* Posts by ilago

15 publicly visible posts • joined 17 Mar 2008

Does F-Secure's antivirus turn a blind eye to spook spyware? CEO hits back


Sony CD Rootkit

I could be wrong but I seem to recall that F-secure was one of the only AV companies that published information and detected the dodgy Sony CD Rootkit. Mark Russinovich published his work on it at about the same time. It quite a while ago now, but the info should still be available.

It was later revealed that the big AV corporations and Microsoft had known about it all along and done SFA because it was part of Sony's DRM.

F-Secure have routinely published detailed research information about various forms of criminal oriented malware. They are one of the few AV companies that I'd believe on this issue if they comment at all.

US prof undermines foundations of Aussie firewall


This is idiotology

When was an idealogical commitment to free speech a bad thing? Free speech is the underpinning of western democracies. China, Iran, Saudi Arabia, UAE, Maynmar, North Korea are the only comparable systems of censorship. The system proposed is not trivial and is certainly not suitable for a democracy.

There is no substantial body of indpendent, peer reviewed academic work to support the proposition that ".. people viewing pornography" suffer harm, let alone long term harm. If any such thing existed, the proponents of these schemes would be trumpeting wouldn't they?

Child abuse and child pornography is already illegal and is a law enforcement issue. The children harmed in the production and distribution of child pornography are not going to helped at all, ever, by censorship. I have no issue with parents controlling the internet access of their children. That is their decision as responsible parents.

It is the opinion of a small group of people that find the idea of pornography offensive that all adults should unable to view this material and decide for themselves. If you don't want to view pornography, make an adult decision and stop looking. It's a small step from a narrow view of pornography to political information becoming offensive and not suitable for adults.

Is the internet going down down under?

Black Helicopters

Australia is not very impressed

Australia has had a procession of luddites as Minister for All Things Digital for years and years. At least the last one wasn't dumb enough to try and pull this off. It appears that there is no MP or Senator with a significant grasp of technology to even understand the objections. First they think it will work. Second they seem to be bowing to pressure from very small but vocal pressure groups. The last government provided a net filter free to anyone that wanted it. Around 100,000 were downloaded. Apparently nobody wanted it, so they decide to do this instead.

The "blacklist" is secret. There is no public or Parliamentary scrutiny of the "blacklist". The "blacklist" is exempt from Freedom of Information.

The working group putting this together has no member of any civil liberties or consumer group on it. It's entirely composed of organisations that already agree, public servants and industry groups. The general public don't have a seat, but Microsoft and Google get one each WTF???

The wider implications of the government having sufficient resources to carry out wholesale censorship just like China, Iran and North Korea seem to have escaped their attention.

Phorm losses shoot up by half


@Link? By JCL

This site does some testing of your connection to see if it's clean.


This site is working on detecting proxy servers in the connection


Houston, we have a virus


@ Kanhef

"Alternative operating system that they'd have to make sure that Linux would install and run properly on every computer system."

What an irresponsible attitude. They should have been making sure that Windows was equally well tested.

Regardless of the operating system selected, shouldn't this have been part of their testing and compliance procedures? Any risk assessment for a computer system should have included that Windows is subject to malware infections at a rate exponentially higher than any other operating system. It's not as though it's a state secret or anything.

ISPs laud their data pimping services but refuse to use them


There is no such thing as completely anonymous data

The Netflix de-anonymiser technology demonstrates this perfectly. The algorithms can be applied to any set of "anonymous" data, small datasets and quite large datasets.


The promises of NebuAd, Phorm and their spyware related associates are not just empty they are deceitful. Liars, liars, pants on fire!!!!!

Microsoft fights gaming Trojan menace


@ Dr. Vesselin Bontchev

USB thumb drives/flash drive can indeed autorun and be infected from a computer they are plugged into. For example Trojan.Autorun.US can autorun from a USB drive and Kavo and Win32/NSAnti.H can infect a USB drive from a computer. There are many more. Perhaps trawl a few malware removal sites.

Tumble dryer bites woman in Weston-super-Mare


Isn't it great...

That Microsoft don't make household whitegoods......yet

FTC wants to hit the spyware guys where it hurts


But NebuAd and Phorm are OK????

Phorm have form as 121Media, peddlers of forced advertising rootkits. NebuAd have a close association with Gator/Claria/Gain as spyware and they're OK?

Shame the FTC didn't get round to this before. Still better late than never. Now for their definition of spyware.

Oz carrier Primus blitzed by DDoS attack


@ Shaun

All ISPs in Australia offering ADSL2+ have their own DSLAMs installed in Telstra exchanges. Telstra is our ex-government phone system given away to "privatisation". They do still own the poles and wires and they do run a wholesale and a retail division with separation by regulation. Telstra are the biggest phone provider with their Bigpond ISP giving the most expensive broadband with tiny download allowances. Their smallest broadband plans are 256kbps with 200MB allowance. Widely disliked by geeks and techs. Whirlpool is not representative of the entire community :(

How ComScore can track your mouse clicks


ComScore is listed in Add/Remove

Ben Edelman is one of the most respected spyware researchers in the USA.

It is spyware. I regard it as being as bad as the likes of Gator in that they store personally identified data. Not quite as bad as the range of malware that the big malware removal forums deal with. They are not usually particularly sneaky and someone has probably deliberately installed it even if they weren't aware of all the ramifications.

Details of the installation and removal are here http://www.spywaredb.com/remove-marketscore-internet-accelerator/

No you don't get your data and privacy back.

Microsoft and Yahoo! renew their marriage talks


The Developers

Yahoo has Zimbra, the only viable competition for MS Exchange Server and a lot of other open source and/or *ix based stuff. Yahoo don't currently use Microsoft products and have a lot of developer talent. Maybe in areas that Microsoft can't get a toehold in because of their sheer size. They don't just want a search engine.

Creative threatens developer over home-brewed Vista drivers


He wasn't selling them

He was asking for donations to support the hours of work he had put into Creative over, what seems to be, many years. He had been modifying their drivers with their knowledge for some time if you read the thread (don't bother)

It would appear that his drivers were enabling features that Creative had deliberately crippled. There is no excuse for this sort of behaviour from any hardware supplier.

There's also something seriously dodgy about this where Creative appear to be charging for Vista software other than drivers for many cards.


The Creative forum thread is now over 2200 posts and 227 pages.

Phorm agrees to independent inspection of data pimping code


You can check if your browser has the necessary

"Just by visiting this page, your web browser is participating in our experiment. We are detecting whether some "party in the middle" is modifying a set of test web pages, and the results of the tests are shown below. If you do not see a "change found" message below, then we did not detect any modifications to the test pages. For more information on how the tests work, see below."


It should demonstrate if your browser request has been intercepted. I can't check, I'm in the wrong country

Top security firm: Phorm is adware

Thumb Down

Phorm's interception works at hardware level

...at the first hop so users cannot avoid it by using the normal tools at their disposal. Neat!!

"We've built the system from the ground up with privacy in mind. We don't know who you are or where you have been - that's something other targeted ad providers would struggle to claim."

The history of the company does not support a new-found enthusiasm for the rights of users. Phorm (aka 121Media) has massive expertise on forced and unwanted advertising. Many volunteer malware removers spent 1000s of hours removing PeopleonPage, ContextPlus and the Apropos rootkit from the machines of users that didn't want it, or need it, but could NOT remove without assistance.

Any interception of the communications between the ISP and their customer is Private and Confidential information that should not be in the hands of a known commecial rootkit developer.