Slashdot Mirror
New Ransomware Business Cashing In On CryptoLocker's Name (csoonline.com)
itwbennett writes: A new service launched this week on a standalone Darknet website offering ransomware called CryptoLocker Service to anyone willing to pay a small fee and 10% of the collected ransom. The new venture is being run by a person using the handle Fakben, who was a former user of the Evolution (Evo) marketplace, writes CSO Online's Steve Ragan. Customers pay $50 to get the basic Ransomware payload. Once the victim pays the demanded ransom, the payment address will forward the funds – less a ten percent fee – to the Bitcoin wallet designated by the CryptoLocker Service customer. The ransom fee itself can be determined by the customer, but the recommended fee is $200. 'I prefer to be less expensive, more downloads and more infections,' Fakben said during a brief chat with Ragan.
Can we start making stupid comments about how fakben should be found and shot in the face ?
Yep there was a stupid comment alright.
Sorry, teleporters just kill you and then make a copy. A perfect, soul-less copy.
Yup.
- Dan
Your statement is misleading at best. The first part of it about Bitcoin mostly being used by criminals is a statement about the relative volume of transactions involving legal and illegal activity. The second part about the volume of transactions involving illegal activity using Bitcoin versus illegal activity paid for with other currencies is not equivalent to the first part. While it's virtually certain that far more illegal activity is paid for with other currencies than with Bitcoin, that's due to other currencies being far more widely used around the world. The proportion of Bitcoin used to pay for illegal activities versus the total volume of transactions is likely higher than, say, the total value of US dollars used to pay for illegal activity versus the total volume of all transactions with the US dollar.
I would like to make a stupid content about how this is a new low for slashvertisements.
"while ignoring the fact that regular fiat money/currency is used"
What has the Italian car company Fiat got to do with Bitcoin?
Wow, you have links to stories about successful ransomware attacks that used something other than cryptocurrencies, then...
Oh hey, you stopped posting links to that shitty website.
Thanks for not being a piece of crap.
Pretty much anything on this list:
https://en.wikipedia.org/wiki/...
Every one I have run across has wanted a CC not bitcoin. Although its been about a year since i've seen one.
They didn't encrypt files but they often prevented you from running any other programs until you paid up so I still consider that ransomware even if not on the same scale.
Minimum threshold fixed. Thanks!
"while ignoring the fact that regular fiat money/currency is used"
What has the Italian car company Fiat got to do with Bitcoin?
You put your ill-gotten bitcoins in the trunk and drive away!
until we make it an international death penalty to use or produce such software. Put the NSA/CIA/FBI to use to determine the location of the authors, and target their home with reaper drones.
Except that's not true. Fiat currency is also supported by the military, economic, and diplomatic might of its host nation. Bitcoin is supported by some zit covered anarchist angsty teenager living in his mom's basement. What's hilarious is that he thinks that if he could get enough OTHER people to call his "money", that he "earned" by leaving a PC turned on and masturbating to anime, "legit" that he'll never need to develop the social skills necessary to get a real job and he'll be able to stay home all day in his PJs and never bathing while pwning n00bs on CoD. That's the real difference and that's why Bitcoin will never be anything more than a cute fantasy.
Pretty much anything on this list:
https://en.wikipedia.org/wiki/...
Every one I have run across has wanted a CC not bitcoin. Although its been about a year since i've seen one.
They didn't encrypt files but they often prevented you from running any other programs until you paid up so I still consider that ransomware even if not on the same scale.
A fraudulent credit card transaction can easily be reversed. How do I claim a fraudulent bitcoin transaction that needs to be reversed?
Fiat currency is also supported by the military, economic, and diplomatic might of its host nation.
The two main problems with Fiat currency is how impractical it is to carry around a large quantity and getting useful change. The newer, smaller models help, but there's always someone who has a problem converting between two and four-door units, etc...
It must have been something you assimilated. . . .
Here comes the stupid comments about how Bitcoin is only used by scammers and thieves while ignoring the fact that regular fiat money/currency is used for the same activities on a much, much larger scale.
It seems you decided to create a straw man and attack that, because few are doing that.
