How far back does El'Reg's comment search go? I bet if you find the news of the original release of UEFI BIOSes, there will be hundreds of comments predicting exactly these bugs\backdoor.
289 posts • joined 19 Mar 2007
How far back does El'Reg's comment search go? I bet if you find the news of the original release of UEFI BIOSes, there will be hundreds of comments predicting exactly these bugs\backdoor.
It's all about the patterns. Clearly Carbonite were seeing multiple logins from a new range of IP Addresses. I'd assume that Carbonite keeps track of IP Addresses where the software is running. So if lots of accounts login from new IP Addresses - that would cause an alert. And if those addresses all come the same range - it has clearly trigged a full reset response.
It shows the place it run by Engineers and not Marketing people.
This is where it can get funny. I have Home User or Small Home Business clients who have installed half a dozen different cloud services without even realising.
They get sent one file as a Dropbox link, but then end up signing up for Dropbox in error and installing the application. (Very aggressive website that one, designed to confuse) We then add OneDrive from their Win10 upgrade. Office 365 adds OneDrive for Business.
They then updated iTunes and along came iCloud... so they click on it because their Apple "Genius" told them it would bring world peace. And they then wonder why their copy of Outlook 2010 has now gone mental.
And just to get the full set, they have a Google Drive running - but nothing in it. And no idea where that came from.
Oh yeah... and don't forget the OEM clouds that the laptop makers try and sell. Demos installed and never removed.
Add in a dozen apps that all busily checking online for updates, or "syncing" settings... and it does start to get a little bonkers.
Sometimes it is amazing that computers manage to boot up at all!
Due to having a bank steal money from me previously when I used an automated paying in machine, I always do bank interactions with humans. And only Northerners and not some call centre in a random country. Have moved banks and utility accounts to all have UK Telephone based support. Makes a HUGE difference to ones sanity. (And the nice feeling of keeping someone in a job).
This means I have never used online banking. The idea being that I can't be liable if I have never used it. Yet two months ago my online account got hacked. Which is a little clever as it had never been enabled or used by me.
Or maybe it is just because my stupid bank has passwords, IDs and access codes as all numbers? How is that security? Especially as the numbers are too long to memorise.
When I got my access codes for the Telephone banking re-issued I was then told these are the same details as Internet Banking. Which I don't want to use. I asked them how do I change the passwords for the telephone banking to be more secure? I can't, unless I login to the Internet banking to change them.
So who would be liable for that? A system I never used, "protected" by a weak set of numbers that cannot be changed, yet it was still compromised by a random drive by attack which I only ever found out about when I tried to do some Telephone banking.
IIRC it was "The Falklands Conflict" because a "War" would have officially forced a response from NATO based on NATOs own rules. I don't think that NATO, especially the US, were too keen to get involved with the politics of it all.
Look at the bottom of the boxes - it will say "Property of Sky/VM/etc". Same with the routers supplied by some ISPs, which is why someone like VM will replace routers for free.
TV boxes or old routers - it is the same deal. End of contract the ISP should come and collect the old hardware for disposal. (Especially with EU WEEE rules) Very rarely happens. Kit is obsolete so quickly they don't usually bother. I know a number of people who still have "waiting to be collected" kit of some form or other.
Or maybe learn how anti-virus works? This was clearly a bad update to one feature of the product. So turning off the feature that it had broken was still safe. The resident shield was still in place and working fine. If you had tried to click on an infected file or a bad script was on the site, the anti-virus would still have screamed loudly and blocked it.
The only thing that was broken today was the "Dodgy websites list". So turning that off for a while and using your own personal common sense for a few hours is totally safe.
Even a reboot solved it... It popped up on my PC, then I spotted it on a PC I was remotely connected to. Five mins later a client was on the phone about it. After a bit of a dig around, a reboot of the PC cleared it.
While investigating it was possible to just disable "Web Access Protection" and that also let you get on with your day. :)
I worked in one of those road construction Portacabins back in the early 1990s. Looking after three 386s used by the Consulting Engineers. It was when I witnessed my first hard disk failure. The disk had literally frozen. I don't mean frozen not moving... I meant it was a block of ice after the Portacabins had dropped to minus somehing silly overnight....
Or a few years back when I looked at the CCTV system of a Chinese Restaurant. That was an "interesting" gunky mess on everything inside!! Not much you can clean when it is that bad, so had to make do with replacing fans.
Or the farm building where a company made concrete kerbs \ slabs \ etc. Concrete dust into moulds. Wow!! That PC was at the far end of the building away from the workers, but EVERY service inside was covered with an INCH DEEP of fine concrete dust. Gawd only knows what was happening to the hard disk as it would surely get through the breath hole.
As is always the way, the concrete guy didn't want to pay out for expensive dust proofing. So my ideas came up with ways of reducing the dust into the room. They didn't like anything so fancy as a *door* - but I managed to at least get them to put a curtain up. That PC also got a new external box built for it. So the PC Tower case then sat inside a separate filtered cage made from wood and material. Did the job...
Someone needs to put down a test case. If a high street store had a mugger in the building for 30 minutes taking customers wallets then the shop would be liable. It would also get splashed over the news. The fact the guy was in the building for a noticeable length of time and security did nothing would get the shop in trouble. You expect a level of safety when in a shop.
