Slashdot Mirror

It may not be in your threat model, but it is to some Internet users. Have a look at this report for example: https://www.welivesecurity.com... The fact that other threat vectors are more likely to impact users does not mean that rarer cases should be ignored - they are not mutually exclusive.

Idiot unidentifiable anon trolls gave me guff for BLOCKING github in hosts (ESET noted threatvector https://www.welivesecurity.com... )!

* Just goes to show you they're either MORONS/DOLTS or malware makers/botnet herders themselves...

Want more e.g. of github hosting malware?

See See subject & https://securityintelligence.c... + https://www.bleepingcomputer.c... + https://www.bleepingcomputer.c... + https://www.bleepingcomputer.c... + https://www.bleepingcomputer.c... + https://www.bleepingcomputer.c...

P.S.=> The thieves & morons doing bots/malware = assholes & it is getting "outta control" on OpenSORES sites & yes, CLOUD HOSTING too (along w/s short-lived SPAM domains outta GoDaddy hosting providers allowing it CHEAP via "$1 unlimited domain/subdomain" stuff too)... apk

Idiot unidentifiable anon trolls gave me guff for BLOCKING github in hosts (noted threat vector by ESET https://www.welivesecurity.com... ) - just goes to show you they're either MORONS/DOLTS or malware makers/botnet herders themselves...

P.S.=> See subject & https://www.bleepingcomputer.c... of MORE examples of malware spread thru Github... apk

0.0.0.0 secao.org
0.0.0.0 ikmtrust.com
0.0.0.0 sysanalyticweb.com
0.0.0.0 lxwo.org
0.0.0.0 jflynci.com
0.0.0.0 remotepx.net
0.0.0.0 rdsnets.com
0.0.0.0 rpcnetconnect.com
0.0.0.0 webstp.com
0.0.0.0 elaxo.org

FROM https://www.welivesecurity.com...

* Block those in your hosts file to NULLIFY this threat...

APK

P.S.=> For the best hosts file:

APK Hosts File Engine 2.0++ 64-bit for Linux h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p (remove spaces between chars & download)

APK Hosts File Engine 10++ SR-1 32/64-bit for Windows https://hosts-file.net/?s=Down... (DL link @ bottom)

Soon for MacOS too (I just got a NEW Mac-Mini to port it there too)... apk

How are concrete examples I post exaggerated? FP?? Stupid, my program has a false positives list a user can tune themself in Linux (Windows has one but built in) too & users can EASILY edit & understand hosts files (like phonebook entries)... man, you are STUPID & repeat the same shit over & over MAKING ME LOOK GOOD blowing you away, every single time (thanks).

FINE GRAINED? Stupid, hosts use SPECIFIC targets, not randomblaster wildcarding that costs TONS to process (even users using my work say so dumbass), lol!

Users having COMPLETE control of hosts is as fine grained as it gets & easy to work with. Try that w/ regexp for non-pros in computing, lol - they'll think it's chinese.

APK

P.S.=> Ah, you ADMIT github hosts malware BUT I DIDN'T SAY IT - ESET/NOD32 did & I agree (it's fact) https://www.welivesecurity.com... & as usual? You look STUPID & LOSE again dumbo, lol... apk

0.0.0.0 patf.site90.net
0.0.0.0 site90.net
0.0.0.0 draqusor.hi2.ro
0.0.0.0 hi2.ro
0.0.0.0 hackingoriginal.ro
0.0.0.0 aridan.hol.es
0.0.0.0 hol.es
0.0.0.0 diicot.altervista.org
0.0.0.0 werwolf.altervista.org
0.0.0.0 altervista.org
0.0.0.0 sonic.do.am
0.0.0.0 prg.do.am
0.0.0.0 do.am
0.0.0.0 havijuu.pe.hu
0.0.0.0 pe.hu
0.0.0.0 status-ok.com
0.0.0.0 hagaipipko.net
0.0.0.0 javacdnupdate.com
0.0.0.0 linux-flavor.net

* SOURCE https://www.welivesecurity.com...

1 botnet used IP address ONLY (unusual - ICANN sinkholes those fast & I see 'upticks' in it lately - perhaps hosts made 'dents' in 'badguys': For it you need a firewall block rule OR wait out ICANN).

APK

P.S.=> For the best hosts file:

APK Hosts File Engine 2.0++ 64-bit for Linux h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p (remove spaces between chars & download)

APK Hosts File Engine 10++ SR-1 32/64-bit for Windows https://hosts-file.net/?s=Down... (DL link @ bottom)

0.0.0.0 patf.site90.net
0.0.0.0 site90.net
0.0.0.0 draqusor.hi2.ro
0.0.0.0 hi2.ro
0.0.0.0 hackingoriginal.ro
0.0.0.0 aridan.hol.es
0.0.0.0 hol.es
0.0.0.0 diicot.altervista.org
0.0.0.0 werwolf.altervista.org
0.0.0.0 altervista.org
0.0.0.0 sonic.do.am
0.0.0.0 prg.do.am
0.0.0.0 do.am
0.0.0.0 havijuu.pe.hu
0.0.0.0 pe.hu
0.0.0.0 status-ok.com
0.0.0.0 hagaipipko.net
0.0.0.0 javacdnupdate.com
0.0.0.0 linux-flavor.net

* SOURCE https://www.welivesecurity.com...