My problem with bitcoin isn't who use it, but that Bitcoin has proven to be very similar to highly speculative and volatile penny stocks. Value is not only varying wildly, but easily manipulated. I used to frequent trading forums and it is funny to see one of the most used comments there make a strong appearance in bitcoin discussions -- "you are just jealous you didn't get in on it earlier". And to be clear; people should of course be free to speculate in bitcoin or penny stocks.
How is ransomware installed on personal computers? Do anti-virus programs not detect them? Are firewalls able to block them? Do users run executable programs from unknown websites as an administrator or without using a sandbox? I don't know, that is why I am asking.
I remember I caught a malware program at least three years ago by not using adblock and an antivirus program. Google search directed me to a website that had advertisements. The ads installed adware and unwanted toolbars somehow. I was using Firefox browser, I think. I forgot how I removed the adware. I think I had to reboot Windows in safemode and then run Adaware or Spybot Search and Destroy.
Because Ferraris are expensive.
Singapore doesn't have much of a drug problem.
Of course it has. I had a hard time trying to get high there. Definitely a problem.
Wtb a government that gives a shit about people being ransomed by these assholes. Anyone else wanna find these closet gangsters and throw them off a bridge for grandma?
No, he didn't, it is just now a proper signature which ACs can't see.
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
That must be what it was like to be rich before banks...
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
If you are using Bitcoin as an investment, you are using it wrong. Bitcoin is meant to be a way to transfer money, not to store massive wealth.
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
>The first part of it about Bitcoin mostly being used by criminals is a statement about the relative volume of transactions involving legal and illegal activity.
https://en.wikipedia.org/wiki/Withdrawn_Canadian_banknotes#.241.2C000
"Printing of the $1,000 note ceased in 2000. The denomination was withdrawn on the advice of the Solicitor General and the Royal Canadian Mounted Police (RCMP), as it was often used for money laundering and organized crime."
Large cash bills are mostly used for crime. Thus we should eliminate all folding money, correct?
Surprised, given the amount of bad ju-ju on the Internet these days, that this idea isn't getting more support. What happens if the above comes true, and say, a hospital computer is infected and there is life and death info on the system and they cannot get the data even if they did decide to pay. This is coming next. Look at all the DDoS attacks on email providers this week. One paid the demand and the DDoS continued.
If these people are caught, they should hang.
This is getting ridiculous.
The only people who see sigs are logged in users who are too stupid to turn them off.
If you have to ask who will be the top, you're the bottom.
Is this not just a very good reason to have your files backed up (either online or offline) so that if your PC is indeed infected, you can simply wipe (or better yet, restore to a previous uninfected VM image).
Surely most people who have important documents (ones that are irreplaceable (videos, photos) or too costly to redo (large office docs, source code etc) know that it's important to back them up on something that is secure.
Heck, even using something like google drive would be better than nothing. I know it's hard to have software 100% secure, but I really don't have much sympathy for people who don't back up, and then fall victim to a scam like this.
The thing about fiat currencies? Pretty much everything except perhaps the rare staple based currencies is a different form of fiat. Take gold and silver for instance. Very little of their value is from actual applications. Currency is ironically worthless but very useful for trade.
And if it is volatile (and it is), then it is useless for transferring money.
Not entirely but it's still a hot potato to pass on before the price changes and the holder gets burnt. It's amusing that people have found such a secondary use for a pyramid scheme but I see it as a sign of how bad the current forms of money transfer are - by design of the middlemen getting a cut.
but it's sure as fuck in the at-least-as-offensive-as-child-porn category. How come these assholes aren't getting waterboarded?
should be found and shot.
They are parasites...
Better be careful where you put what into which.
APK is known to be Hosts for all sorts of infections.
Not entirely but it's still a hot potato to pass on before the price changes and the holder gets burnt. It's amusing that people have found such a secondary use for a pyramid scheme but I see it as a sign of how bad the current forms of money transfer are - by design of the middlemen getting a cut.
I have never understood why money transfer is considered a problem, but I guess the options vary between countries. I can very easily transfer money cost free to anyone from one day to the next, using my banks phone app or internet bank. And the newest option is an app that can transfer money instantly just by knowing the other persons phone number.
You can blame Slashdot's messed-up user configuration pages for that one. Things are all over the place and they even "fixed" the HTML in my signature which lowers the actual number of characters I can use. This is the first time in my life I see something like "</a coinbrawl.com>".
