CARMA: Council of Advocates for Relief from Malware Assimilation, Inc

New Forum

2005-07-23T22:55:00.000-04:00

As I reported in an earlier post last month, CARMA has aquired a dedicated server and the website is now located there, with a new look . The forum software from Invision Power Board has been purchased and installed. With the help of the owner of InvisionFree, where the board was located originally and the technicians at IPS, the new board is now up and running.

But not without some glitches and problems. I had hoped to use some beautiful skins for the board, but the images will not display. And I haven't been able to figure out why. Also, minor problems such as email notifications of new posts seem to plague some of the members. I, myself, wasn't receiving ANY notifs at all.....for pm's or posts. That is resolved, although a few members report they are still having problems being notified.

Since this is my server, I'm learning a lot in that area, as well as running the forum (InvisionFree hosted the board and took care of the servers and a lot of other stuff in the back) that I didn't have access to before. More control, but a lot more to learn....much of which I am ignorant of at the moment. But I'm working hard to learn what I need to.....it's just going to take time, as there is an overwhelming amount in different areas I need to know. Fortunately, I've got some very good friends to help with this, til I get more adept at it. Please stop by the forums and check it out. I hope to be able to get it the way I want for the members to enjoy and learn.

On a personal note, this past week I was MIA, so to speak, as my daughter had to be admitted to the hospital with a severe kidney infection. Because of that, I spent the better part of the week at her home (no internet access there) babysitting two of my grandchildren. Although I made the trip home each day to check on my cats and my dog, there was very little time to do much more thatn check the board and make sure all was going well. At least that was my hope....seems the glitches knew what was going on and chose that time to make themselves known. I think my cats were convinced I had abandoned them....and the ants apparently were convinced I had and staged a coup....but nothing that a little insecticide couldn't fix. LOL. They are still trying to make a comeback, but their efforts are in vain.

I'll be busy the next few weeks trying to get things ironed out with the server and the board. Don't get me wrong, the board is working pretty good for the most part. Just need to get the glitches worked out and try to get the other things I wanted for it in place.

Thanks for reading :)

Latest shocking news from Papeghost on MMG

2005-06-22T14:55:00.000-04:00

Paperghost has posted the latest on the BitTorrent/MMG epic:

Why Underage Porn is Bad PR

Read it, folks.

Riding on Coattails

2005-06-22T03:02:00.000-04:00

Green-eyed Monster?

Paperghost of VitalSecurity.org has been a busy dude the past few months, as I wrote about in the last entry. Devoting much of his waking (and, I believe, sleeping) hours to tracking down spyware such as Aurora.....and doing a damn good job of it too. His efforts have garnered him much acclaim and praise, as well as a Microsoft MVP award for his selfless work.

But with fame, there come the naysayers, who, for no other reason, it seems, want to trash his name and his work. The latest is one John C Dvorak, contributing editor for PC Mag. His latest "article" cries that Bit Torrent was unjustly, and unfairly treated and defamed. Rubbish. Pure and simple. Anyone with any sense at all and actually read the article could see that. Well, anyone, apparently except Mr. Dvorak.

But Chris Boyd, aka Paperghost, isn't bothered by this. He's addressed Mr. Dvorak's outrageous ramblings in his latest blog entry: Simple Facts, told as Lies; Simple Lies, told as Fact. A much better read, IMO. And he's promised us more later today. :)

Guess maybe it was a slow news day, huh, Mr. Dvorak?

CARMA News:

On a lighter note, I wish to announce that CARMA has acquired a dedicated server whereupon the website will be moved and a new forum installed. Well, the forum won't be 'new', just a new location, new look, and upgraded to IPB. The license will be purchased shortly, thanks to donations from kind users and an auction held by members of the forum.

I want to thank all the members there, as you've made the CARMA forums a special place. This new move to this server is exciting and I'm learning a lot already. Though, I do have to say, it may take me some time to get all this done. The website will be moved first, then the forum. Announcements will be made on the forum as things develop and finalize.

A Brief History

2005-06-10T02:37:00.000-04:00

He's been at it for quite a few years now.

After his first site went off the Net, he returned to begin anew.

From the hard-to-remove Ceres.dll to 100+ Malware installs and 65MB malware downloads to an exploit that uses FireFox to infect IE and an XPi installer as well, it was on to Spazbox and a murky foray in a dark world to uncover it's source only to revisit them later on.

But our hero wasn't satisfied with that. Ever diligent and determined, he drew a bead on Direct Revenue, warning them that he had them in his sights. Scoffing at them, he explored Aurora, then called for a revolution.

Victory seemed to be at hand, but our hero wasn't satisfied until he dug up the source of the Aurora install that had eluded everyone for so long.

Paperghost from VitalSecurity.org and the Last Son of Toshogu is still on the hunt. Though side trips have taken him to San Francisco and 180 solutions' pleas for help, but squirming in the barrage of questions and though his efforts have garnered him an MSVP for 2005, he is still on the prowl, determined to ferret out that which chooses to remain hidden in order to damage one's pc, or try to get your money or information...or both.