1 botnet used IP address ONLY (unusual - ICANN sinkholes those fast & I see 'upticks' in it lately - perhaps hosts made 'dents' in 'badguys': For it you need a firewall block rule OR wait out ICANN).

APK

P.S.=> For the best hosts file:

APK Hosts File Engine 2.0++ 64-bit for Linux h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p (remove spaces between chars & download)

APK Hosts File Engine 10++ SR-1 32/64-bit for Windows https://hosts-file.net/?s=Down... (DL link @ bottom)

0.0.0.0 patf.site90.net
0.0.0.0 site90.net
0.0.0.0 draqusor.hi2.ro
0.0.0.0 hackingoriginal.ro
0.0.0.0 aridan.hol.es
0.0.0.0 diicot.altervista.org
0.0.0.0 werwolf.altervista.org
0.0.0.0 altervista.org
0.0.0.0 sonic.do.am
0.0.0.0 prg.do.am
0.0.0.0 do.am
0.0.0.0 havijuu.pe.hu
0.0.0.0 pe.hu
0.0.0.0 status-ok.com
0.0.0.0 hagaipipko.net
0.0.0.0 javacdnupdate.com
0.0.0.0 linux-flavor.net

* SOURCE https://www.welivesecurity.com...

1 botnet used IP address ONLY (unusual as ICANN sinkholes those fast & I've seen an 'uptick' in it lately - perhaps hosts IS making a 'dent' in 'badguys': For that - you need a firewall block rule OR wait out ICANN).

APK

P.S.=> For the best hosts file:

APK Hosts File Engine 2.0++ 64-bit for Linux h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p (remove spaces between characters & download)

APK Hosts File Engine 10++ SR-1 32/64-bit for Windows https://hosts-file.net/?s=Down... (DL link @ bottom)

See subject & KODI malware from ESET listing github as the hosting threat - period/fact https://www.welivesecurity.com... - you lose.

* For such "limited scope" security? How come they were SO effective in this VERY PARTIAL LIST only vs. malware/botnets etc. https://news.slashdot.org/comm...

(Plus MANY security pros DISAGREE w/ you - shall I list them, OR would that "offend" a NOBODY unidentifiable ANONYMOUS troll like you, using FACT that always BLOWS YOU AWAY?)

APK

P.S.=> I didn't say new sites registered are mostly used for malware - the inventors of the VERY 1st ANTIVIRUS did (& yes, they're right) in GDATA https://www.gdatasoftware.com/... & I agree w/ them - I block them as they are discovered (very effective, see 2nd link above & I cover 5++ MILLION of them here - do you? Doubt it)... apk

I have a customizable falsepositive filter in my program users can setup even moreso for themselves (faster than addon updates by FAR & more control (you talked "fine grain"? That's as FINE as it gets, speaking AS A USER vs. programmer here).

It wasn't MY advice to block github - it was ESET's & they were right (github was allegedly unknowingly serving malware & who knows what other parts of it are that way too (I've seen this a LOT on those types of sites)) per https://www.welivesecurity.com...

* Wildcards are BLUNDERING DOLTS compared to hosts specific accuracy & COST MORE TO PROCESS by far (especially via regexp but any decent programmer doesn't need those or that weight & slow).

APK

P.S.=> You'll LOVE my "starwars" reply on hosts next (why not? I'm in a good mood)... apk

See subject: I reported FACT on KODI from ESET that proved github hosts malware so into hosts it went https://www.welivesecurity.com... & there is NO DENYING IT!

* ESET/NOD32 = correct.

See for yourself right on their own page in that link there - you lose as always, false accusation LIES as always from you that you now have to EAT YOUR WORDS on loser...

APK

P.S.=> Funny I can show DOZENS of REGISTERED USERS like/use/praise my work (not your notware, lol) https://search.slashdot.org/co... vs. UNIDENTIFIABLE ANONYMOUS LOSERS who harass/STALK & IMPERSONATE me (like you do w/ sockpuppets you made to do it too PROOF - Going to make more sockpuppets to stalk & troll me with you loon https://slashdot.org/comments.... ? )... apk

You admit it "Yes wildcards can cause false positives" - by UNIDENTIFIABLE Anonymous STALKER of me on Thursday October 25, 2018 (#57536347) FROM https://tech.slashdot.org/comm... - hosts specifics don't.

* Hosts = easy to edit vs. it OR use my program's FALSE POSITIVE FILTER & hosts WORK for more security vs. threats https://tech.slashdot.org/comm...

I never said hosts do port filters.

You IMPERSONATE me to try make it look like that!

Like c6gunner was caught doing forgetting to submit AC using his registered 'lusr'name instead https://linux.slashdot.org/com...

A SIMPLE TEST USING MY PROGRAM PROVES IT https://tech.slashdot.org/comm... & IF hosts could do port filtering I'd say it on the download page @ Start64.com for it AND my program would DO it (it does not & STOPS that error)!