Greed and artificial barriers.
I worked for a company that had a perfect solution in 2000 and all they needed to get it to work was for the banks to agree, but Wells Fargo etc were threatened by that and the dozens of others trying to do the same thing and used their influence to block everything. Eventually PayPal managed to do an end-run around them. I find it very strange that it takes five days for me to transfer money into the account of another bank or I can do it in less than five minutes by withdrawing the cash, walking twenty steps, and then depositing it.
"Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015
Where'd I say it? Show us (not illogic logic but where I literally said it). I say AD needs internal DNS far back as 2007
http://forums.tweaktown.com/wi...
See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there in my security guide.
Fact: You shoot your mouth off lying about it & me, hmmm?
(It's your mentally damaged goods assburgers brain acting up trying to put words in my mouth I never said? Yes...)
---
Where did I say I don't use DNS too?
Clue: I do & detailed it for you AGAIN (via my std. post on DNS vs. hosts) -> http://slashdot.org/comments.p...
---
"You must really suck at programming" - by Coren22 on Monday November 23, 2015
What've you programmed? Other /.'ers disagree:
"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)
"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)
"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)
"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)
"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)
APK
P.S.=> Con't. in 2/6... apk
"figured out why privilege escalation's a bad thing?" - by Coren22 on Tuesday September 22, 2015
How else can I programmatically update hosts itself?
---
"it requires elevation to write hosts" - by Coren22 (1625475) on Wednesday September 23, 2015
Hypocrite later admits it!
Even MalwareBytes AntiMalware DEMANDS it or it can't do a job fully like many security tools!
---
"Needing admin privileges every time a program updates is poor design" - by Coren22 (1625475) on Tuesday November 10, 2015
Mine doesn't to get new data to update hosts vs. threats. Only hosts itself updates need it vs. WFP/SFP. Users set it too. It's not programmatic impersonation.
---
"90's tech to fight modern war" - by Coren22 (1625475) on Tuesday November 10, 2015
Ozymandias/Watchmen per a namesake:
"I resolved to apply antiquities teachings" (hosts) "to our world today & began my path to conquest - Conquest not of men but of the evils that beset them: Fossil Fuels (antispyware), Oil (antivir), Nuclear Power (addons) are like a drug & you gentlemen along w/ foreign interests are the pushers"
It works Aryeh Goretsky NOD32/ESET hosts = good security-> http://it.slashdot.org/comment...
Oliver Day (Symantec) too-> http://www.securityfocus.com/c...
MalwareBytes' hpHosts' Admin hosts + RECOMMENDS my APK Hosts File Engine 9.0++ SR-2 32/64-bit-> http://hosts-file.net/?s=Downl...
APK
P.S.=> Con't. in #3/6... apk
"I guess we should avoid your crap, it looks like it is marked as malware." - by Coren22 (1625475) on Monday November 02, 2015 @03:52PM (#50850445)
62 reputable sources + /. users say different:
Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...
+
the 32-bit model https://www.virustotal.com/en/...
&
Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...
---
MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...
(& he certified my source http://slashdot.org/comments.p... - he wouldn't host it, much less recommend it, minus that...) /.'ers say my work is good too:
"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)
"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)
"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)
"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)
"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)
APK
P.S.=> Con't in part #4/6... apk
"His newest post is trying to refute that MiTM attack opportunity his software provides" - by Coren22 (1625475) on Wednesday November 18, 2015
I DISPROVED it: Hardcoded favs users provide themselves are REVERSE DNS verified & my program filters 5,500++ false positives:
1.) Search engines
2.) Antivirus (e.g. updaters)
3.) Security community sites
4.) Captchas, brower home pages + download pages
5.) Ebay/Amazon (shopper & banking)
(Security community I get hosts data from do false positives filters in current data + removal lists).
---
"won't demonstrate security of his product be exposing the source (someone might steal it!)" - by Coren22 (1625475) on Wednesday November 18, 2015
I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...
"the secretary at MalwareBytes took a look at his source code and said it looked all good to them" - by Coren22 (1625475) on Wednesday November 18, 2015
My ware went thru code verification by Mr. Steven Burn of Malwarebytes' hpHosts
http://slashdot.org/comments.p...
