Posts tagged ‘malware’

Apple: Too little, too late?

[tweetmeme source=”bambismusings” only_single=false]Newest MacDefender installs without password (Fran’s Computer Services blog)

Read it and weep … part of it is not just for Mac users either…the spammers/scammers have a new URL shortening scheme that will make all Fake AV easier to get infected by for both PCs and Macs.

Nice to see Apple doing the right thing!

[tweetmeme source=”bambismusings” only_single=false]Over at Fran’s Computer Services blog, there is an article entitled “New Mac Malware – Is Mac no longer safer?” about the Mac Defender malware and how Apple has now done the right thing and will be taking care of it, not only by helping users clean up their Macs by providing the removal instructions in a Support document on their Apple support website, but they will also be putting out a programs to automate the process soon. In the blog posting above, there are links to various articles from the start of this fiasco till now when Apple has not only admitted that the malware exists, but is taking steps to help their users.

Nice to see them doing the right thing. Even Microsoft does that regarding malware on Windows.

Microsoft decision puts public libraries at risk

Microsoft decision puts public libraries at risk by Yardena Arar in the Newsletter this week notes:

Millions of Americans depend on libraries, Internet cafés, and other public locations for their connection to the Internet, and keeping these points of access safe from hackers is especially difficult.

This is very sad news indeed. SteadyState support was in the Windows 7 betas, and of course there is still support in Vista and Windows XP.

As noted in the article, 77 million Americans used a library computer or Wi-Fi network to access the Internet last year. That’s a lot of computers that will likely not be upgraded to the new Windows 7 due to lack of SteadyState support due to the added cost of using third party software — particularly to Libraries that are already strapped in this economy — since Windows 7 would not afford the same protection against malware, changes to the system, hard drive, software, sites, etc. that SteadyState has been providing.

So it would appear that Microsoft is turning on its own founders’ mission:

SteadyState is descended from the Public Access Computer security software developed in the early 2000s by the Bill and Melinda Gates Foundation. It was part of the foundation’s ongoing drive to put computers into schools and libraries.

Talk about egg on the face of the the Bill and Melinda Gates Foundation. Sad.

Rogue Flash ads pushing malware

Sunbelt Blog posted an article entitled Rogue ads pushing malware – how it works. Here’s the video that shows what’s happening:

At Sunbelt Blog’s website, Alex Eckelberry continues to talk about the Flash .swf ads that are being used to push all this malicious content after throwing the user back and forth all over the web utilizing techniques that are big with Web2.0 interactive and mashed up content:

This is not a trivial problem, and the most important thing for publishers to do is to be extremely careful when accepting new advertisers (and be wary of tricks these people use, like giving fake references), and then keep a close eye on the advertising as it’s running (and hopefully some good tools can be developed for publishers to use to check the content of ads for malicious redirects before posting).

Must read for all Web Surfers.

Legitimate sites like the Major League Baseball site that had at one time recently been unknowingly spewing this type of bad content which was infecting visitors’ computers (see the article) were just trying to keep their visitors/users interested using innovative Web 2.0 features — bringing in and displaying, aka Mashup (web application hybrid) content such as articles, news, videos, ads and more from various sources on the Internet. In the process, something occasionally happens on these legitimate sites. Bad things are being injected.

Thanks for the heads up Alex!

Tag Cloud

%d bloggers like this: