Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Ransomware Business Cashing In On CryptoLocker's Name (csoonline.com)

Posted by timothy on from the ransomware-now-everywhere dept.

itwbennett writes: A new service launched this week on a standalone Darknet website offering ransomware called CryptoLocker Service to anyone willing to pay a small fee and 10% of the collected ransom. The new venture is being run by a person using the handle Fakben, who was a former user of the Evolution (Evo) marketplace, writes CSO Online's Steve Ragan. Customers pay $50 to get the basic Ransomware payload. Once the victim pays the demanded ransom, the payment address will forward the funds – less a ten percent fee – to the Bitcoin wallet designated by the CryptoLocker Service customer. The ransom fee itself can be determined by the customer, but the recommended fee is $200. 'I prefer to be less expensive, more downloads and more infections,' Fakben said during a brief chat with Ragan.

62 comments

  1. Cue the stupid comments by U2xhc2hkb3QgU3Vja3M · · Score: -1

    Here comes the stupid comments about how Bitcoin is only used by scammers and thieves while ignoring the fact that regular fiat money/currency is used for the same activities on a much, much larger scale.

    1. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      Can we start making stupid comments about how fakben should be found and shot in the face ?

    2. Re:Cue the stupid comments by Holi · · Score: 1

      Yep there was a stupid comment alright.

      --
      Sorry, teleporters just kill you and then make a copy. A perfect, soul-less copy.
    3. Re:Cue the stupid comments by DanJ_UK · · Score: 0

      Yup.

      --
      - Dan
    4. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      Your statement is misleading at best. The first part of it about Bitcoin mostly being used by criminals is a statement about the relative volume of transactions involving legal and illegal activity. The second part about the volume of transactions involving illegal activity using Bitcoin versus illegal activity paid for with other currencies is not equivalent to the first part. While it's virtually certain that far more illegal activity is paid for with other currencies than with Bitcoin, that's due to other currencies being far more widely used around the world. The proportion of Bitcoin used to pay for illegal activities versus the total volume of transactions is likely higher than, say, the total value of US dollars used to pay for illegal activity versus the total volume of all transactions with the US dollar.

    5. Re: Cue the stupid comments by Anonymous Coward · · Score: 0, Funny

      I would like to make a stupid content about how this is a new low for slashvertisements.

    6. Re:Cue the stupid comments by Anonymous Coward · · Score: 1

      "while ignoring the fact that regular fiat money/currency is used"

      What has the Italian car company Fiat got to do with Bitcoin?

    7. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      Wow, you have links to stories about successful ransomware attacks that used something other than cryptocurrencies, then...

    8. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      Oh hey, you stopped posting links to that shitty website.
      Thanks for not being a piece of crap.

    9. Re:Cue the stupid comments by sims+2 · · Score: 4, Interesting

      Pretty much anything on this list:
      https://en.wikipedia.org/wiki/...

      Every one I have run across has wanted a CC not bitcoin. Although its been about a year since i've seen one.

      They didn't encrypt files but they often prevented you from running any other programs until you paid up so I still consider that ransomware even if not on the same scale.

      --
      Minimum threshold fixed. Thanks!
    10. Re:Cue the stupid comments by Anonymous Coward · · Score: 1

      "while ignoring the fact that regular fiat money/currency is used"

      What has the Italian car company Fiat got to do with Bitcoin?

      You put your ill-gotten bitcoins in the trunk and drive away!

    11. Re:Cue the stupid comments by mlw4428 · · Score: 1, Offtopic

      Except that's not true. Fiat currency is also supported by the military, economic, and diplomatic might of its host nation. Bitcoin is supported by some zit covered anarchist angsty teenager living in his mom's basement. What's hilarious is that he thinks that if he could get enough OTHER people to call his "money", that he "earned" by leaving a PC turned on and masturbating to anime, "legit" that he'll never need to develop the social skills necessary to get a real job and he'll be able to stay home all day in his PJs and never bathing while pwning n00bs on CoD. That's the real difference and that's why Bitcoin will never be anything more than a cute fantasy.

    12. Re:Cue the stupid comments by Anonymous Coward · · Score: 1

      Pretty much anything on this list:
      https://en.wikipedia.org/wiki/...

      Every one I have run across has wanted a CC not bitcoin. Although its been about a year since i've seen one.

      They didn't encrypt files but they often prevented you from running any other programs until you paid up so I still consider that ransomware even if not on the same scale.

      A fraudulent credit card transaction can easily be reversed. How do I claim a fraudulent bitcoin transaction that needs to be reversed?