APK

P.S.=> Arth1 TRIED that & FAILED https://yro.slashdot.org/comme... + I caught you in a LIE Github https://www.welivesecurity.com... vs. YOUR LIE https://tech.slashdot.org/comm...

You admit it "Yes wildcards can cause false positives" - by UNIDENTIFIABLE Anonymous STALKER of me on Thursday October 25, 2018 (#57536347) FROM https://tech.slashdot.org/comm... - hosts specifics don't.

* Hosts = easy to edit vs. it OR use my program's FALSE POSITIVE FILTER & hosts WORK for more security vs. threats https://tech.slashdot.org/comm...

I never said hosts do port filters.

You IMPERSONATE me to try make it look like that!

Like c6gunner was caught doing forgetting to submit AC using his registered 'lusr'name instead https://linux.slashdot.org/com...

A SIMPLE TEST USING MY PROGRAM PROVES IT https://tech.slashdot.org/comm... & IF hosts could do port filtering I'd say it on the download page @ Start64.com for it AND my program would DO it (it does not & STOPS that error).

APK

P.S.=> Arth1 TRIED that & FAILED https://yro.slashdot.org/comme... + I caught you in a LIE Github https://www.welivesecurity.com... vs. YOUR LIE https://tech.slashdot.org/comm...

You admit it "Yes wildcards can cause false positives" - by UNIDENTIFIABLE Anonymous STALKER of me on Thursday October 25, 2018 (#57536347) FROM https://tech.slashdot.org/comm... - hosts specifics don't.

* Hosts = easy to edit vs. it OR use my program's FALSE POSITIVE FILTER & hosts WORK for more security vs. threats https://tech.slashdot.org/comm...

I never said hosts do port filters.

You IMPERSONATE me to try make it look like that!

Like c6gunner was caught doing forgetting to submit AC using his registered 'lusr'name instead https://linux.slashdot.org/com...

A SIMPLE TEST USING MY PROGRAM PROVES IT https://tech.slashdot.org/comm... & IF hosts could do port filtering I'd say it on the download page @ Start64.com for it AND my program would DO it (it does not & STOPS that error).

APK

P.S.=> Arth1 TRIED that & FAILED https://yro.slashdot.org/comme... + I caught you in a LIE Github https://www.welivesecurity.com... vs. YOUR LIE https://tech.slashdot.org/comm...

I didn't write github is "bad" - ESET DID & THEY'RE CORRECT https://www.welivesecurity.com...

Mine's SINGLE-.EXE virus proof construction, GUI easy to use, & TRUE exe "stand-alone" NON-Interpreted (1 of the fastest languages there is on strings in Pascal (behind C & Assembly only afaik & hosts work is HUGELY strings)) fully error trapped & SELF-CONTAINED!

Does his script do hardcoded favorites @ TOP of hosts?

NOT WHEN I LOOKED!

NO gui programs in Windows do (& none in *NIX in GUI until MINE afaik).

Miss out on that in hosts you MISS out on a LOT!

E.G.:

Faster local resolution
Proof vs. DNS kaminsky flaw redirect poisoning
Proof vs. DNS requestlog tracking

In terms of BOTH speed & security.

Same goes for VALID tld/gtld checks.

Missing out here allows JUNK &/or BLOAT (& also port filters that are a 'online rumor' afaik for hosts but not real - my program prevents that too https://tech.slashdot.org/comm...

APK

P.S.=> I'll have a MacOS X one inevitably... apk

See subject: ESET PROVES I'm not wrong & SHOW github's part of a malware! U LOSE vs. https://www.welivesecurity.com...

APK

P.S.=> I don't play the games YOU just projected YOU do (talk to yourself) it's BAD ENOUGH on YOUR PART ALREADY that you STALK ME by UNIDENTIFIABLE ANONYMOUS &/or IMPERSONATE ME, so no, I don't LOWER myself to YOUR lowest of the LOW level!

Me? Hey - I just POST FACT as I did above vs. your bullshit https://tech.slashdot.org/comm... to let YOU just DESTROY yourself for ME, as always - lol: Thanks! apk

APK's correct. Kodi campaign is served by github and is listed at ESET 3/4 of the way down the page https://www.welivesecurity.com... as an unknowing accomplice.

Data from security sites that PROVED github was part of a malware attack: Source = ESET/NOD32 https://www.welivesecurity.com... from ESET/NOD32 that provided the data!

My post was here https://it.slashdot.org/commen...

So - IF You don't LIKE it? Talk to them

OR

Just edit your hosts file to NOT include those entries (a risk you'd take per said article - up to you).

* AGAIN: My program does NOT put that data in "by itself" (data from non-std. lists YOU merge yourself)!

Plus - it takes data from reputable, reliable sources (including articles from security companies protecting us vs. threats per the above).

There is ALSO a user-editable FALSE POSITIVES LIST you tune yourself vs. your "objection" (based on a lie).