Move over Batman....Ghost is at the wheel now.

Worst Browser Threats May Not Be Security Holes

2005-05-17T20:53:00.000-04:00

Recommended reading;

May 17, 2005
By Brian Livingston

Experts in combating "spyware" and "adware" are now warning that the widely publicized security holes that plague Internet Explorer and other Web browsers may not be the most common ways unwanted software gets into computer users' PCs.
Eric Howes, a frequent contributor to SpywareWarrior.com and a consultant to antispyware companies, says the media focus on security holes is overshadowing a larger issue. It's true that hackers can take advantage of weaknesses in browsers to secretly install spyware programs on users' PCs, Howes agrees. But equally important is the fact that spyware programs are often installed because users are fooled into clicking "Yes" by dialog boxes that look like official Windows notices, he says.

Interestingly, Howes asserts that the latest version of Windows XP, which includes an upgrade called Service Pack 2 (SP2), makes Microsoft's Internet Explorer (IE) browser handle such threats better than Firefox, the fast-growing open-source software distributed by the Mozilla Foundation. Let's examine this claim.

How Spyware Tricks Users Into Installing It

The Firefox browser offers at least four ways to install new forms of software, Howes says. He feels two of these ways are fairly safe, while the other two are open to abuse by spyware authors.

Click here to learn more

US anti-spyware bill rises from the ashes

2005-05-15T20:50:00.000-04:00

Declan McCullagh
CNET News.com
May 12, 2005, 09:35 BST

After dying an untimely death last year, a bill seeking to ban spyware has been brought back to life by the US congress

The US Congress didn't quite get around to approving an anti-spyware bill last year — such a bill died while awaiting a Senate floor vote.

Now members of the Senate Commerce Committee are promising to avoid a repeat of last year's lapse. During a hearing on Wednesday, politicians said spyware was a growing threat that required prompt action by Congress.

These are "insidious programs that install themselves on users' computers", said senator Barbara Boxer, a Democrat from California. "It's hard to use analogies with this, but it's sort of like somebody walking around your house, kind of invisibly."

Read the full article

Interview with the Spyware Stalker

2005-05-05T14:08:00.000-04:00

C/Net News did an excellent article on Ben Edelman, one of the most tenacious and vocal enemies of the spyware makers. Here is an exerpt and link to the article.

Spying on the spyware makers

May 4, 2005, 4:00 AM PT
By Declan McCullagh
Staff Writer, CNET News.com

Ben Edelman may be spyware's most dangerous enemy.

The 25-year-old researcher has spent years analyzing how spyware and adware programs work and publicizing his findings. That often results in red faces and, occasionally, lawsuit threats from companies like WhenU and Claria, formerly known as Gator.

When testing spyware and adware, Edelman isn't about to sacrifice his own Windows XP computer. So he uses the VMware utility to create a virtual Windows box.

"I infect the hell out of it," he says. "It destroys the infected machine."

A law student at Harvard University, Edelman is also working on a doctoral degree in economics. CNET News.com caught up with him after he spoke at a conference in San Francisco sponsored by News.com's sister site, Download.com.

Q: What got you interested in spyware in the first place?
Edelman: I took a call from the plaintiffs in the Washington Post case against Gator. They thought what Gator was doing was absolutely destructive to the availability of free content on the Web. After all, if advertisers could buy ads from Gator to reach the Washington Post's audience, who would buy ads from The Washington Post?

I happened to think they were right. But the case settled out of court on the eve of trial, so we didn't find out for sure whether Gator's business was legit.

Read the 2 page article

The State of the Union...Spyware Style

2005-05-04T19:12:00.000-04:00

Webroot Releases Industry's First Comprehensive Report on Spyware

BOULDER, Colo., May 3 /PRNewswire/

Webroot Software, the leading provider of anti-
spyware software and other security technologies
for consumers and enterprises, today released the
anti-spyware industry's first comprehensive report
on spyware, The State of Spyware Report, an in-depth
review and analysis of the impact of spyware, adware
and unwanted software on consumers and enterprises.

Included in the report is concise data of the perva-
siveness of adware and the rise of system monitors
throughout 2004 and for the first quarter of 2005.
The report indicates that the spyware industry is
generating billions of dollars in annual revenue and
now represents a substantial portion of overall online
advertisingspending.

Read the complete report here


The Remedy for Spyware is not in sight...yet

Here is a report on the CNet
Anti-Spyware Workshop, held today in San Francisco, CA.

ZDNet-Posted by Dan Farber @ 12:34 pm


Lydia Parnes, director of the Bureau of Consumer
Protection at the Federal Trade Commission, kicked off
the CNET Anti-Spyware Workshop saying that in defining
spyware “it all depends.” And, a year after the FTC held
a spyware workshop, the spyware and adware companies and
their anti counterparts are still battling and consumers
are caught in the middle.

A State of Spyware Report, issued today by the security
firm Webroot, claims that nearly 90 percent of consumers
and business computers harbored some form of unwanted
software during the first quarter of 2005.