    13. Re:Cue the stupid comments by fahrbot-bot · · Score: 4, Funny

      Fiat currency is also supported by the military, economic, and diplomatic might of its host nation.

      The two main problems with Fiat currency is how impractical it is to carry around a large quantity and getting useful change. The newer, smaller models help, but there's always someone who has a problem converting between two and four-door units, etc...

      --
      It must have been something you assimilated. . . .
    14. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      Here comes the stupid comments about how Bitcoin is only used by scammers and thieves while ignoring the fact that regular fiat money/currency is used for the same activities on a much, much larger scale.

      It seems you decided to create a straw man and attack that, because few are doing that.

      My problem with bitcoin isn't who use it, but that Bitcoin has proven to be very similar to highly speculative and volatile penny stocks. Value is not only varying wildly, but easily manipulated. I used to frequent trading forums and it is funny to see one of the most used comments there make a strong appearance in bitcoin discussions -- "you are just jealous you didn't get in on it earlier". And to be clear; people should of course be free to speculate in bitcoin or penny stocks.

    15. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      Because Ferraris are expensive.

    16. Re:Cue the stupid comments by Coren22 · · Score: 1

      No, he didn't, it is just now a proper signature which ACs can't see.

      --
      APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
    17. Re:Cue the stupid comments by Coren22 · · Score: 1

      That must be what it was like to be rich before banks...

      --
      APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
    18. Re:Cue the stupid comments by Coren22 · · Score: 3, Insightful

      If you are using Bitcoin as an investment, you are using it wrong. Bitcoin is meant to be a way to transfer money, not to store massive wealth.

      --
      APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
    19. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      >The first part of it about Bitcoin mostly being used by criminals is a statement about the relative volume of transactions involving legal and illegal activity.

      https://en.wikipedia.org/wiki/Withdrawn_Canadian_banknotes#.241.2C000

      "Printing of the $1,000 note ceased in 2000. The denomination was withdrawn on the advice of the Solicitor General and the Royal Canadian Mounted Police (RCMP), as it was often used for money laundering and organized crime."

      Large cash bills are mostly used for crime. Thus we should eliminate all folding money, correct?

    20. Re:Cue the stupid comments by sexconker · · Score: 1

      The only people who see sigs are logged in users who are too stupid to turn them off.

    21. Re: Cue the stupid comments by Anonymous Coward · · Score: 0

      The thing about fiat currencies? Pretty much everything except perhaps the rare staple based currencies is a different form of fiat. Take gold and silver for instance. Very little of their value is from actual applications. Currency is ironically worthless but very useful for trade.

    22. Re:Cue the stupid comments by bws111 · · Score: 1

      And if it is volatile (and it is), then it is useless for transferring money.

    23. Re:Cue the stupid comments by dbIII · · Score: 2

      Not entirely but it's still a hot potato to pass on before the price changes and the holder gets burnt. It's amusing that people have found such a secondary use for a pyramid scheme but I see it as a sign of how bad the current forms of money transfer are - by design of the middlemen getting a cut.

    24. Re:Cue the stupid comments by Anonymous Coward · · Score: 0

      Not entirely but it's still a hot potato to pass on before the price changes and the holder gets burnt. It's amusing that people have found such a secondary use for a pyramid scheme but I see it as a sign of how bad the current forms of money transfer are - by design of the middlemen getting a cut.

      I have never understood why money transfer is considered a problem, but I guess the options vary between countries. I can very easily transfer money cost free to anyone from one day to the next, using my banks phone app or internet bank. And the newest option is an app that can transfer money instantly just by knowing the other persons phone number.

    25. Re:Cue the stupid comments by U2xhc2hkb3QgU3Vja3M · · Score: 1

      You can blame Slashdot's messed-up user configuration pages for that one. Things are all over the place and they even "fixed" the HTML in my signature which lowers the actual number of characters I can use. This is the first time in my life I see something like "</a coinbrawl.com>".

    26. Re:Cue the stupid comments by dbIII · · Score: 1

      I have never understood why money transfer is considered a problem

      Greed and artificial barriers.
      I worked for a company that had a perfect solution in 2000 and all they needed to get it to work was for the banks to agree, but Wells Fargo etc were threatened by that and the dozens of others trying to do the same thing and used their influence to block everything. Eventually PayPal managed to do an end-run around them. I find it very strange that it takes five days for me to transfer money into the account of another bank or I can do it in less than five minutes by withdrawing the cash, walking twenty steps, and then depositing it.

  2. I'm bored. Wanna fuck? by Anonymous Coward · · Score: -1

    Meet me in the 3rd floor men's room. Last stall. Codeword: taco.