APK

P.S.=> The TRUE BEAUTY of hosts IS control of the data IMMEDIATELY YOURSELF, hands-on directly - & the REAL BEAUTY of YOUR STUPIDITY is you try to "fool others" here that PROBABLY KNOW ALL THIS ALREADY... apk

1st: signing certs've been stolen/compromised before & MY PROGRAM checks itself vs. infection https://it.slashdot.org/commen... (upmodded +2 INTERESTING no less) & as far as GitHub's involvement in Kodi attacks? I bust you up AGAIN easily via concrete, verifiable & UNDENIABLE proof vs. your bullshit https://www.welivesecurity.com...

* You pitiful STUPID little DO-NOTHING zero "ne'er-do-well" bastard, lol...

APK

P.S.=> How STUPID do you feel now, "ZIP" (you fucking zero nobody that hasn't done BETTER WORK than mine that dozens on /. LIKE & USE along w/ 100,000++ users worldwide)... apk

As I do to shut you up easily? Github figured in 8 times hosting malwares per the source I used https://www.welivesecurity.com... vs. Kodi attack stupid.

APK

P.S.=> I always get the LAST LAUGH mocking YOU PITIFUL "shitsticks" who have to HIDE behind UNIDENTIFIABLE ANONYMOUS harassing me, lol... apk

I used data from security sites that PROVED github was part of a malware attackhttps://it.slashdot.org/commen... & the source is ESET/NOD32 per https://www.welivesecurity.com... from ESET/NOD32 that provided the data!

So - IF You don't LIKE it?

Talk to them

OR

Just edit your hosts file to NOT include those entries (a risk you'd take per said article - up to you).

* AGAIN: My program does NOT put that data in "by itself" - it takes data from reputable, reliable sources (including articles from security companies protecting us vs. threats per the above).

APK

P.S.=> The TRUE BEAUTY of hosts IS control of the data IMMEDIATELY YOURSELF, hands-on directly - & the REAL BEAUTY of YOUR STUPIDITY is you try to "fool others" here that PROBABLY KNOW ALL THIS ALREADY... apk

0.0.0.0 github.com
0.0.0.0 archive.org
0.0.0.0 ukodi1.xyz
0.0.0.0 openserver.eu
0.0.0.0 kodiupdate.hostkda.com
0.0.0.0 hostkda.com
0.0.0.0 kodihost.rf.gd
0.0.0.0 rf.gd
0.0.0.0 updatecenter.net
0.0.0.0 stearti.atspace.eu
0.0.0.0 atspace.eu
0.0.0.0 mastercloud.atspace.cc
0.0.0.0 atspace.cc
0.0.0.0 globalregistry.atspace.co.uk
0.0.0.0 atspace.co.uk
0.0.0.0 meliova.atwebpages.com
0.0.0.0 atwebpages.com
0.0.0.0 krystry.onlinewebshop.net
0.0.0.0 onlinewebshop.net
0.0.0.0 kodinet.atspace.tv
0.0.0.0 atspace.tv
0.0.0.0 bitbucket.org
0.0.0.0 gitlab.com
0.0.0.0 www.dropbox.com
0.0.0.0 dropbox.com
0.0.0.0 glocato.atspace.eu
0.0.0.0 oraceur.hostkda.com
0.0.0.0 dilarti.1free-host.com
0.0.0.0 1free-host.com
0.0.0.0 utudict.vastserve.com
0.0.0.0 vastserve.com
0.0.0.0 encelan.atspace.cc

SOURCE = https://www.welivesecurity.com...

* "It's working: Neville... it's working!"... I.M. LEGEND

APK

P.S.=> Just as it has in this partial list only (that /. reported on & there were MORE but they are TOO "SJW" bullshit oriented now) https://it.slashdot.org/commen... ... apk

0.0.0.0 github.com
0.0.0.0 archive.org
0.0.0.0 ukodi1.xyz
0.0.0.0 openserver.eu
0.0.0.0 kodiupdate.hostkda.com
0.0.0.0 hostkda.com
0.0.0.0 kodihost.rf.gd
0.0.0.0 rf.gd
0.0.0.0 updatecenter.net
0.0.0.0 stearti.atspace.eu
0.0.0.0 atspace.eu
0.0.0.0 mastercloud.atspace.cc
0.0.0.0 atspace.cc
0.0.0.0 globalregistry.atspace.co.uk
0.0.0.0 atspace.co.uk
0.0.0.0 meliova.atwebpages.com
0.0.0.0 atwebpages.com
0.0.0.0 krystry.onlinewebshop.net
0.0.0.0 onlinewebshop.net
0.0.0.0 kodinet.atspace.tv
0.0.0.0 atspace.tv
0.0.0.0 bitbucket.org
0.0.0.0 gitlab.com
0.0.0.0 www.dropbox.com
0.0.0.0 dropbox.com
0.0.0.0 glocato.atspace.eu
0.0.0.0 oraceur.hostkda.com
0.0.0.0 dilarti.1free-host.com
0.0.0.0 1free-host.com
0.0.0.0 utudict.vastserve.com
0.0.0.0 vastserve.com
0.0.0.0 encelan.atspace.cc

SOURCE = https://www.welivesecurity.com...

