do believe it is...

Lire la suite

Antispam: opensource IP reputation filtering tools & stats...

Just to say that the Opensource world does manage to provide tools being able to filter spams according to a sender's reputation. Below a few (daily) stats that I have on a messaging server, running: - Debian fully-patched - SpamAssassin and Exim4 (with...

Lire la suite