  3. Wut? by Anonymous Coward · · Score: -1

    Wut?

  4. this sort of stuff will continue.. by Anonymous Coward · · Score: 0, Insightful

    until we make it an international death penalty to use or produce such software. Put the NSA/CIA/FBI to use to determine the location of the authors, and target their home with reaper drones.

    1. Re:this sort of stuff will continue.. by Anonymous Coward · · Score: 0

      And the IPs for all seven of their proxies....

    2. Re:this sort of stuff will continue.. by Anonymous Coward · · Score: 0

      What if NSA/CIA/FBI are the authors, raking in easy black budget money?

  5. how is ransomware installed? by Anonymous Coward · · Score: 0

    How is ransomware installed on personal computers? Do anti-virus programs not detect them? Are firewalls able to block them? Do users run executable programs from unknown websites as an administrator or without using a sandbox? I don't know, that is why I am asking.

    I remember I caught a malware program at least three years ago by not using adblock and an antivirus program. Google search directed me to a website that had advertisements. The ads installed adware and unwanted toolbars somehow. I was using Firefox browser, I think. I forgot how I removed the adware. I think I had to reboot Windows in safemode and then run Adaware or Spybot Search and Destroy.

    1. Re:how is ransomware installed? by Anonymous Coward · · Score: 0

      This issue only affects Microsoft Windows machines (of course). Therefore don't use Windows and you'll be ok.

    2. Re:how is ransomware installed? by Coren22 · · Score: 2

      Except that it now is available for Linux and Mac.

      http://it.slashdot.org/story/1...
      http://apple.slashdot.org/stor...

      All someone has to do is distribute the software with some other piece of software that looks legit, wait a week, and then spring up requesting money. This isn't hard to do unfortunately. As far as I understand the current crop of ransomwares for Windows, you have to click on the executable for them to happen. I haven't ever actually run across one yet though, so I could be wrong. You may be too young to remember, but this is not a new thing:

      https://en.wikipedia.org/wiki/...

      --
      APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
    3. Re:how is ransomware installed? by Anonymous Coward · · Score: 0

      AV software is absolutely worthless. At best, it will catch a Trojan that someone downloaded. Will it catch Web browser exploits via malvertising (the #1 cause of compromises)? No. Will it catch Trojans that are actually made within the past 3-6 months? Nope. Heuristics? Ha, ha, funny.

      AV has two uses realistically: The first is that it checks off a legal box. This is why in previous jobs, I have had to put McAfee on Linux machines, even though Linux viruses have only been seen in lab conditions and not in the wild. OS X? Not sure, but a user (macs4all?) said it has been virus free since OS X was released. The second is that it might catch a moldy-oldy Trojan on a downloaded file.

      Proof of this? First, I will state right out the sample size makes it not viable, but it is an interesting anecdote.

      VM #1: An XP VM which has been running on some form of VMWare since 2008, and been upgraded ever since. It has had AdBlock and FlashBlock on it with Firefox... and I have periodically stopped the VM, looked at the system volume manually and recently with Autoruns [1]. Have not had malware pop up, nor new stuff added, other than updates to Firefox and the two add-ons. No A/V whatsoever is on this machine.

      VM #2: An image of a more recent version of Windows that is up to date with AV, but only has a basic web browser, no ad blocking whatsoever. Well, ~10 minutes after visiting a certain top tier social network site, I'm getting scareware, and soon after, browser toolbars. This test is easily repeated.

      tl;dr... AV is worthless, ad-blocking is how you keep your machines clean.

      [1] Autoruns has a nice feature of running all executables through VirusTotal in the latest version. This does a great job in offline scanning of a suspect PC.

  6. Let's Just Be Honest by Anonymous Coward · · Score: -1

    If this guy or his miscreants (and those like him) ever cause a death because of this malware, they should be hunted down and killed. Full stop. Prison is too good for these guys. I know some people on /. are liberal-minded and are opposed to the death penalty, but really, there are people out there that really deserve it: malware authors, child molesters, rapists, drug dealers (especially if sold to minors). Singapore doesn't have much of a drug problem. The middle east in general doesn't have much of a pedophile problem (not counting those sick asshats in Afghanistan who our soldiers outed).

    Seriously, until we hunt these people down and make their punishment swift, ugly, and permanent, too many will want to get involved in this business.

    1. Re:Let's Just Be Honest by Anonymous Coward · · Score: 0

      Singapore doesn't have much of a drug problem.

      Of course it has. I had a hard time trying to get high there. Definitely a problem.