* "It's working: Neville... it's working!"... I.M. LEGEND

APK

P.S.=> Just as it has in this partial list only (that /. reported on & there were MORE but they are TOO "SJW" bullshit oriented now) results from THIS past month alone https://it.slashdot.org/commen... & https://it.slashdot.org/commen... + https://it.slashdot.org/commen... + https://it.slashdot.org/commen... that's only recently while I've been on Linux (few months now only) & 100's of times vs. MANY other botnets/malwares etc. in the past circa 2006-early 2018 while I was on Windows: There's BULLSHIT & doing nothing pessimism & there's CONCRETE VISIBLE UNDENIABLE REALITY (see those links as proof).... apk

0.0.0.0 github.com
0.0.0.0 archive.org
0.0.0.0 ukodi1.xyz
0.0.0.0 openserver.eu
0.0.0.0 kodiupdate.hostkda.com
0.0.0.0 hostkda.com
0.0.0.0 kodihost.rf.gd
0.0.0.0 rf.gd
0.0.0.0 updatecenter.net
0.0.0.0 stearti.atspace.eu
0.0.0.0 atspace.eu
0.0.0.0 mastercloud.atspace.cc
0.0.0.0 atspace.cc
0.0.0.0 globalregistry.atspace.co.uk
0.0.0.0 atspace.co.uk
0.0.0.0 meliova.atwebpages.com
0.0.0.0 atwebpages.com
0.0.0.0 krystry.onlinewebshop.net
0.0.0.0 onlinewebshop.net
0.0.0.0 kodinet.atspace.tv
0.0.0.0 atspace.tv
0.0.0.0 bitbucket.org
0.0.0.0 gitlab.com
0.0.0.0 www.dropbox.com
0.0.0.0 dropbox.com
0.0.0.0 glocato.atspace.eu
0.0.0.0 oraceur.hostkda.com
0.0.0.0 dilarti.1free-host.com
0.0.0.0 1free-host.com
0.0.0.0 utudict.vastserve.com
0.0.0.0 vastserve.com
0.0.0.0 encelan.atspace.cc

SOURCE = https://www.welivesecurity.com...

* "It's working: Neville... it's working!"... I.M. LEGEND

APK

P.S.=> Just as it has in this partial list only (that /. reported on & there were MORE but they are TOO "SJW" bullshit oriented now) results from THIS past month alone https://it.slashdot.org/commen... & https://it.slashdot.org/commen... + https://it.slashdot.org/commen... + https://it.slashdot.org/commen... that's only recently while I've been on Linux (few months now only) & 100's of times vs. MANY other botnets/malwares etc. in the past circa 2006-early 2018 while I was on Windows: There's BULLSHIT & doing nothing pessimsm & then? There's CONCRETE VISIBLE UNDENIABLE REALITY (see those links as proof).... apk

0.0.0.0 github.com
0.0.0.0 archive.org
0.0.0.0 ukodi1.xyz
0.0.0.0 openserver.eu
0.0.0.0 kodiupdate.hostkda.com
0.0.0.0 hostkda.com
0.0.0.0 kodihost.rf.gd
0.0.0.0 rf.gd
0.0.0.0 updatecenter.net
0.0.0.0 stearti.atspace.eu
0.0.0.0 atspace.eu
0.0.0.0 mastercloud.atspace.cc
0.0.0.0 atspace.cc
0.0.0.0 globalregistry.atspace.co.uk
0.0.0.0 atspace.co.uk
0.0.0.0 meliova.atwebpages.com
0.0.0.0 atwebpages.com
0.0.0.0 krystry.onlinewebshop.net
0.0.0.0 onlinewebshop.net
0.0.0.0 kodinet.atspace.tv
0.0.0.0 atspace.tv
0.0.0.0 bitbucket.org
0.0.0.0 gitlab.com
0.0.0.0 www.dropbox.com
0.0.0.0 dropbox.com
0.0.0.0 glocato.atspace.eu
0.0.0.0 oraceur.hostkda.com
0.0.0.0 dilarti.1free-host.com
0.0.0.0 1free-host.com
0.0.0.0 utudict.vastserve.com
0.0.0.0 vastserve.com
0.0.0.0 encelan.atspace.cc

SOURCE = https://www.welivesecurity.com...

* "It's working: Neville... it's working!"... I.M. LEGEND

APK

P.S.=> Just as it has in this partial list only (that /. reported on & there were MORE but they are TOO "SJW" bullshit oriented now)... apk

0.0.0.0 amazon.panasocin.com
0.0.0.0 office.panasocin.com
0.0.0.0 okinawas.ssl443.org
0.0.0.0 panasocin.com
0.0.0.0 ssl443.org

* Place those entries into your hosts file & voila: This threat is effectively neutralized &/or crippled...

APK

P.S.=> DATA SOURCE = https://www.welivesecurity.com... ... apk

Might be worth pointing out that there is a good chance that these practices are illegal in certain parts of the world.

For example, although the EU has garnered a lot of publicity recently for the General Data Protection Regulation (which came in to effect 5/25), location tracking applications have run the risk of breaching EU law for at least he last two years. As this article shows, the main reason this practice falls foul of EU law is that the actual tracking/location determination takes place without user consent.

