Bläddra efter
Kategori: General Security

SCAM – Facebook låter användare se sina profilbesök

SCAM – Facebook låter användare se sina profilbesök

Den senaste veckan har flera av mina Facebook vänner publicerat inlägg som liknar dessa två exempel. Två varianter av dessa inlägg har jag sett hittills som har följande texter, för att locka folk att klicka: Facebook låter användarna se sina profilbesök Facebook låter användarna se vem som besöker deras profil Inläggen publiceras tillsammans med taggar på ditt namn (för att väcka uppmärksamhet). Samtidigt kommenteras inlägget direkt av publiceraren själv med följande text:“Hahah alla dessa besök på min profil … Här…

Läs mer Läs mer

Malicious site filters on DNS in 2020

Malicious site filters on DNS in 2020

In spring 2019 I published the article about how good public DNS services are in blocking malware & phishing links.  Now, one year later, one more DNS provider has released a “Malware blocking” DNS service. Cloudflare released on the 1st of April 2020 “Cloudflare families“. Their service is divided into two different filtering options. One for blocking malware, and one for blocking malware and adult content. I’m looking at the malware blocking DNS only, to compare it against other public…

Läs mer Läs mer

How good are public DNS providers in blocking malware & phishing?

How good are public DNS providers in blocking malware & phishing?

Introduction During the last years the market of public DNS server providers has been increased a lot. Google DNS is one of the most known alternative DNS server providers and has been available since 2009.Many DNS providers on the market are only offering an alternative DNS server. Others also add protection against malware and other online threats. Those protections are mainly done in two ways: 1) A malicious domain name is resolved with “NXDOMAIN” telling the requested system that the…

Läs mer Läs mer

Swedish ISP is shutting down it’s unsecure e-mail service

Swedish ISP is shutting down it’s unsecure e-mail service

In August 2018, I wrote about the Swedish ISP C-Sam ignoring general IT Security. At the time of publishing I informed the ISP via email. I never receive any response from them. Email service is shutting down Today the friend who is customer at that ISP informed me that he received information from it’s ISP about a shutdown of their email service. The providers set up an information page for customers. With the future, new security requirements will come Since…

Läs mer Läs mer

Falska SMS från Postnord slutar i månadsprenumeration

Falska SMS från Postnord slutar i månadsprenumeration

Backgrund SVT Nyheter rapporterade här om dagen att falska SMS skickades till person i Sverige. SMS’et ser ut som nedan. Länken leder till? Klickar man på länken som hamnar man på en hemsida som försöker vara något något PostNord liknande.Länken i det här fallet leder till sidan www(.)postnord-sverige(.).com . Ett falskt kollinummer är redan ifylld. Klickar man på “Sök försändelse” så utökas sidan med följande information. När vi klickar på “Betala frakt” så skickas man vidare till en hemsida där…

Läs mer Läs mer

Netflix Scam advertised on Twitter

Netflix Scam advertised on Twitter

Yesterday I saw this Netflix advertisement in my Twitter feeds appearing. Looking really good the price, but the link is not really going to “Netflix” if you watch carefully. Also the Account publishing this advertisement is not Netflix USA, it’s called “Ne_flixUS“.   The website itself looks like the real Netflix page, but only registering as a new user is possible. The site itself is created the same day (3rd of November). Login will bring you to the page to…

Läs mer Läs mer

How to check IP addresses used with your Facebook account

How to check IP addresses used with your Facebook account

The news today revealed a Facebook breach. You maybe are wondering whether someone else then you did use your Facebook account? There is an rather easy way to check this out. How to create a Facebook log file with your IP addresses Start with login to your Facebook account and go to your “Facebook Settings”. There you have a menu called “Your Facebook information“. Click “Download your information” -> “View“ The next view will show you a list with a…

Läs mer Läs mer

Running WireGuard on an ASUS router

Running WireGuard on an ASUS router

Prerequisites ASUS RT-AC86U router Merlin Firmware for ASUS installed USB storage device connected to the router Download Putty (if running Windows) to connect to your router Subscription at a VPN provider that support the WireGuard protocol Use a public DNS service as for example Quad9 in your router config or combine it with a Pi-Hole. Install Entware on the router/USB connected storage with command: entware-setup.sh Link to Merlin Instructions about this. Installation of WireGuard (Instruction and links collected from SmallNetBuilder…

Läs mer Läs mer

Email access in clear text, least effort by a Swedish ISP

Email access in clear text, least effort by a Swedish ISP

Introduction Yesterday I got a call from a friend living near Södertälje, in the south of Stockholm. He got a new internet modem from his local ISP which he needed help with installing. So I went over to his place for being the helping hand.  About the local ISP The internet service provider he is using is called C-SAM AB, which is a local company mainly delivering internet, telephony and TV to customers in and around Södertälje area. According to…

Läs mer Läs mer

Light my fire – user awareness in cyber and IRL

Light my fire – user awareness in cyber and IRL

This article was going to be about one of the pillars of IT security. One, as it turns out that is  eroded and crumbling. Unfortunately it turns out the same issues apply in real life outside of cyber.   That pillar is `awareness education`.   The unspoken reason for this is that users are the weak link we don’t control. A weak link that can be fixed with proper education. Give the user a PDF to read, 2 hours in…

Läs mer Läs mer