  7. Nmae that smell by Anonymous Coward · · Score: -1

    This just proves that you can call a piece of shit a different name, but it still shit.

  8. Not doing their jobs.... by Anonymous Coward · · Score: 0

    Wtb a government that gives a shit about people being ransomed by these assholes. Anyone else wanna find these closet gangsters and throw them off a bridge for grandma?

    1. Re:Not doing their jobs.... by Anonymous Coward · · Score: 0

      I'm not a proponent of vigilante justice, but sometimes I wonder what it would be like to live in a society like that depicted in "The Purge"

      I'm sure in that society, we'd have portions of Anonymous devoted to spending 355 days tracking down "bad" people, only to have them "sentenced" on the night of the purge.

      I'm pretty sure I wouldn't want to live in that society however, since I'd likely have to be part of the half that goes into hiding that night.

  9. Re:I'm bored. Wanna fuck? by Anonymous Coward · · Score: -1

    Sure, i'd love to. What address?

    APK

    P.S. => Who gets top? ...apk

  10. Surprised by Anonymous Coward · · Score: 0

    Surprised, given the amount of bad ju-ju on the Internet these days, that this idea isn't getting more support. What happens if the above comes true, and say, a hospital computer is infected and there is life and death info on the system and they cannot get the data even if they did decide to pay. This is coming next. Look at all the DDoS attacks on email providers this week. One paid the demand and the DDoS continued.

    If these people are caught, they should hang.

  11. Malware as a service? by Anonymous Coward · · Score: 0

    This is getting ridiculous.

  12. Re:I'm bored. Wanna fuck? by sexconker · · Score: 1

    If you have to ask who will be the top, you're the bottom.

  13. Ransomware... by Anonymous Coward · · Score: 0

    Is this not just a very good reason to have your files backed up (either online or offline) so that if your PC is indeed infected, you can simply wipe (or better yet, restore to a previous uninfected VM image).

    Surely most people who have important documents (ones that are irreplaceable (videos, photos) or too costly to redo (large office docs, source code etc) know that it's important to back them up on something that is secure.

    Heck, even using something like google drive would be better than nothing. I know it's hard to have software 100% secure, but I really don't have much sympathy for people who don't back up, and then fall victim to a scam like this.

    1. Re:Ransomware... by Anonymous Coward · · Score: 0

      Latest generation of ransomware purges backups.

      You are going to have to go one level up, which is having backups sucked from outside the computer or VM, and then checked somehow that the files are not corrupted. Want a solution that does this? Symantec has a NetBackup appliance... but be prepared to pay $50,000 for it.

  14. Not sure about the death penalty by waspleg · · Score: 1

    but it's sure as fuck in the at-least-as-offensive-as-child-porn category. How come these assholes aren't getting waterboarded?

  15. Customers of such service by MinamataHG · · Score: 1

    should be found and shot.
    They are parasites...

  16. Re:I'm bored. Wanna fuck? by Anonymous Coward · · Score: 0

    Better be careful where you put what into which.
    APK is known to be Hosts for all sorts of infections.

  17. Coren22 = "Run, Forrest: RUN!!!" #1/6 by Anonymous Coward · · Score: 0

    "Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015

    Where'd I say it? Show us (not illogic logic but where I literally said it). I say AD needs internal DNS far back as 2007

    http://forums.tweaktown.com/wi...

    See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there in my security guide.

    Fact: You shoot your mouth off lying about it & me, hmmm?

    (It's your mentally damaged goods assburgers brain acting up trying to put words in my mouth I never said? Yes...)

    ---

    Where did I say I don't use DNS too?

    Clue: I do & detailed it for you AGAIN (via my std. post on DNS vs. hosts) -> http://slashdot.org/comments.p...

    ---

    "You must really suck at programming" - by Coren22 on Monday November 23, 2015

    What've you programmed? Other /.'ers disagree:

    "his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

    "I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

    "APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

    "his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

    "No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

    APK

    P.S.=> Con't. in 2/6... apk

  18. Coren22 = "Run, Forrest: RUN!!!" #2/6 by Anonymous Coward · · Score: 0

    "figured out why privilege escalation's a bad thing?" - by Coren22 on Tuesday September 22, 2015

    How else can I programmatically update hosts itself?

    ---

    "it requires elevation to write hosts" - by Coren22 (1625475) on Wednesday September 23, 2015

    Hypocrite later admits it!

    Even MalwareBytes AntiMalware DEMANDS it or it can't do a job fully like many security tools!