There are certain advertising agencies, such as Outbrain and Tamboola which embed click-bait content in sites (I'm looking at you, Slashdot) and which track their users via geolocation data they harvest from ISPs. This practice is likely illegal, at least in the EU.

We can only hope that US lawmakers are willing to take a similar stand...

See subject & my sources my program gets do it @ diff. intervals ALL AROUND THE CLOCK & I go 'above & beyond it' personally - how?

SECURITY SITES I WILL LIST FOR YOU (these are excellent finding all kinds of exploiters & malicious sites/servers galore for ALL types of threats):

http://blog.talosintelligence....
https://www.welivesecurity.com...
https://blog.malwarebytes.com/
https://researchcenter.paloalt...
https://www.bleepingcomputer.c...
https://securityintelligence.c...
https://www.cyren.com/blog
http://garwarner.blogspot.com/
http://www.malwaretech.com/
https://securelist.com/all/?ca...
https://www.fireeye.com/blog/t...
https://www.secureworks.com/re...
https://research.checkpoint.co...
http://blog.trendmicro.com/tre...
https://www.proofpoint.com/us/...
https://blog.comodo.com/catego...

That's 25 sources in total from the security community that UPDATES all the time around the clock - my program makes easy work of consolidating all that data is all! It works (see testimonials I posted in my other replies to you from /. peers).

APK

P.S.=> ... & YOU, personally, have FULL CONTROL OF THE DATA (try that w/ addons OR a REMOTE DNS - good luck on the latter & the former? You'd best know regular expressions)... apk

It seems to me that Google is becoming more and more abusive.

When I go to web pages, often the NoScript and Ghostery add-ons list one or more Google processes. Google is following web site visitors everywhere.

Google allows cell phone providers to prevent updates to its Android operating system. That forces people who need security to buy new cell phones.

In general, it seems to me that hardware and software providers are becoming more and more authoritarian. They take advantage of the fact that most people don't know much about technology.

In my opinion, Microsoft's Windows 10 is NOT USABLE! How can you deliver a computer to a customer when you know what you are delivering is spyware? One article: Windows 10 is possibly the worst spyware ever made. Quote from that story: "Buried in the service agreement is permission to poke through everything on your PC." A previous comment about Microsoft: Window 10 Spyware.

Technology companies are not only abusive in their design of products, they are abusive in other ways, also:

Microsoft: Microsoft Is Filled With Abusive Managers And Overworked Employees, Says Tell-All Book.

Apple: Cupertino Mayor Says Apple 'Abuses Us'

Apple again: Criticism of Apple Inc.

Adobe Systems: Adobe Flash, The Spy in Your Computer -- Part 1 Adobe seems to me to be one of the original abusers. The company demonstrated to others that average people don't know how to protect themselves from technology abuse.

Adobe Systems rents software: Software as a Monthly Rental

0.0.0.0 1dnscontrol.com
0.0.0.0 aica.co.jp
0.0.0.0 an-crimea.ru
0.0.0.0 ankerch-crimea.ru
0.0.0.0 argumenti.ru
0.0.0.0 argumentiru.com
0.0.0.0 bg.pensionhotel.com
0.0.0.0 blog.fontanka.ru
0.0.0.0 caforssztxqzf2nm.onion
0.0.0.0 calendar.fontanka.ru
0.0.0.0 fontanka.ru
0.0.0.0 grupovo.bg
0.0.0.0 i24.com.ua
0.0.0.0 imer.ro
0.0.0.0 ks.ua
0.0.0.0 mediaport.ua
0.0.0.0 most-dnepr.info
0.0.0.0 novayagazeta.spb.ru
0.0.0.0 online812.ru
0.0.0.0 osvitaportal.com.ua
0.0.0.0 otbrana.com
0.0.0.0 pensionhotel.com
0.0.0.0 pensionhotel.cz
0.0.0.0 sinematurk.com
0.0.0.0 spbvoditel.ru
0.0.0.0 t.ks.ua
0.0.0.0 www.aica.co.jp
0.0.0.0 www.fontanka.ru
0.0.0.0 www.grupovo.bg
0.0.0.0 www.imer.ro
0.0.0.0 www.mediaport.ua
0.0.0.0 www.online812.ru
0.0.0.0 www.otbrana.com
0.0.0.0 www.pensionhotel.cz
0.0.0.0 www.sinematurk.com
0.0.0.0 www.t.ks.ua

APK

P.S.=> SOURCE https://www.welivesecurity.com/2017/10/24/bad-rabbit-not-petya-back/

It seems to me that companies have discovered that most people don't have much knowledge of technology, and are easily manipulated. So now it seems to me that companies are competing to see who can be most abusive. A few of the many examples:

Microsoft: Window 10 Spyware

Microsoft: Microsoft Is Filled With Abusive Managers And Overworked Employees, Says Tell-All Book.

Apple: Cupertino Mayor Says Apple 'Abuses Us'

Apple again: Criticism of Apple Inc.

Adobe Systemes: Adobe Flash, The Spy in Your Computer â" Part 1 Adobe seems to me to be one of the original abusers. The company demonstrated to others that average people cannot protect themselves from technology abuse.