Parnes said the most useful way to deal with spyware and
adware is to focus on two concepts: notice and harm.
Malevolent software, which can be spyware, doesn’t raise
difficult legal issues for the FTC–drive-by installations,
hijacking browsers, keystroke logging and adding bookmarks
surreptitiously, for example, violate a range of laws
including criminal statutes, she said. Adware, which is
usually in the form of pop ups, is not inherently wrong,
Parnes said, but without proper notice and disclosure can be
illegal and potentially harmful, such as causing a system to
slow to a crawl or crash. She said the recent case against 
Intermix brought by the New York attorney general Elliot
Spitzer is a textbook case of deception assuming the
allegations are true.

Get the full report here

Busy, busy, busy

2005-05-03T12:52:00.000-04:00

Still that's not much excuse for neglecting the blog.

The new forum is coming along nicely. If you haven't seen it yet, please stop by the board and have a look around. Guests are only allowed to post in the Guest forum, but it's free to register. Members have a special section visible only to registered members. There's lots to do there besides learning how to protect your pc and keeping up with what's going on the the security community.

In addition to being accepted into ASAP, I was offered an administrator's position at Spyware Warrior. When Suzi asked me, I was as stunned as when Dok dropped the bombshell that CARMA was being admitted to ASAP! Of course, I accepted. Since then, I've become a Site Moderator at Castle Cops, another excellent site. They are both site members of ASAP.

On a more personal note, I was recently the victim of a break-in at my home while I was at work. I came home to find the tv, dvd player, all dvds, cds, and nearly all vhs tapes, gone. Gone were the microwave, the Fry Daddy, almost all the food in my freezer and some from the cabinets, tools in the laundry room and a Tupperware container of change. I am more pissed about the container than the change, as it wasn't something you could just order from Tupperware. I got it as a consultant when I was selling it....so the chances of getting another just like it are next to none. My biggest concern was that my pc was gone. They took my scanner, but apparently must have gotten spooked because the pc, monitor, and printer were still there. What a relief! However, I had to quit my job because the landlord didn't get the door fixed before I had to go back to work. I was NOT about to leave this place unsecured and let them come back to clean me out of what little of value I had left. The door is fixed now, with a new knob AND deadbolt. I don't leave the yard without locking both. Even if I go next door.

I'll be working harder to get things going with CARMA. I'm working on a way to take donations to help speed things up some. I'll be posting here and on the forum when that is available.

CARMA and ASAP

2005-03-10T17:31:00.000-05:00

It is with great pleasure that I announce to you all that CARMA has now been accepted to the list at the Alliance of Security Analysis Professionals (ASAP)

Maddoktor2, founder of ASAP, informed me of the exception they made to the free site stipulation for inclusion on the list. The new forum, which I told about earlier today, is on a free site; however, the main website, CARMA itself, is a subdomain at IT-mate.co.uk, graciously donated by Steve Burn from IT-Mate.

I must say I was stunned by the news. Though I had asked about inclusion earlier this year, he indicated that things needed to get further along first. I thanked him for letting me know that and left it at that. Really didn't think much more about it. Then in a pm at his board about an unrelated topic, he slipped the news in, almost like an afterthought.

Well, if he figured that might temper the shock, he was mistaken....lol. I was blindsided. Totally speechless.

I waited til now to announce the inclusion til after the list was updated. Of course, I told some of the other admins at the board and a couple of the mods. Then earlier, while at Dok's forum, I saw CARMA listed. Almost as exciting as finding out we were accepted!

Thanks, Dok and the others at ASAP, who were consulted about this decision. It is, indeed, an honor!

2005-03-10T03:49:00.000-05:00

Well, it's been a while since I've been here. But I've been quite busy.

Please forgive me for that.

Since the last time I was here, I've added a forum to the website. I invite you to visit and join (it's free, of course). Visitors can view most of the forum, but are only allowed to post in the Guest section. I've done this to avoid any clutter from senseless posting and to help make the mod's job easier by not having to remove unneeded posts.

There is a special Members Area, viewable only after joining. We already have a lively community there and welcome everyone to stop in and participate.

The board is shaping up quite nicely and new additions to what we have now are in the works. A special section, the HijackThis Trauma Center, will be opened once everything is put in that I want there and we have qualified analyzers to do the logs.

I hope you will stop by at the CARMA Forum and join us.

CARMAINC.ORG

2005-01-06T13:56:00.000-05:00

UPDATE:

I recently purchased the domain carmainc in the various extensions available; eg: .org, .com, .net, etc. All are now forwaded to my webhost. Email is now current with the domain and is working well.

I've updated the site, made minor changes, etc., and a big addition is the Acknowledgements page where those individuals and organizations who have contributed in any way to the creation and development of CARMA are listed. As stated on the site, this list isn't all inclusive, as more will be added later.

2005-01-01T19:32:00.000-05:00

Malware Alerts

Here are some interesting articles for your perusal this first day of 2005.

