Forgot your password?

Comment: It took this long to get noticed? (Score 1) 179

by Deathlizard (#47700617) Attached to: Microsoft's Windows 8 App Store Is Full of Scamware

Hell, I noticed it almost a month after the Store Debuted.

As I said in the AV is Dead Article, I tell our customers "Don't download or install anything" and I mean it. The windows store is like the wild west. They do no QA on the content and refuse to remove obvious scam acts. Hell, MS in many cases doesn't even host the files, they post a button that says "Get App From Publisher" that leads to a third party site where you can "download" the file. That's just stupid.

The other thing that really needs to get drilled home from this is that Open Source Software is getting totally Hosed by scammers forking Code or distributing installers and the community needs to find a solution that is acceptable with OSS Practices. 77zip (not 7zip. 7zip is the legitimate one. 77zip is the adware infested one.) is an excellent example of what happens when OSS and Scams collide. VLC media player has been ripped off so much it's downright scary to do searches for it. Libreoffice and Openoffice (as well as VLC, 7zip, ETC) are constantly installer repackaged to install Adware garbage. Hell, even SourceForge is doing it to Filezilla and other OSS Apps hosted on their site. There's a ton of malware infested fake chrome's out there. Hell, It's getting to the point where I'm seeing chromium installed on PC's and all it does is download and execute rogue apps in the background with no user intervention whatsoever. They're just using it as a specifically coded malware platform which can be installed even on guest level accounts.

User Journal

Journal: AV is Dead

Journal by Deathlizard

First, let me start off with the Notion that All Antivirus sucks. Regardless of the brand, or the Reputation, If you gave me an hour or less and a windows PC with any Antivirus app on the market on it, pay or free, I will give you an infected box. So why does this happen?

Comment: AV is dead. (Score 5, Insightful) 323

by Deathlizard (#47689017) Attached to: Ask Slashdot: How Dead Is Antivirus, Exactly?

First, let me start off with the Notion that All Antivirus sucks. Regardless of the brand, or the Reputation, If you gave me an hour or less and a windows PC with any Antivirus app on the market on it, pay or free, I will give you an infected box. So why does this happen?

1) Hot, Fresh, Just for you! This is not just a slogan you see on McDonalds made to order burgers anymore. Today's Virus Obfuscation techniques are so fast and random, that when you activate an payload dropper (whether it be a Flash, Java, Website, Browser exploit or even a Trojan installer) The Payload that you get will only be statistically seen only once. You and only you will get that version of the virus even though it's using a well known virus kit that would be detected if it was not obfuscated. This technique is the reason why no AV firms detect the Fake antivirus variants or FBI Warnings or cryptolockers of the past even though all of the major codebases were detected by most AV Firms.

2) I'm an Necessary App! People need me to change their search engine, hijack their DNS, spy on them, and pop up ads randomly all over the screen and websites! Read the Slashdot Journal link for some insight on how adware gets on people's PC. Let me make something clear here. Adware is a Virus When a customer comes into my shop and has something like Conduit searchprotect, or Wajam on their machine, I tell them that's a virus because it is. They didn't want it, they got it and it's doing things they don't want. Sounds like a virus to me, yet just about every AV Firm ignores these and lets them gleefully install because they're afraid of getting sued by one of these companies so instead they make guidelines to let them slip through. The first AV I find that reliably removes all Adware as well as viruses without me having to manually remove them or fallback to a removal tool (like ADWCleaner, which is now starting to miss stuff as of late) I will sell in my store.

3) In Soviet Russia, Trojan Exploits You! This Journal link has been on my sig for years now, and is the primary reason why AV doesn't work anymore. This week alone I had no less then three of my customers Directly call Fake Support Scammers because their PC / Printer / Camera didn't work, and they called the phone number on the first link (The Ads) they saw when they searched for "(PC / Printer / Camera) Support" and if you're letting the bad guys in to physically touch your own box you're already screwed and no AV on earth is going to save you.

Right now, I'm telling people three things:

1) Install MSE All AV sucks, The only question is how much do you want to pay for something that sucks. MSE is free, at least blocks most of the ultra bad stuff and doesn't pop up ads of any kind so it's what I install.

2) Install Adblock on all browsers I install Adblock Plus on any machine that leaves the store. if you're going to infect yourself chances are an Ad is going to lead you there. Blocking the ads blocks most of the infection vectors off the bat.