Adobe Systems rents software: Software as a Monthly Rental

It sounds like they do have backups. Despite the security breach, someone there knew what they were doing well enough that private information wasn't compromised and backups do exist.

Source: http://www.welivesecurity.com/2017/01/20/ransomware-attack-hits-st-louis-public-library/

While they need to completely restore all the computers from scratch, I applaud them for having backups, ensuring that private information about their patrons, and refusing to pay the criminals. Good for St. Louis.

0.0.0.0 lelantos.org
0.0.0.0 srv70.putdrive.com
0.0.0.0 api.telegram.org
0.0.0.0 putdrive.com
0.0.0.0 telegram.org
0.0.0.0 smtp-mail.outlook.com
0.0.0.0 api.telegram.org
0.0.0.0 telegram.org

* Per source article(s) from https://www.incapsula.com/blog/650gbps-ddos-attack-leet-botnet.html/ http://www.welivesecurity.com/2016/12/13/rise-telebots-analyzing-disruptive-killdisk-attacks/ https://cyberx-labs.com/en/blog/new-killdisk-malware-brings-ransomware-into-industrial-domain/ http://www.securityweek.com/destructive-killdisk-malware-turns-ransomware/ as this malware/botnet descends from others before it...

APK

P.S.=> Those are it's C&C's + other compromised sites/hosts/domains-subdomains & THIS IS THE 10th BOTNET HOSTS CONQUER IN THE PAST 2++ WEEKS - here's the others (many before it, but not as many as recently so fast & clustered together) https://news.slashdot.org/comments.pl?sid=10020701&cid=53529963/

See subject: A list of specific hosts from ESET's research to enter into your custom hosts file to protect vs. Stegano:

0.0.0.0 browser-defence.com
0.0.0.0 broxu.com
0.0.0.0 conce.republicoftaste.com
0.0.0.0 compe.quincephotographyvideo.com
0.0.0.0 ntion.atheist-tees.com
0.0.0.0 entat.usedmachinetools.co
0.0.0.0 connt.modusinrebus.net
0.0.0.0 ainab.photographyquincemiami.com
0.0.0.0 rated.republicoftaste.com
0.0.0.0 rence.backstageteeshirts.com
0.0.0.0 republicoftaste.com
0.0.0.0 quincephotographyvideo.com
0.0.0.0 atheist-tees.com
0.0.0.0 usedmachinetools.co
0.0.0.0 modusinrebus.net
0.0.0.0 photographyquincemiami.com
0.0.0.0 backstageteeshirts.com

FROM http://www.welivesecurity.com/...
APK

P.S.=> All I can say to ESET is "Good job guys, & Thank you - keep up the good work!"... apk

See subject: A list of specific hosts from ESET's research to enter into your custom hosts file to protect vs. Stegano:

0.0.0.0 browser-defence.com
0.0.0.0 broxu.com
0.0.0.0 conce.republicoftaste.com
0.0.0.0 compe.quincephotographyvideo.com
0.0.0.0 ntion.atheist-tees.com
0.0.0.0 entat.usedmachinetools.co
0.0.0.0 connt.modusinrebus.net
0.0.0.0 ainab.photographyquincemiami.com
0.0.0.0 rated.republicoftaste.com
0.0.0.0 rence.backstageteeshirts.com

FROM http://www.welivesecurity.com/...

APK

P.S.=> All I can say to ESET is "Good job guys, & Thank you - keep up the good work!"... apk

The summary was missing details, but this link explains a bit more.

http://www.welivesecurity.com/...

At least you'll know how it works. Also, go down to the list and see if you have at least one of those security products and it'll skip the payload. :)

See subject: This is a list of specific domains from ESET's research to enter into your custom hosts file to protect vs. it:

0.0.0.0 browser-defence.com
0.0.0.0 broxu.com
0.0.0.0 conce.republicoftaste.com
0.0.0.0 compe.quincephotographyvideo.com
0.0.0.0 ntion.atheist-tees.com
0.0.0.0 entat.usedmachinetools.co
0.0.0.0 connt.modusinrebus.net
0.0.0.0 ainab.photographyquincemiami.com
0.0.0.0 rated.republicoftaste.com
0.0.0.0 rence.backstageteeshirts.com

FROM http://www.welivesecurity.com/...

APK

P.S.=> All I can say to ESET is "Good job guys, & Thank you - keep up the good work!"... apk

The Eset researchers still aren't certain how Mumblehard is installed. Based on their analysis of the infected server, they suspect the malware may take hold by exploiting vulnerabilities in the Joomla and WordPress content management systems. Their other theory is that the infections are the result of installing pirated versions of the DirecMailer program.

Look for cron jobs executing code from /var/tmp.

They did such a beautiful and informative report(PDF) it's a damn shame not to read it.

See subject: Source articles have the bad host-domain names to block listed here http://www.welivesecurity.com/...

* Simply replace "http://" with 0.0.0.0 from the list & add it to your custom hosts file to be protected vs. this threat.

APK

P.S.=> For the BEST possible custom hosts file? Well, you know APK Hosts File Engine 9.0++ SR-4 32/64-bit http://www.start64.com/index.p...