    ---

    "Needing admin privileges every time a program updates is poor design" - by Coren22 (1625475) on Tuesday November 10, 2015

    Mine doesn't to get new data to update hosts vs. threats. Only hosts itself updates need it vs. WFP/SFP. Users set it too. It's not programmatic impersonation.

    ---

    "90's tech to fight modern war" - by Coren22 (1625475) on Tuesday November 10, 2015

    Ozymandias/Watchmen per a namesake:

    "I resolved to apply antiquities teachings" (hosts) "to our world today & began my path to conquest - Conquest not of men but of the evils that beset them: Fossil Fuels (antispyware), Oil (antivir), Nuclear Power (addons) are like a drug & you gentlemen along w/ foreign interests are the pushers"

    It works Aryeh Goretsky NOD32/ESET hosts = good security-> http://it.slashdot.org/comment...

    Oliver Day (Symantec) too-> http://www.securityfocus.com/c...

    MalwareBytes' hpHosts' Admin hosts + RECOMMENDS my APK Hosts File Engine 9.0++ SR-2 32/64-bit-> http://hosts-file.net/?s=Downl...

    APK

    P.S.=> Con't. in #3/6... apk

  19. Coren22 = "Run, Forrest: RUN!!!" #3/6 by Anonymous Coward · · Score: 0

    "I guess we should avoid your crap, it looks like it is marked as malware." - by Coren22 (1625475) on Monday November 02, 2015 @03:52PM (#50850445)

    62 reputable sources + /. users say different:

    Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...

    +

    the 32-bit model https://www.virustotal.com/en/...

    &

    Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...

    ---

    MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...

    (& he certified my source http://slashdot.org/comments.p... - he wouldn't host it, much less recommend it, minus that...) /.'ers say my work is good too:

    "his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

    "I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

    "APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

    "his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

    "No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

    APK

    P.S.=> Con't in part #4/6... apk

  20. Coren22 = "Run, Forrest: RUN!!!" #4/6 by Anonymous Coward · · Score: 0

    "His newest post is trying to refute that MiTM attack opportunity his software provides" - by Coren22 (1625475) on Wednesday November 18, 2015

    I DISPROVED it: Hardcoded favs users provide themselves are REVERSE DNS verified & my program filters 5,500++ false positives:

    1.) Search engines
    2.) Antivirus (e.g. updaters)
    3.) Security community sites
    4.) Captchas, brower home pages + download pages
    5.) Ebay/Amazon (shopper & banking)

    (Security community I get hosts data from do false positives filters in current data + removal lists).

    ---

    "won't demonstrate security of his product be exposing the source (someone might steal it!)" - by Coren22 (1625475) on Wednesday November 18, 2015

    I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

    "the secretary at MalwareBytes took a look at his source code and said it looked all good to them" - by Coren22 (1625475) on Wednesday November 18, 2015

    My ware went thru code verification by Mr. Steven Burn of Malwarebytes' hpHosts

    http://slashdot.org/comments.p...

    A competent coder & BEST security researcher I know of FROM THE BEST ANTIMALWARE THERE IS http://www.av-test.org/en/news...

    NOT a secretary!

    ---

    YOU BLEW IT ON ADMIN PRIV TOO: My program doesn't require it hosts does (WFP/SFP): my program protects hosts beyond it!

    I.E.-> I run manually minus admin priv & drag result to hosts naming it "hosts" overwriting original.

    Only auto update needs it (WFP/SFP) & users set it themselves in program shortcut: Not programmatic impersonation.

    ---

    DNS introduces a SECURITY ISSUE RIDDLED SINGLE POINT OF FAILURE & doesn't secure down to endpoints on a LAN -> http://slashdot.org/comments.p...

    How I use remote filtering DNS combined w/ hosts is there showing many DNS security issues hosts overcome.

    APK

    P.S.=> Con't in part #5/6... apk

  21. Coren22 = "Run, Forrest: RUN!!!" #5/6 by Anonymous Coward · · Score: 0

    "Virus scanners/Adblock software don't need admin priv to update" - by Coren22 (1625475) on Tuesday November 10, 2015

    Neither does my program. AV does to remove threats - Adblock addons = Vastly INFERIOR in abilities + efficiency vs. hosts as I proved & no one proved me wrong to date!

    ---

    "your software does" - by Coren22 (1625475) on Tuesday November 10, 2015

    No hosts do (WFP/SFP) - Intake update of new hosts data doesn't!