A competent coder & BEST security researcher I know of FROM THE BEST ANTIMALWARE THERE IS http://www.av-test.org/en/news...
NOT a secretary!
---
YOU BLEW IT ON ADMIN PRIV TOO: My program doesn't require it hosts does (WFP/SFP): my program protects hosts beyond it!
I.E.-> I run manually minus admin priv & drag result to hosts naming it "hosts" overwriting original.
Only auto update needs it (WFP/SFP) & users set it themselves in program shortcut: Not programmatic impersonation.
---
DNS introduces a SECURITY ISSUE RIDDLED SINGLE POINT OF FAILURE & doesn't secure down to endpoints on a LAN -> http://slashdot.org/comments.p...
How I use remote filtering DNS combined w/ hosts is there showing many DNS security issues hosts overcome.
APK
P.S.=> Con't in part #5/6... apk
"Virus scanners/Adblock software don't need admin priv to update" - by Coren22 (1625475) on Tuesday November 10, 2015
Neither does my program. AV does to remove threats - Adblock addons = Vastly INFERIOR in abilities + efficiency vs. hosts as I proved & no one proved me wrong to date!
---
"your software does" - by Coren22 (1625475) on Tuesday November 10, 2015
No hosts do (WFP/SFP) - Intake update of new hosts data doesn't!
---
"won't reveal your source code" - by Coren22 (1625475) on Tuesday November 10, 2015
I don't owe you it. I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...
---
"What's stopping you from pointing my bank's web site at your private server?" - by Coren22 (1625475) on Tuesday November 10, 2015
I don't keep a server. Security guru (not - you create no ware for security & your forensics skills = non-existent): Put it in a VM, trace it via process monitor + wireshark (don't need code)!
---
"the possibility of being caught, which would be pretty hard to catch w/ such a large hosts file, as no one can go through it manually." - by Coren22 (1625475) on Tuesday November 10, 2015
I put hardcoded fav sites @ top of hosts for speed & reliabilty - spotted easily & bulk of hosts = sorted blocked known bad threats provided by the security community (filtered vs. 5,500++ false positive possibles in my program & by current security community data).
---
"What are you going to do when Windows gets rid of the hosts file completely?" - by Coren22 (1625475) on Tuesday November 10, 2015
Hasn't happened!
---
"They have already taken steps to make it useless in Windows 10." - by Coren22 (1625475) on Tuesday November 10, 2015
It works there!
Telemetry's killed 10 by itself: VISTA = Win10 = Win8 = flops - who're you fooling other than yourself?
APK
P.S.=> Con't. in #6/6... apk
Coren22 'eats his words' vs. me 2x yet again:
"introduces risk you are relying on a 3rd party to update a hosts file potentially opening you up to MITM attacks" - by Coren22 (1625475) on Tuesday November 17, 2015
How? My prog puts entries in as non-blocking to hostnames on ones users give it as favs to speed up @ TOP of hosts REVERSE DNS VERIFIED!
(For more speed, & reliability + security - in RAM as 1st resolver queried = faster & more secure vs. remote DNS w/ all its security issues in Kaminsky flaw, DNSChanger malware IP stack settings, routers bushwhacked in DNS settings, rogue DNS, Open DNS servers abused by malware. It aids in reliability vs. redirects).
YOU'D SPOT IT INSTANTLY @ TOP OF CUSTOM HOSTS & can easily edit anything you want out!
(Rest = known bad sites from 10 reputable security community sites for blocking - the MAJORITY of what's in my hosts files!)
+ my sources do removal lists vs. false positives & helped me create a "FP" filter in my program (5,500++ of them)!
---
"maybe one day you can get a score 5 comment" - by Coren22 (1625475) on Tuesday November 17, 2015
See subject & ~ 12 +5 upmods: "Eat your words" (1st one: You tried using what I post there against me to FAIL):
+5 'modded up' posts by "yours truly" (11):
http://news.slashdot.org/comme...
http://tech.slashdot.org/comme...
http://news.slashdot.org/comme...
http://science.slashdot.org/co...
http://tech.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://news.slashdot.org/comme...
http://news.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://yro.slashdot.org/commen...
http://yro.slashdot.org/commen...