... apk

But there is good news too! We can be unpussified by following a few simple steps: http://www.welivesecurity.com/...

These types of worms also rely on social engineering to convince the user to click on the link and run the malware.

So, not a worm, but a trojan, which iOS also has.

have you clicked and read the descriptions of ANY of those? osx has had just as many of these "viruses that require the user to be stupid AND do most of the virus' work".

btw, does "flashback" ring any bells? it forced apple to remove the "doesn't get pc viruses" from its "why you'll love a mac" page.

http://www.welivesecurity.com/... http://securitywatch.pcmag.com...

Are you stoned or just stupid?

Both of your lists show NO Malware that did not rely EXCLUSIVELY on Social Engineering AND DIRECT USER INTERACTION to Infect the host computer (Mac). That is a Trojan, not a Virus.

That is in stark contrast to the Wikipedia list, which nicely categorized the Linux Malware into Trojans, Worms, etc.

NEXT!

have you clicked and read the descriptions of ANY of those? osx has had just as many of these "viruses that require the user to be stupid AND do most of the virus' work".

btw, does "flashback" ring any bells? it forced apple to remove the "doesn't get pc viruses" from its "why you'll love a mac" page.

http://www.welivesecurity.com/...
http://securitywatch.pcmag.com...

If you don't learn from your history? Then you sir are a dumbass, because datamining is what Google does and if its one thing they love its gathering more and more intel on you.

I mean have you really already forgotten the stink over google trying to ram G+ and real names down on YouTube? From Google Drive to even spying on kids emails the simple fact is Google is all about connecting the dots, its what they do, where their income is coming from, and the more they can gather on you the more money it can make from its REAL customers, the advertisers.

There's 272++ more to block found in the research .pdf file here from -> http://www.welivesecurity.com/...

APK

P.S.=> Enjoy, since once those are blocked? This thing can't TOUCH you, or you it... apk

Per my subject-line above: Add these entries into hosts as blocked (C&C + payload & phish servers):

0.0.0.0 www.ceskaposta.net
0.0.0.0 ceskaposta.net

FROM -> http://www.welivesecurity.com/...

&

0.0.0.0 royalmail-tracking.info
0.0.0.0 royalmail-tracking.biz
0.0.0.0 royalmail-tracking.org
0.0.0.0 door2tor.org

FROM -> http://www.welivesecurity.com/...

* Enjoy - those will block out this threat...

APK

P.S.=> "You can't get burned, if you can't go into the furnace" so-to-speak - those blocking entries keep you OUT of said malware 'furnace', easily... apk

Per my subject-line above: Add these entries into hosts as blocked (C&C + payload & phish servers):

0.0.0.0 www.ceskaposta.net
0.0.0.0 ceskaposta.net

FROM -> http://www.welivesecurity.com/...

&

0.0.0.0 royalmail-tracking.info
0.0.0.0 royalmail-tracking.biz
0.0.0.0 royalmail-tracking.org
0.0.0.0 door2tor.org

FROM -> http://www.welivesecurity.com/...

* Enjoy - those will block out this threat...

APK

P.S.=> "You can't get burned, if you can't go into the furnace" so-to-speak - those blocking entries keep you OUT of said malware 'furnace', easily... apk

• We Live Security blog - Back in BlackEnergy: 2014 Targeted Attacks in Ukraine and Poland
• 2014 Virus Bulletin Conference - Last-minute paper: Back in BlackEnergy: 2014 targeted attacks in the Ukraine and Poland and YouTube video of the presentation
• We Live Security blog - CVE-2014-4114: Details on August BlackEnergy PowerPoint Campaigns
• Virus Radar - description of Win32/Rootkit.BlackEnergy.AA

Hope this is information is useful to anyone who might be concerned they have compromised hosts on their network.

Regards,

Aryeh Goretsky

• We Live Security blog - Back in BlackEnergy: 2014 Targeted Attacks in Ukraine and Poland
• 2014 Virus Bulletin Conference - Last-minute paper: Back in BlackEnergy: 2014 targeted attacks in the Ukraine and Poland and YouTube video of the presentation
• We Live Security blog - CVE-2014-4114: Details on August BlackEnergy PowerPoint Campaigns
• Virus Radar - description of Win32/Rootkit.BlackEnergy.AA

Hope this is information is useful to anyone who might be concerned they have compromised hosts on their network.

Regards,

Aryeh Goretsky

A few news sites and tech sites have:
"Android security mystery 'fake' cellphone towers found in U.S." (28 AUG 2014)
http://www.welivesecurity.com/...
Fake, phone-attacking cell-towers are all across America (Sep 1, 2014)
http://boingboing.net/2014/09/...
"The fake "interceptor" towers force your phone to back \\down to an easy-to-break 2G connection, then goes to work"
"..the baseband firewall on the Cryptophone set off alerts showing that the phones encryption had been turned off, and that the cell tower had no name a telltale sign of a rogue base station."
Fake cell phone towers may be spying on Americans calls, texts (September 03, 2014)
http://rt.com/usa/184636-fake-...