The first one was brought to my attention by my friend in Greece, who saw it on the BBC where the story is found. The Governator doesn't let the grass grow under his feet, does he? It remains to be seen how effective any laws are. But, heck, it's a start!

CALIFORNIA sets fines for spyware
BBC News - London, England, UK
... in California. From 1 January, a new law is being introduced to protect computer users from software known as spyware. The legislation ...

This next article deals with the fraud emails that use phishing techniques. It's predictions don't bode well for the unsuspecting people who will fall for this type of scam. I continue to find it mind-boggling that there are people out there who STILL go for the Nigerian scams! I guess Barnum was right.

THE 'phishing' will be great in 2005
The St. Louis Post-Dispatch - St. Louis, MO, USA
... studied plenty of Internet-based fraud. And his brother-in-law oversees a computer security firm; the pair exchange notes often. ...

Claria, Claria, Claria......A skunk by another name smells just as bad......NOTE: after publishing this, I checked to make sure the links worked and this one from the Beacon Journal wants me to register an account. Before when I first read the article, from my google alerts, that page did not come up. I'm leaving it for now as I try to see if I can find a similar article that won't require registration. If you can access the article without registering, please leave a comment.

This link, http://www.technewsworld.com/story/39156.html
has the same article. However, it has the crap on it where words and phrases are linked to products. *sigh*

POP-UP ad empire makes no apology
Akron Beacon Journal (subscription) - Akron, OH, USA
... Its tactics have been pushed into the limelight with the emergence of spyware, a loose term for unsolicited, malicious software that can change computer ...

Normally, I wouldn't post the next type of article, as usually those who write them, though well-intentioned, can be misinformed or not informed enough. I checked the links given and made sure they went to the proper sites for info and download. If I missed anything, please accept my apologies.

SPYWARE 101: The Biggest Internet Threat Today
netforbeginners.about.com - USA
Avoiding and destroying spyware is not easy, and it is not a one-time event. Very much like dusting and vacuuming your home, stopping ...

Malware In The News

2004-12-31T02:52:00.000-05:00

Malware has been especially busy this past year. New variants to different threats have proven to be even more tenacious and resistant to removal. The future holds the promise of even more attacks, some of which will extend to hand-helds like cellphones, Ipods, PDAs and MP3 players.

But the anti-spyware community is working just as hard to combat these threats. As more and more people's computers are infected, more become initiated into the dark realm of malware....whether they like it or not. Those who fight these threats lament the lack of education and, more important, the lack of effective ways to reach those who surf the net, blissfully unaware of just how unprotected they really are.

2005 is just around the corner. A new beginning. 2004 brought many new threats, but also more awareness and publicity. Granted, it's not nearly enough, but being pessimistic really never got anyone anywhere. Tenacity, doggedness and the refusal to give up or back down are the keys to making headway in this war. Last August, CNet news reported that an upatched pc had only 20 minutes after connecting to the Internet before it became infected. It's likely that time range is dwindling, even as we speak. Indeed, hackers were prepared and waiting for the brand-spanking, woe-fully unprotected new pc's given as Christmas presents, so they could do more damage sooner. It's the "It will never happen to me" syndrome that works against us and in their favor.

Maybe it's time to think out of the box. The pc box, that is. As it is now, nearly all pc's come only with the standard stuff and an antivirus program, with the only firewall the one built into the OS. Shame, shame, shame! Too bad there isn't a pc company that will put the programs one really needs for protection and prevention on a new pc. Then it would be ready to connect to the Net. Pie-in-the-sky thinking? Maybe, maybe not. But it would be a step in the right direction.

Spyware News and Alerts

SPYWARE and the Need for Technology-Centric Laws
The Heartland Institute - Chicago, IL, USA
Two spyware bills have been passed in the House of Representatives by overwhelming margins....So why the legislative fervor for new spyware laws ...

HACKERS, spammers, spies set to invade
Canada.com - Canada
... Love won't be the last to get a holiday crash-course in computer security. Hackers, spammers and spies go into overdrive in December ...

COMPUTER viruses morphing, with no end in sight
CTV - Canada
... rose from 2,000 a day to 30,000 a day in just the first six months
of 2004, according to research by Symantec, the market leader in computer security with its ...

PHISHING, spyware and other pests plagued 2004
Security Focus - USA
... Scammers sent e-mail to trick bank account holders into revealing passwords. Rogue programs known as "spyware" hijacked Web browsers and crippled computers....

Spyware that Prevents Removal

2004-12-10T22:48:00.000-05:00

Webhelper4u.com is a site whose owner is dedicated to helping Internet users learn about those who design and perpetuate the programs that 'insinuate' themselves onto their pcs and wreak havoc. He especially has devoted much time to the Transponder Gang. Click the link to find out just who they are and why they are so dangerous.

Recently, this group has come up with a particularly nasty program that won't allow you or any anti-spyware/adware/virus, etc., program to remove it! This latest variant is called cerese.dll which creates it's own browser window via a file called buddy.exe. This is an extremely dangerous and nasty tactic. Please read the whole story here and follow the links he provides for more information.