"You believe you are getting the better of me" - by Coren22 (1625475) on Tuesday November 17, 2015
YOU GOT THE BEST OF YOURSELF in fails & lies about me. Your immature signatures about me SCREAM you're butthurt - Did it to yourself.
APK
P.S.=> You fail Coren22... apk
"Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015
Where'd I say it? Show us (not illogic logic but where I literally said it). I say AD needs internal DNS far back as 2007
http://forums.tweaktown.com/wi...
See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there in my security guide.
Fact: You shoot your mouth off lying about it & me, hmmm?
(It's your mentally damaged goods assburgers brain acting up trying to put words in my mouth I never said? Yes...)
---
Where did I say I don't use DNS too?
Clue: I do & detailed it for you AGAIN (via my std. post on DNS vs. hosts) -> http://slashdot.org/comments.p...
---
"You must really suck at programming" - by Coren22 on Monday November 23, 2015
What've you programmed? Other /.'ers disagree:
"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)
"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)
"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)
"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)
"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)
APK
P.S.=> Con't. in 2/6... apk
"figured out why privilege escalation's a bad thing?" - by Coren22 on Tuesday September 22, 2015
How else can I programmatically update hosts itself?
---
"it requires elevation to write hosts" - by Coren22 (1625475) on Wednesday September 23, 2015
Hypocrite later admits it!
Even MalwareBytes AntiMalware DEMANDS it or it can't do a job fully like many security tools!
---
"Needing admin privileges every time a program updates is poor design" - by Coren22 (1625475) on Tuesday November 10, 2015
Mine doesn't to get new data to update hosts vs. threats. Only hosts itself updates need it vs. WFP/SFP. Users set it too. It's not programmatic impersonation.
---
"90's tech to fight modern war" - by Coren22 (1625475) on Tuesday November 10, 2015
Ozymandias/Watchmen per a namesake:
"I resolved to apply antiquities teachings" (hosts) "to our world today & began my path to conquest - Conquest not of men but of the evils that beset them: Fossil Fuels (antispyware), Oil (antivir), Nuclear Power (addons) are like a drug & you gentlemen along w/ foreign interests are the pushers"
It works Aryeh Goretsky NOD32/ESET hosts = good security-> http://it.slashdot.org/comment...
Oliver Day (Symantec) too-> http://www.securityfocus.com/c...
MalwareBytes' hpHosts' Admin hosts + RECOMMENDS my APK Hosts File Engine 9.0++ SR-2 32/64-bit-> http://hosts-file.net/?s=Downl...
APK
P.S.=> Con't. in #3/6... apk
"I guess we should avoid your crap, it looks like it is marked as malware." - by Coren22 (1625475) on Monday November 02, 2015 @03:52PM (#50850445)
62 reputable sources + /. users say different:
Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...
+
the 32-bit model https://www.virustotal.com/en/...
&
Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...
---
MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...
(& he certified my source http://slashdot.org/comments.p... - he wouldn't host it, much less recommend it, minus that...) /.'ers say my work is good too:
"his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)
"I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)
"APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)
"his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)
"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)
APK
P.S.=> Con't in part #4/6... apk
"His newest post is trying to refute that MiTM attack opportunity his software provides" - by Coren22 (1625475) on Wednesday November 18, 2015
I DISPROVED it: Hardcoded favs users provide themselves are REVERSE DNS verified & my program filters 5,500++ false positives:
1.) Search engines
2.) Antivirus (e.g. updaters)
3.) Security community sites
4.) Captchas, brower home pages + download pages
5.) Ebay/Amazon (shopper & banking)
(Security community I get hosts data from do false positives filters in current data + removal lists).
---
"won't demonstrate security of his product be exposing the source (someone might steal it!)" - by Coren22 (1625475) on Wednesday November 18, 2015
I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...
"the secretary at MalwareBytes took a look at his source code and said it looked all good to them" - by Coren22 (1625475) on Wednesday November 18, 2015
My ware went thru code verification by Mr. Steven Burn of Malwarebytes' hpHosts
http://slashdot.org/comments.p...
A competent coder & BEST security researcher I know of FROM THE BEST ANTIMALWARE THERE IS http://www.av-test.org/en/news...
NOT a secretary!
---
YOU BLEW IT ON ADMIN PRIV TOO: My program doesn't require it hosts does (WFP/SFP): my program protects hosts beyond it!