    ---

    "won't reveal your source code" - by Coren22 (1625475) on Tuesday November 10, 2015

    I don't owe you it. I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

    ---

    "What's stopping you from pointing my bank's web site at your private server?" - by Coren22 (1625475) on Tuesday November 10, 2015

    I don't keep a server. Security guru (not - you create no ware for security & your forensics skills = non-existent): Put it in a VM, trace it via process monitor + wireshark (don't need code)!

    ---

    "the possibility of being caught, which would be pretty hard to catch w/ such a large hosts file, as no one can go through it manually." - by Coren22 (1625475) on Tuesday November 10, 2015

    I put hardcoded fav sites @ top of hosts for speed & reliabilty - spotted easily & bulk of hosts = sorted blocked known bad threats provided by the security community (filtered vs. 5,500++ false positive possibles in my program & by current security community data).

    ---

    "What are you going to do when Windows gets rid of the hosts file completely?" - by Coren22 (1625475) on Tuesday November 10, 2015

    Hasn't happened!

    ---

    "They have already taken steps to make it useless in Windows 10." - by Coren22 (1625475) on Tuesday November 10, 2015

    It works there!

    Telemetry's killed 10 by itself: VISTA = Win10 = Win8 = flops - who're you fooling other than yourself?

    APK

    P.S.=> Con't. in #6/6... apk

  22. Coren22 = "Run, Forrest: RUN!!!" #6/6 by Anonymous Coward · · Score: 0

    Coren22 'eats his words' vs. me 2x yet again:

    "introduces risk you are relying on a 3rd party to update a hosts file potentially opening you up to MITM attacks" - by Coren22 (1625475) on Tuesday November 17, 2015

    How? My prog puts entries in as non-blocking to hostnames on ones users give it as favs to speed up @ TOP of hosts REVERSE DNS VERIFIED!

    (For more speed, & reliability + security - in RAM as 1st resolver queried = faster & more secure vs. remote DNS w/ all its security issues in Kaminsky flaw, DNSChanger malware IP stack settings, routers bushwhacked in DNS settings, rogue DNS, Open DNS servers abused by malware. It aids in reliability vs. redirects).

    YOU'D SPOT IT INSTANTLY @ TOP OF CUSTOM HOSTS & can easily edit anything you want out!

    (Rest = known bad sites from 10 reputable security community sites for blocking - the MAJORITY of what's in my hosts files!)

    + my sources do removal lists vs. false positives & helped me create a "FP" filter in my program (5,500++ of them)!

    ---

    "maybe one day you can get a score 5 comment" - by Coren22 (1625475) on Tuesday November 17, 2015

    See subject & ~ 12 +5 upmods: "Eat your words" (1st one: You tried using what I post there against me to FAIL):

    +5 'modded up' posts by "yours truly" (11):

    http://news.slashdot.org/comme...
    http://tech.slashdot.org/comme...
    http://news.slashdot.org/comme...
    http://science.slashdot.org/co...
    http://tech.slashdot.org/comme...
    http://hardware.slashdot.org/c...
    http://news.slashdot.org/comme...
    http://news.slashdot.org/comme...
    http://hardware.slashdot.org/c...
    http://yro.slashdot.org/commen...
    http://yro.slashdot.org/commen...

    "You believe you are getting the better of me" - by Coren22 (1625475) on Tuesday November 17, 2015

    YOU GOT THE BEST OF YOURSELF in fails & lies about me. Your immature signatures about me SCREAM you're butthurt - Did it to yourself.

    APK

    P.S.=> You fail Coren22... apk

  23. Coren22 = "Run, Forrest: RUN!!!" #1/6 by Anonymous Coward · · Score: 0

    "Apk doesn't think DNS servers are worth running & believes Microsoft Active Directory can run w/out DNS." - by Coren22 (1625475) on Tuesday October 27, 2015

    Where'd I say it? Show us (not illogic logic but where I literally said it). I say AD needs internal DNS far back as 2007

    http://forums.tweaktown.com/wi...

    See "To warn users who have ActiveDirectory/AD LAN-WAN setups to NOT use external DNS servers" there in my security guide.

    Fact: You shoot your mouth off lying about it & me, hmmm?

    (It's your mentally damaged goods assburgers brain acting up trying to put words in my mouth I never said? Yes...)

    ---

    Where did I say I don't use DNS too?

    Clue: I do & detailed it for you AGAIN (via my std. post on DNS vs. hosts) -> http://slashdot.org/comments.p...