3) Don't Download or Install anything. There is no safe place I can direct people to download files without getting some sort of Adware Virus. This is easier to tell users rather than pay attention to what you download. (See #3 to understand) If they protest, go to your PC, go to with your adware blocker turned off, type in any program you would think they would download (I use VLC Media player. It never fails to show me adware links) and have them pick the download link, when they get it wrong (chances are they will) download the file and send it to chances are one of the scanners will detect the Adware dropper from the fake site, Then drill it home about not downloading anything.

4) Another alternative OS isn't going to save you This ancient Journal entry Explains why. Coupled with the other two Journal entries it should paint a pretty good picture that at this point in time, the user itself is the greatest threat, and if you read #3 you know you cant (legally) patch stupid. While an alternative OS (like Linux, OSX or even Chrome OS) can minimize exposure, it does not eliminate it and it will get worse as the OS gets more popular. You also still have a user in control and the Computer user laws apply. I've seen viruses for all three above listed OS'es (yes even Chrome OS. There are some nasty Chrome extensions out there and they infect all of you're logged in chrome Browsers)

Comment: Re:Only 17 months to go... (Score 1) 138

by Deathlizard (#47629285) Attached to: Microsoft To Drop Support For Older Versions of Internet Explorer

When new, standards-compliant IE becomes more widespread, people can just remove the code for supporting bad old IE altogether.

No they can't because they never Kill old IE. Even on their life cycle chart, they are supporting 3 Different Versions of IE, so devs have to code for the lowest common denominator (IE9) or force users away from IE altogether. Chances are it's going to get worse once Windows 7 goes into extended support and they quit updating IE for it as well.

They need to Support 1 IE Version across all supported mainstream and extended platforms. If they did that instead of using IE as some BS Excuse to get people to Upgrade Windows, maybe they wouldn't bleed so much browser market share.

+ - Microsoft to drop support for older versions of Internet Explorer ->

Submitted by Anonymous Coward
An anonymous reader writes "After January 12, 2016, only the most recent version of Internet Explorer available for a supported operating system will receive technical support and security updates. For example, customers using Internet Explorer 8, Internet Explorer 9, or Internet Explorer 10 on Windows 7 SP1 should migrate to Internet Explorer 11 to continue receiving security updates and technical support."
Link to Original Source

+ - Synolocker 0 Day Ransomware puts NAS files at risk.

Submitted by Deathlizard
Deathlizard (115856) writes "Have a Synology NAS? Is it accessible to the internet? If it is, You might want to take it offline for awile. Synolocker is a 0 day ransomware that once installed, will encrypt all of the NAS's files and hold them for ransom just like Cryptolocker does for windows PC's. The Virus is currently exploiting an unknown vulnerability to spread. Synology is investagating the issue."

Comment: Secure Recycle it. (Score 1) 113

by Deathlizard (#47552865) Attached to: Ask Slashdot: Preparing an Android Tablet For Resale?

1) You won't Get dick for parts (unless you part it our yourself, and basically only the screens, battery and speakers are worth any cash)

2) The potential crook gets just about everything he would need to make your life a living hell in either ID theft or flat out harassment.

There are recycle depots that will shred the system board to verify secure data destruction. It might cost a little, but it's better than paying to monitor your credit score for a few years.

Comment: I had iLASIK about 11 months ago. (Score 2) 550

by grub (#47525561) Attached to: Laser Eye Surgery, Revisited 10 Years Later

iLASIK is done with all lasers, one to make the flap that was previously done by blade, and the usual LASIK after that. Fewer reported complications than with the older blade style. At my six month checkup I was seeing 20/10 from my left eye and 20/15 from my right. I'm 48 and previously wore progressive lenses. They adjusted my right for a closer focal distance.

It all just works, I love it.
User Journal

Journal: Customer Service in a Nutshell

Journal by Deathlizard

Imagine Customer Service as the Early Space Program.

You have Astronauts and you have Monkeys.

Astronauts have problem solving skills that can ultimately sink or swim a mission. They hear orders from mission control but can offer suggestions or even take direct action based on spacecraft feedback if necessary for overall success. They're the guys you send to the moon and back to get moon rocks.

Every successful person has had failures but repeated failure is no guarantee of eventual success.