I.E.-> I run manually minus admin priv & drag result to hosts naming it "hosts" overwriting original.
Only auto update needs it (WFP/SFP) & users set it themselves in program shortcut: Not programmatic impersonation.
---
DNS introduces a SECURITY ISSUE RIDDLED SINGLE POINT OF FAILURE & doesn't secure down to endpoints on a LAN -> http://slashdot.org/comments.p...
How I use remote filtering DNS combined w/ hosts is there showing many DNS security issues hosts overcome.
APK
P.S.=> Con't in part #5/6... apk
"Virus scanners/Adblock software don't need admin priv to update" - by Coren22 (1625475) on Tuesday November 10, 2015
Neither does my program. AV does to remove threats - Adblock addons = Vastly INFERIOR in abilities + efficiency vs. hosts as I proved & no one proved me wrong to date!
---
"your software does" - by Coren22 (1625475) on Tuesday November 10, 2015
No hosts do (WFP/SFP) - Intake update of new hosts data doesn't!
---
"won't reveal your source code" - by Coren22 (1625475) on Tuesday November 10, 2015
I don't owe you it. I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...
---
"What's stopping you from pointing my bank's web site at your private server?" - by Coren22 (1625475) on Tuesday November 10, 2015
I don't keep a server. Security guru (not - you create no ware for security & your forensics skills = non-existent): Put it in a VM, trace it via process monitor + wireshark (don't need code)!
---
"the possibility of being caught, which would be pretty hard to catch w/ such a large hosts file, as no one can go through it manually." - by Coren22 (1625475) on Tuesday November 10, 2015
I put hardcoded fav sites @ top of hosts for speed & reliabilty - spotted easily & bulk of hosts = sorted blocked known bad threats provided by the security community (filtered vs. 5,500++ false positive possibles in my program & by current security community data).
---
"What are you going to do when Windows gets rid of the hosts file completely?" - by Coren22 (1625475) on Tuesday November 10, 2015
Hasn't happened!
---
"They have already taken steps to make it useless in Windows 10." - by Coren22 (1625475) on Tuesday November 10, 2015
It works there!
Telemetry's killed 10 by itself: VISTA = Win10 = Win8 = flops - who're you fooling other than yourself?
APK
P.S.=> Con't. in #6/6... apk
Coren22 'eats his words' vs. me 2x yet again:
"introduces risk you are relying on a 3rd party to update a hosts file potentially opening you up to MITM attacks" - by Coren22 (1625475) on Tuesday November 17, 2015
How? My prog puts entries in as non-blocking to hostnames on ones users give it as favs to speed up @ TOP of hosts REVERSE DNS VERIFIED!
(For more speed, & reliability + security - in RAM as 1st resolver queried = faster & more secure vs. remote DNS w/ all its security issues in Kaminsky flaw, DNSChanger malware IP stack settings, routers bushwhacked in DNS settings, rogue DNS, Open DNS servers abused by malware. It aids in reliability vs. redirects).
YOU'D SPOT IT INSTANTLY @ TOP OF CUSTOM HOSTS & can easily edit anything you want out!
(Rest = known bad sites from 10 reputable security community sites for blocking - the MAJORITY of what's in my hosts files!)
+ my sources do removal lists vs. false positives & helped me create a "FP" filter in my program (5,500++ of them)!
---
"maybe one day you can get a score 5 comment" - by Coren22 (1625475) on Tuesday November 17, 2015
See subject & ~ 12 +5 upmods: "Eat your words" (1st one: You tried using what I post there against me to FAIL):
+5 'modded up' posts by "yours truly" (11):
http://news.slashdot.org/comme...
http://tech.slashdot.org/comme...
http://news.slashdot.org/comme...
http://science.slashdot.org/co...
http://tech.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://news.slashdot.org/comme...
http://news.slashdot.org/comme...
http://hardware.slashdot.org/c...
http://yro.slashdot.org/commen...
http://yro.slashdot.org/commen...
"You believe you are getting the better of me" - by Coren22 (1625475) on Tuesday November 17, 2015
YOU GOT THE BEST OF YOURSELF in fails & lies about me. Your immature signatures about me SCREAM you're butthurt - Did it to yourself.
APK
P.S.=> You fail Coren22... apk