    ---

    "You must really suck at programming" - by Coren22 on Monday November 23, 2015

    What've you programmed? Other /.'ers disagree:

    "his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

    "I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

    "APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

    "his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

    "No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

    APK

    P.S.=> Con't. in 2/6... apk

  24. Coren22 = "Run, Forrest: RUN!!!" #2/6 by Anonymous Coward · · Score: 0

    "figured out why privilege escalation's a bad thing?" - by Coren22 on Tuesday September 22, 2015

    How else can I programmatically update hosts itself?

    ---

    "it requires elevation to write hosts" - by Coren22 (1625475) on Wednesday September 23, 2015

    Hypocrite later admits it!

    Even MalwareBytes AntiMalware DEMANDS it or it can't do a job fully like many security tools!

    ---

    "Needing admin privileges every time a program updates is poor design" - by Coren22 (1625475) on Tuesday November 10, 2015

    Mine doesn't to get new data to update hosts vs. threats. Only hosts itself updates need it vs. WFP/SFP. Users set it too. It's not programmatic impersonation.

    ---

    "90's tech to fight modern war" - by Coren22 (1625475) on Tuesday November 10, 2015

    Ozymandias/Watchmen per a namesake:

    "I resolved to apply antiquities teachings" (hosts) "to our world today & began my path to conquest - Conquest not of men but of the evils that beset them: Fossil Fuels (antispyware), Oil (antivir), Nuclear Power (addons) are like a drug & you gentlemen along w/ foreign interests are the pushers"

    It works Aryeh Goretsky NOD32/ESET hosts = good security-> http://it.slashdot.org/comment...

    Oliver Day (Symantec) too-> http://www.securityfocus.com/c...

    MalwareBytes' hpHosts' Admin hosts + RECOMMENDS my APK Hosts File Engine 9.0++ SR-2 32/64-bit-> http://hosts-file.net/?s=Downl...

    APK

    P.S.=> Con't. in #3/6... apk

  25. Coren22 = "Run, Forrest: RUN!!!" #3/6 by Anonymous Coward · · Score: 0

    "I guess we should avoid your crap, it looks like it is marked as malware." - by Coren22 (1625475) on Monday November 02, 2015 @03:52PM (#50850445)

    62 reputable sources + /. users say different:

    Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...

    +

    the 32-bit model https://www.virustotal.com/en/...

    &

    Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...

    ---

    MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...

    (& he certified my source http://slashdot.org/comments.p... - he wouldn't host it, much less recommend it, minus that...) /.'ers say my work is good too:

    "his hosts program is actually pretty good" - by xenotransplant (4179011) on Monday August 10, 2015 @03:34PM (#50287195)

    "I like your host file system." - by Karmashock (2415832) on Wednesday September 09, 2015 @03:57PM (#50489401)

    "APK is kinda right... I've given up on JS based adblocking and gone to blackholing in /etc/hosts, just like it was back in the 90s. The computational load has gotten intolerable for any ad-blocking using JS. I've tried his hosts file generating software. It works." - by bmo (77928) on Thursday October 15, 2015 @11:30AM (#50736071)

    "his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources" by alexgieg (948359) on Friday September 25, 2015 @09:57AM (#50596461)

    "No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)

    APK

    P.S.=> Con't in part #4/6... apk

  26. Coren22 = "Run, Forrest: RUN!!!" #4/6 by Anonymous Coward · · Score: 0

    "His newest post is trying to refute that MiTM attack opportunity his software provides" - by Coren22 (1625475) on Wednesday November 18, 2015

    I DISPROVED it: Hardcoded favs users provide themselves are REVERSE DNS verified & my program filters 5,500++ false positives:

    1.) Search engines
    2.) Antivirus (e.g. updaters)
    3.) Security community sites
    4.) Captchas, brower home pages + download pages
    5.) Ebay/Amazon (shopper & banking)

    (Security community I get hosts data from do false positives filters in current data + removal lists).

    ---

    "won't demonstrate security of his product be exposing the source (someone might steal it!)" - by Coren22 (1625475) on Wednesday November 18, 2015

    I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

    "the secretary at MalwareBytes took a look at his source code and said it looked all good to them" - by Coren22 (1625475) on Wednesday November 18, 2015

    My ware went thru code verification by Mr. Steven Burn of Malwarebytes' hpHosts

    http://slashdot.org/comments.p...

    A competent coder & BEST security researcher I know of FROM THE BEST ANTIMALWARE THERE IS http://www.av-test.org/en/news...

    NOT a secretary!

    ---

    YOU BLEW IT ON ADMIN PRIV TOO: My program doesn't require it hosts does (WFP/SFP): my program protects hosts beyond it!

    I.E.-> I run manually minus admin priv & drag result to hosts naming it "hosts" overwriting original.