It's bad enough that the stuff tries to get on one's pc; worse when it won't allow you or any application to remove it!

If you use a Hosts file, you can add the url where the bad stuff is and block any downloads from there. My friend at VitalSecurity.org also reports about this new threat and gives the url you need to add to the Hosts file, with instructions if you use a Host manager that might try to send you to the actual site (something you most certainly don't want to do!) Visit PaperGhost's site for the information.

News from the Anti-Spyware Front

2004-12-09T03:13:00.000-05:00

Breaking News: Dec 9, 2004

Two adware firms battling in court

Seattle Post Intelligencer - Seattle, WA, USA
... generates streams of pop-up advertisements or interferes with a computer's normal operations -- have come to know the programs as adware, spyware or malware. ...

News & Articles from the past 2 days:

Pervasive Spyware Seen as Normal

SmoothWall - UK
Some Internet users are seeing so much spyware that they are starting to accept its presence as normal and ignore it. Such is the ...

An all too common attitude:

Spyware? So what?

Seattle Post Intelligencer - Seattle, WA, USA
They agree to use spyware that comes bundled with other software they really want to use for things like virus protection and file-sharing. ...

Companies are starting to include protection for customers. Good idea, but only as good as the programs they select to offer.

Internet Security Systems Includes Spyware Protection

Local Tech Wire - Fort Mill, SC, USA ATLANTA
-- Internet Security Systems is including spyware blocking as part of its integrated security appliance. Some 80 percent ...

Internet Security Systems Adds Artillery to the Battle Against Spyware

Yahoo News (press release) - USA
... (ISS) (Nasdaq: ISSX - News) today announced the latest release of its Proventia® Integrated Security Appliance product line with spyware blocking. ...

More people who are at the forefront of this are raising their voices for better security. Here are several articles from around the world:

Experts push for more US computer security efforts

USA Today - McLean, VA, USA
WASHINGTON -- Computer-security experts, including former government officials, urged the Bush administration on Tuesday to devote more effort to ...

Article from the Middle East:

MENAFN - Middle East WASHINGTON, Dec. 7 (UPI)
-- Computer security executives Tuesday urged the White House to address threats to US information-technology systems. ...

And from India:

Technology ; Experts Push for More Computer Security Efforts

Keralanext - Kerala, India
... to do more," said Amit Yoran, who served as Homeland Security's point man on ... Business and home computer users, meanwhile, have struggled with a flood of viruses ...

Another from the US:

Reuters - NY, USA WASHINGTON (Reuters) -
Computer-security experts, including former government officials, urged the Bush administration on Tuesday to devote more effort to ...

Then there are those who feel a need for official representation:

Calling for security leadership

FCW.com - USA
... Increase funding for the Office of Management and Budget and the National Institute of Standards and Technology's Computer Security Division, which have a ...

Even the sportsworld is climbing on the bandwagon! GreenBay has decided to try it's own remedy:

Green Bay Packers Tackle Spyware with Preventive Blue Coat Solution

SUNNYVALE, CA, USA
Blue Coat® Systems, Inc. (Nasdaq: BCSI - News ), a leading provider of proxy appliances, today announced that the National Football League (NFL) Green Bay Packers are protecting players, coaches and staff from the threat of spyware with Blue Coat's preventive gateway anti-spyware solution.

Small Businesses seem to be more in tune and concerned about computer security:

Office Security 'Important Issue' Among Smaller Businesses, ITSPA Survey Reveals

Business Wire (press release) - San Francisco, CA, USA Dec. 7, 2004--
The nation's small to medium-sized businesses (SMBs) rank office computer security among the most important issues they face, according to a member ...

And the inevitable blurb:

SpyWare creates explosive new market opportunities

eChannelLine - North York, Ontario, Canada
From a minor annoyance for home-PC users to a major plight on enterprise environments around the world, SpyWare (also known as AdWare, MalWare, ScumWare, and a ...

Back In Black!

2004-12-02T14:51:00.000-05:00

I'm back online! And it feels great!

I just wanted to post this update and let everyone know I'll be posting on a more regular schedule now. This will be short as I have to get to work VERY soon.

I'll post probably again tonight.

Getting Back Online

2004-11-25T18:24:00.000-05:00

Well, my intention to post once a week fell through. Getting to the library didn't work, and they only allow an hour a day on a computer...once your time is up, you are automatically disconnected. Then, for some reason, using my sister's computer caused an unidentified problem, so I had to avoid that.

But the good news is I'll be coming back online within the next week. (My sis got a new computer and I'm using that now) I've missed being online and can't wait till I'm able to get back on permanently. I'll be getting the ball rolling with CARMA asap, now that I have more resources (read money, here).

I'll be posting here on a more regular schedule.

Update...sort of

2004-09-17T15:08:00.000-04:00

Well, I've been in the process of moving for the past couple of weeks. So my time online has been very limited. At the moment, I'm at the library on their computer.

