Old phish becomes new again

According to some reports, this phishing has started up again and is now changed a little web address and when you go to the site it looks like:

Twitter Phish spam

[ad#ad2-right]If you sign into this website with your twitter account information, it sends out a Direct message with these links in them rosalierebyb.blogspot.com redirects to http://twittyblog.access-logins.com/login and the only way you can fix this is to CHANGE YOUR PASSWORD.

I’d also suggest getting a password manager so if you use just one password for all accounts you will easily be able to change them and make the passwords much harder to hack. You do not want your passwords stolen do yo? I suggest Roboform it works really well with password management.

Antivirus Professional 2008 uses Scare tactics

[ad#ad2-right-1]

We came across a rogue today called Antivirus Professional 2008 that uses GeoIP Lookup as part of its scare tactics. This site uses Flash and script to create the effect of an online scan, that then attempts to push an installer at the visitor. The NoScript extension for Mozilla Firefox is an excellent way to mitigate against this kind of garbage.

[Via F-secure]

It seems that there is a site out there, that seems to be trying to scare you into downloading there software. If you have any questions about this site please feel free to check out what I’ve found out:

Registration Service Provided By: ESTDOMAINS INC
Contact: 1.3027224217
Website: http://www.estdomains.com
Domain Name: ANTIVIRUS-ONLINE-SCANNER.COM
Registrant:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732
Creation Date: 07-Jun-2008
Expiration Date: 07-Jun-2009
Domain servers in listed order:
ns2.antivirus-online-scanner.com
ns1.antivirus-online-scanner.com
Administrative Contact:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732
Technical Contact:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732
Billing Contact:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732


[ad#ad2-right]Now as you can see this site is located in Russia, and if that’s the case it is probably some virus itself to take control of your system to do what they want with it. So you best advice is if you think you have a virus then check out my recommendations these are all free to download and try. Unlike this site, they are legitimate and actually do what they promise.  If you want to email them you can but It don’t think it will help.

*UPDATE on that Website*

According to F-secure that site is now Suspended.  Great job guys.  We are now fighting these people even better than I’d thought.

Does your DNS still have flaws?

Late the week, I’ve had some concern with the DNS flaws with my ISP.  So I’ve change to another DNS.  So I went and did a test at:

Doxpara

So what does this mean when it says I might be at risk?

Very simple, your DNS provider is not randomizing the ports.  I’ll get to that in a bit.

What is DNS?

The DNS is like a big Phonebook to where you tell it who you want to call, in this case go, and it finds the numbers and takes you there.  It’s like telling a cab driver where you want to visit, just like telling the cab driver to come to my site.  When you enter http://www.paulstechtalk.com into your browser, your telling DNS to go fetch the ip and direct your connection to this site.

So how can I fix this flaw?

Simple, You will need to direct yourself to OpenDNS.  Has Fixed the flaw to help protect you.  How do you use it?  You will tell your system to direct all the DNS queries through that then your ISP DNS.

[ad]

So by using the openDNS, you will be bypassing the DNS flaws that you might of have. If you want to use that DNS server go to there website and it tells you step by step on how to do it with your own system.

The Nice thing about OpenDNS is they have so many features,  You can prevent phishing, adult sites, Domain blocking, and much more.  If you use this, you can prevent you kids from getting on the sites that you don’t want them to get on.  It lets you have control over what you want to do.  I recommend people to use OpenDNS.

What’s the DNS flaw?

http://en.wikipedia.org/wiki/DNS_cache_poisoning

I can’t explain it but maybe this can.  If you want to diqus this in the community you can go to:

Technology Community Page


Use OpenDNS


[ad]