    Only auto update needs it (WFP/SFP) & users set it themselves in program shortcut: Not programmatic impersonation.

    ---

    DNS introduces a SECURITY ISSUE RIDDLED SINGLE POINT OF FAILURE & doesn't secure down to endpoints on a LAN -> http://slashdot.org/comments.p...

    How I use remote filtering DNS combined w/ hosts is there showing many DNS security issues hosts overcome.

    APK

    P.S.=> Con't in part #5/6... apk

  27. Coren22 = "Run, Forrest: RUN!!!" #5/6 by Anonymous Coward · · Score: 0

    "Virus scanners/Adblock software don't need admin priv to update" - by Coren22 (1625475) on Tuesday November 10, 2015

    Neither does my program. AV does to remove threats - Adblock addons = Vastly INFERIOR in abilities + efficiency vs. hosts as I proved & no one proved me wrong to date!

    ---

    "your software does" - by Coren22 (1625475) on Tuesday November 10, 2015

    No hosts do (WFP/SFP) - Intake update of new hosts data doesn't!

    ---

    "won't reveal your source code" - by Coren22 (1625475) on Tuesday November 10, 2015

    I don't owe you it. I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...

    ---

    "What's stopping you from pointing my bank's web site at your private server?" - by Coren22 (1625475) on Tuesday November 10, 2015

    I don't keep a server. Security guru (not - you create no ware for security & your forensics skills = non-existent): Put it in a VM, trace it via process monitor + wireshark (don't need code)!

    ---

    "the possibility of being caught, which would be pretty hard to catch w/ such a large hosts file, as no one can go through it manually." - by Coren22 (1625475) on Tuesday November 10, 2015

    I put hardcoded fav sites @ top of hosts for speed & reliabilty - spotted easily & bulk of hosts = sorted blocked known bad threats provided by the security community (filtered vs. 5,500++ false positive possibles in my program & by current security community data).

    ---

    "What are you going to do when Windows gets rid of the hosts file completely?" - by Coren22 (1625475) on Tuesday November 10, 2015

    Hasn't happened!

    ---

    "They have already taken steps to make it useless in Windows 10." - by Coren22 (1625475) on Tuesday November 10, 2015

    It works there!

    Telemetry's killed 10 by itself: VISTA = Win10 = Win8 = flops - who're you fooling other than yourself?

    APK

    P.S.=> Con't. in #6/6... apk

  28. Coren22 = "Run, Forrest: RUN!!!" #6/6 by Anonymous Coward · · Score: 0

    Coren22 'eats his words' vs. me 2x yet again:

    "introduces risk you are relying on a 3rd party to update a hosts file potentially opening you up to MITM attacks" - by Coren22 (1625475) on Tuesday November 17, 2015

    How? My prog puts entries in as non-blocking to hostnames on ones users give it as favs to speed up @ TOP of hosts REVERSE DNS VERIFIED!

    (For more speed, & reliability + security - in RAM as 1st resolver queried = faster & more secure vs. remote DNS w/ all its security issues in Kaminsky flaw, DNSChanger malware IP stack settings, routers bushwhacked in DNS settings, rogue DNS, Open DNS servers abused by malware. It aids in reliability vs. redirects).

    YOU'D SPOT IT INSTANTLY @ TOP OF CUSTOM HOSTS & can easily edit anything you want out!

    (Rest = known bad sites from 10 reputable security community sites for blocking - the MAJORITY of what's in my hosts files!)

    + my sources do removal lists vs. false positives & helped me create a "FP" filter in my program (5,500++ of them)!

    ---

    "maybe one day you can get a score 5 comment" - by Coren22 (1625475) on Tuesday November 17, 2015

    See subject & ~ 12 +5 upmods: "Eat your words" (1st one: You tried using what I post there against me to FAIL):

    +5 'modded up' posts by "yours truly" (11):

    http://news.slashdot.org/comme...
    http://tech.slashdot.org/comme...
    http://news.slashdot.org/comme...
    http://science.slashdot.org/co...
    http://tech.slashdot.org/comme...
    http://hardware.slashdot.org/c...
    http://news.slashdot.org/comme...
    http://news.slashdot.org/comme...
    http://hardware.slashdot.org/c...
    http://yro.slashdot.org/commen...
    http://yro.slashdot.org/commen...

    "You believe you are getting the better of me" - by Coren22 (1625475) on Tuesday November 17, 2015

    YOU GOT THE BEST OF YOURSELF in fails & lies about me. Your immature signatures about me SCREAM you're butthurt - Did it to yourself.

    APK

    P.S.=> You fail Coren22... apk