Because of this, progress with CARMA is at a standstill. I should have been moved in last weekend, but a series of fiascos made that impossible. We didn't get completely done until yesterday. And that was just moving everything. Now, I have to get everything unpacked and put away, decide what needs to be trashed, and what needs to be put up/packed away, as the new place is smaller than the old one. Oh joy.

Anyhow, I'm planning to post an update at least once a week. More often, as access is permitted.

Breaking News: Legislation

2004-09-08T19:25:00.000-04:00

USA: New Copyright/Spyware Bill in Congress

http://msnbc.msn.com/id/5945126/

Not much info on the spyware part though. Same ol', same ol'.

Spyware/Malware/Security Alerts

2004-09-03T17:25:00.000-04:00

MICROSOFT NEWS

MICROSOFT warns spyware could foul up security update
Kansas City Star (subscription) - Kansas City, MO, USA SEATTLE (AP) -
Though Microsoft Corp.'s new security update package is all about protecting systems from worms, viruses and spyware, it can't do much about ...

CHECK FOR SPYWARE FIRST
Fort Worth Star Telegram (subscription) - Fort Worth, TX, USA
Microsoft is warning users of the Windows XP operating system to check for spyware before downloading its free security update, Service Pack 2. The new package ...

WINXP SP2 = security placebo?
The Register - London, England, UK
Reg Review We evaluated the security features of Windows XP SP2 on a test machine, following a clean install of XP Pro with no configuration changes and no ...

MICROSOFT to offer Windows XP security pack at post offices
Japan Today - Tokyo, Japan
... it will exploit a network of 25,000 post offices in Japan to provide a free CD-ROM version of Windows XP Service Pack 2 with added securityfeatures from Oct 1 ...

NEWS AND ALERTS FROM US & ABROAD

MOST US Firms Ignore Spyware Risk
TechNewsWorld - USA
... Three quarters of US firms do not consider spyware to be a problem, and most do not see unauthorized employee use of peer-to-peer file sharing services or ...

SPYWARE, file-sharing and others: No problemo
The Malaysia Star - Malaysia KUALA LUMPUR:
Less than one-in-four companies see spyware as a problem, according to a survey on the attitudes of enterprise IT managers about cyberthreats ...

TESTS Highlight Cyber-Threats Facing Home PC Users and Their ISPs ...
Yahoo News (press release) - USA
... of Prevx Home, the world's first free downloadable Host Intrusion Prevention Software to fill the security gap left by Anti-Virus software, spyware clean-up ...

SECURITY Flaws In WinZip Could Allow Attacks
eWeek - USA
WinZip Computing Inc. recently revealed that Version 9.0 of its popular WinZip file compression program is vulnerable to a variety of security attacks. ...

ORACLE releases delayed security patches
InfoWorld - San Mateo, CA, USA
Oracle Corp. released security patches this week that plug several vulnerabilities reported last month in its database software and other products. ...

GOOD Question: Bank Directors Want Answers From CIOs on IT Issues
Bank Technology News - USA
... According to the 2004 Computer Crime and Security Survey from the San Francisco-based Computer Security Institute, computer security losses from 494 survey ...

Meanwhile, back in the UK...

COMPUTER evil lurks
ic Solihull.co.uk - Solihull, UK
... Intellidata, based in Thornhill Road, off Lode Lane, Solihull, wants firms to be on their guard against 'spyware' that can lead to personal information being ...

IT users seek to certify security
VNUNet.com - London, England, UK
IT security experts from some of the UK's most influential businesses are meeting this week to try to establish a professional body for certifying information ...

LEGISLATION NEWS

SPYWARE Legislation
netsecurity.about.com - USA
Recently I wrote an article (5 Steps To Protect Yourself From Spyware) describing some ways that users can help to avoid or eliminate spyware on their computers ...

LAWMAKERS to vote on spyware, piracy bills
CNET News.com - San Francisco, CA, United States
A House of Representatives committee said on Friday that it has scheduled a vote on bills related to spyware and piracy next week. ...

ARTICLES

PUT the lid on spam and spyware
Ocala Star-Banner - Ocala, FL, USA
... Now comes another online plague - sneaky programs called spyware that can implant themselves on your hard drive as you download otherwise benign software. ...

CAN Anything Stem the Spyware Tide?
PC World - USA
... normally. Sort of. This incident, however, was only the most egregious recent example of an ever-growing threat: spyware. We've ...

New Sub-domain site is up

2004-09-02T00:49:00.000-04:00

Carma.it-mate.co.uk
Well, after much trial-and-error, I finally got the new subdomain at Ur IT mate .co.uk is finally live.

Check out the new site

And I learned how to use an FTP client. Not without a few 'choice' words, though. But at least I have an idea now of how things work. Still haven't figured out how to edit on the webserver. Or maybe I can't. Don't know. Sure would be great though. As it is, I have to change the page on my pc, delete the old page, and upload the new one.
Rather inconvenient, but something I have to put up with till I figure out how to do it on the host's server, or find out why I can't. Either way, I accomplished something I wanted to do and DID IT.

If you find anything amiss, PLEASE let me know. I'd certainly appreciate it!

Spyware Alert; Latest News

2004-09-01T11:18:00.000-04:00

Can Anything Stem the Spyware Tide?

Report by PC World writer Anush Yegyazarian about a recent hacker attack and current proposed legistaltion in Congress.

Spyware/Security Alerts

2004-08-31T09:20:00.000-04:00

Spyware Warrior Rogue/Suspect page mentioned in San Mateo County Times
Second question down the page

MICROSOFT plays down SP2 security glitches
... with McAfee admitting its flagship VirusScan product prior to version
7.1 requires a customised patch to be operational with Windows Security
Center, ...Read more here

Spyware vs. spyware
Lawmakers are preparing to attack spyware, but efforts could criminalize common tools and techniques currently in use:

New virus makes spyware sleazier:
Webcams and mics now target of newest trojan

Living in Denial?
Most Businesses Don't See Employee Use of Spyware, File Sharing as Major Problems, Survey by Secure Computing Finds

Close the Gates to Malware
Tips on making your pc more secure

Microsoft Security's Weak Link
This major update is a step forward for a company that has had an abysmal record on security...

Juniper Beefs up End-Point Security
Juniper Networks announced updates to its to its NetScreen Secure Access SSL VPN product

Security VS Privacy
To keep up with technology-savvy criminals, police are now saying they need greater access to electronic forms of communication. The Canadian Association of Chiefs of Police is lobbying Ottawa to update Criminal Code provisions first enacted in the 1970s that it says are inadequate to monitor these increasingly complex exchanges.

NOKIA launches enterprise security initiatives
The architecture will also include security enhancements for services,
such as the delivery and administration of software components to mobile
devices ....Read full story

Update: New Webhost

2004-08-29T19:13:00.000-04:00

Through a post I made at the Spyware Beware! forum, one of the members there put me in touch with Steve Burn at IT-Mate.co.uk. Mr Burn generously offered me a subdomain at his site to host the CARMA website. I want to publicly thank Mr. Burn for his generosity and all his help. I now have access to features not provided by my present host. (it is a free hosting site, after all). I knew eventually I would have to move it, since it is listed in MVPS hosts files and IESpyad as a restricted site.

Now, however, I have to figure out FTP and how the heck I make changes now. My present host makes this easy as all I had to do was go into my Site Manager and click a link to upload a file, and edit right there. I managed to get my pages transferred, but the client I was using wouldn't allow me to edit any of them on the webserver. What good is that??

So, I've downloaded another client, but now I'm having problems connecting. *sigh* And it asks for a remote folder (which one and where?) I'm getting a bit frustrated, though I know that once I get this figured out, it will be easier. It's just the 'figuring things out' that's bugging me!

So, until I get all this mess straightened out, the website will remain at Freewebs. If you want to visit and use a hosts file with freewebs.com on the list, you will have to remove it, if you encounter any problems. Please accept my apologies for any inconvenience. Hopefully, I can get familiarized with all this newfangeled stuff (for me anyway!) and start using the new site.

Money the Root of all Evil?

2004-08-28T17:47:00.000-04:00

The SpywareWarrior forum has been the site of a heated discussion on the merits, or lack thereof, of the program Privacy Tools 2004. The owner, at first defending his program, acknowledging some of the problems and promising to fix them, eventually threatens to design and distribute spyware. Things get really ugly after that. The discussion continues.....

Read the discussion here.

Breaking News on SP2

2004-08-27T20:26:00.000-04:00

Security Flaws found in Security Pack 2 (!)

MS comes up with workaround for AMD conflict with SP2

On the lighter side (?)
Tried contacting tech support?

Latest News

2004-08-27T11:42:00.000-04:00

New Rogue Program added to Spyware Warrior's Rogue/Suspect Program List:
Vendor threatens to design and release spyware (link to discussion in note)

Antispyware Programs tested:
http://www.wral.com/money/3674337/detail.html

MSPs Cheer Antispyware Bill

Computer Associates Aquires Pest Patrol

A new worm that actually accesses a webcam & microphone

More on the Antispyware Bill (above)

This Week's News from SpywareInfo

2004-08-26T14:33:00.000-04:00

Selling "Billboard Space" in video games?

Maybe a good idea on the surface...but there is talk of tracking the ad views!

Spammer/Scammer Arrests

The US Dept. of Justice is set to announce the arrests of people found to break spam/scam laws. Find out why the CanSpam Act hasn't stopped these people.

You can read today's issue in it's entireity at this location.

Special Report: The Watcher: Keeper of the Histories

2004-08-25T00:19:00.000-04:00

Webhelper's Motto:

If it says it is FREE, it will probably cost you!
Always Read Before You Click OK!

I want to introduce you to someone who is extremely dedicated to exposing and helping to inform about the people and the sites that use and proliferate malware. Webhelper posts at several forums and keeps everyone apprised of these sites, investigating them in depth and places them on a special list (The Watcherlist) on his site, posting new finds on the various spyware/security forums. Obviously, this takes considerable time, not to mention talent to do what he does. You can visit his site here:

Webhelper's website

Click the link at the top of the page just under the image of the wizard with the crystal ball. This is a short, to the point description of who he is and what he does.

Another helpful link in the menu on the left is the Webhleper Definitions. The Watcher explains some of the terms he uses in his reports.

Especially interesting is The Watcherlist. Here you will find the criteria for targeting sites for the list. The menu on the left has links with instuructions on using the list, an index of the domains he reports on, selected domains with more detailed reports, plus a link to submit a site to him for research. Check out the criteria for submitting a suspected site and check his domains and CWS lists first before submission.

The Watcher performs an invaluable service to the anti-malware/security community. Here is the link that tells in more detail about why he does this.

Webhelper, Watcher, SpywareHunter.....doesn't matter what he calls himself. His work speaks for itself.

Anti-Malware News

2004-08-19T10:10:00.000-04:00

I subscribe to many newsletters, most of them on marketing. However, to my chagrin, I just realized I only subscribe to ONE security newsletter: SpywareInfo. This will change, as I don't even read most of the others.

Today's editon from SpywareInfo has some very interesting articles. Please take a few minutes to read this important information.

Keylogging Trojans Spreading Via Email

"A very nasty trend is developing in the world of malware. At risk is your credit card number, social security number and, indeed, your entire identity."

Lies, Damn Lies, and More Damn Lies

"As long as there have been advertising malware such as spyware and browser hijackers, there have been web sites complaining about them. People who are aware of the malware problem are less likely to become infected by it and less likely to put up with it. This has become a problem to the purveyors of these parasites. These companies don't want people to know the dirty little secrets of their industry."

Windows XP SP2 Misconception

Mr. Healan talks about concerns many people are having about the new Service Pack from M$.
He makes a very good point and has allayed my fears somewhat.....now the only thing stopping me is the HUGE download.......I have dialup ;(

Today's issue can be read in it's entireity here: http://www.spywareinfo.net/aug18,2004

There is more great reporting in the issue.

Wrong Attitude!

2004-08-18T17:51:00.000-04:00

Yesterday, I recieved an ezine I've been subscribed to for quite some time. I have communicated with the owner/editor on several occassions and found her to be professional, straight-forward and no-nonsense. Qualities I like and admire, and one of the reasons I subscribe. Imagine my shock and dismay when, in the most recent issue, a blurb discussing the newest virus threats, the last line (after giving what amounted to erroneous steps to protect oneself) said: "Leave the threats to someone else."

I was dumbfounded that she would make that statement. It didn't jive with the person I had always pictured her to be. I could not let it pass, so I sent her an email explaining the disservice she was doing to her readers. Here is the link to the email I sent her (names changed to protect the innocent:

Wrong Attitude!

I got a reply later in the day from her, where she explained that the snippet was actually someone else's words, she had just forgotten to credit it to that person. She identified the person, and although I have never had any contact with her, I knew who she was, and was still surprised at the attitude she exhibited.

The publisher, true to my mental image of her character, admitted that it was wrong, thanked me for pointing it out to her, and asked to use what I had written in an article in her next edition. Not only that, she asked me to be a Mentor on this subject in an Marketing Club she was starting to help newbies and other businesspeople online. I was honored and flattered, so of course, I accepted.

This little episode is an example of why I am doing what I'm doing. CARMA is being formed to help those who have had their computers compromised by malware. But the MAIN reason is to educate the many, many people who either don't know or think that they know, when they really don't.

Protect yourself when connecting to the Internet. Get the right programs to protect/clean/prevent malware from getting inside. GET INFORMED. And inform others as well.

Progress Report

2004-08-16T18:44:00.000-04:00

At this point, I'm still working on getting all information I need together to incorporate CARMA here in NC. I feel that I need a couple more people in my area, who would be willing to help me do this, in any way they can contribute. Although there are several people already who are interested in what I'm trying to do, nearly everyone is out of state or abroad. While being a resident of my state isn't a requirement, it would be helpful, here in the beginning to get this rolling in the right direction.

I'm working on getting an account set up to handle donations toward paying for the fees required in starting a new non-profit organization. I prefer that someone else handles the money, of course, and this is how I'm proceeding. When everything is properly set up, anyone who wishes to donate, whatever the amount, may contact me through the methods on the contact page of the website. At this time, credit cards will not be accepted, not because I don't want to, but because that takes other steps and such, that are not available at this time. This will change later on, however, to make it easier for contributors to donate. I will post here and on-site when we are ready to accept donations. Later on, I should have things more established for accepting donations toward the work, aid and assistance we plan to provide.

Welcome to CARMA's Blog

2004-08-16T17:43:00.000-04:00

This blog is for posting updates and news on the progress of CARMA for interested parties. We welcome your comments.

If you need to contact us, just go to the contact page on the website. We can be reached by regular mail, telephone, email or through the private message box provided. Please allow at least 24 hours for a reply, although it could be sooner.

Thanks!