So why do website owners get away with this? I have had a few clients over the years who visit big name sites, but happen to turn up during that couple of hours at the weekend when an infected advert was being run. The results of this have lead to those clients following down a rabbit hole towards infection. Thankfully, in most of those cases I had built enough paranoia in my clients that they stopped clicking when it started looking dubious...
So uBlock Origin or AdBlock all the way now. If a website wants me to turn off the adblocker, then they need to take responsibility for the data they serve to me in their name.
So what time did the fix roll out? I have Eset with many many clients... but didn't hear any problems. Maybe my clients get to work late. Or maybe when they get to work they do weird things like work instead of accessing the net.
Was this both the Home and Business editions? Or only one of those? Just a puzzle as to how I missed all of this fun...
Surely this is trivial to jam? My office is full of various PCs and electronics - often without cases. Are they going to pick out that one signal of the encryption being decoded? And what happens when I turn on my Plasma TV - that blasts MW and LW radio in a wide area.
This seems a little too much of "proving a theory" but not being practical in real world use.
Virginmedia moved their email hosting to Google in 2010. Only had to move it back because Google decided to stop doing ISP email any more. (Or at least that is the story I heard)
I have all ten of my VirginMedia (ntlworld) ISP email accounts in use. Used on forums like this when I don't need to be tracked back to my own personal or business domains. Or online sites I know will send spam. Or plain don't trust.
This makes spotting scam emails trivially simple. In my case there are two huge magnets for spam. My ebay\paypal address (probably sold on from EBay sellers, or hacked out of their infected PCs, or plain lifted from the insecure Ebay\Paypal sites). My other spam magnet is the email address on my website - that one is on lots of spammers spam lists.
Where I don't get any problems is with my own NTL addresses. The only problem ntlworld address I have is one that used to be owned by someone else which I picked up in 2008. That gets some weird spam. Spam that is very common to ntlworld users. I can often contact a small handful of my clients and "compare spam" and find that we have been sent the same spam from the same spammer in the same run. But this only ever happened to that one reassigned address. Never happens to the original accounts I setup in 2003.
If this hack works on the basis of an address book on the webmail site, then this explains why I have never been hit. BUT if, as is claimed, the scam also trawls the emails in the inbox for addresses then I would have expected to hear something.
As some above said - 70 reports out of the millions of VM customers does point towards a very small but weird issue.
Could be worse... just look at TalkTalk!
The depressing side of this is what is happening to the TalkTalk customers when they get hit with this phone call. It is a clever call involving a number of "departments".
People on TalkTalk are often on it because it is "cheap" and they don't know better service exists. They are rarely computer literate. A lot of retired people are on this network. Unluckily a lot of retired people are too polite to hang up on phone scammers. Among my clients it is noticeable that those who have fallen to scams tend to be older and believe the scammer on the phone. I know of three people (aged 73, 80 and 96) who were all caught on this TalkTalk scam. They lost between £1500 and £7000 each! And they have no one to turn to as bank can't recover the cash due to the way the customer hands over all their financial details to the scammer. I also don't expect local police to get very far on this either.
I don't blame the scammer for the loss - I directly blame TalkTalk. Someone needs to take them to court over this mess.
Have you never heard of a "salesman". These are people that sell a stuff that isn't made by them. In this case the news item is talking about people signed up to Microsoft's Partner programme selling Microsoft products.
This isn't part of your paranoid dream where everyone who disagrees with your view is a "paid shill". This is just normal business of paying a salesman to sell something.
(Wow - that must be the first time I've ever dived in to defend the reputation of sales staff!!)
Go check out Vivaldi.net and the Vivaldi browser. It is being created by the guy who brought you the Opera browser (and all those innovative ideas that were then stolen by everyone else like tabbed browsing, searches in the address bar, speed dial, script blocking, blah blah blah)
It is being based on Chrome, but customised heavily. Which includes taking out Google tracking. Go read their forums about it. It is still on version 1.0, but no doubt will tick a lot of your boxes.
THIS is the biggest PITA I find with all the BT-FON networks. In some blocks of flats in a city you get major problems finding a clear channel. Nothing more annoying that doing a scan and finding 20 odd networks crossing a property. Then finding a third of these are these BT-FON guest networks. If other ISPs are jumping on this it will become a nightmare!
So far my record for a single property is 72 different wireless networks crossing it!! Yes SEVENTY TWO. The client couldn't even connect to his own Wifi router when standing right next to it. Only when we moved out to the less used channel 13 did we get any success.
I also want to know what happens in a countryside area where the ADSL is already slow, and no fibre available. Does that mean that the poor 2Mbps line is now shared out to random passers by? Who gets priority in those cases?
This has puzzled me to. When Yahoo! is so bad that even BT want to leave, it is a puzzle why their exodus is so slow.
When Sky left Google for Yahoo! that all happened pretty quick. Similar when VirginMedia left Google - matter of months and job was done (yeah, yeah... just a different set of bugs in the spam filters but that is a different story)
It is just bizarre that BT can take so many years to get away from the Yahoo mess. I always find it funny if I am on the phone to BT Support on behalf of a client. You notice that disconnect as an issue passes from BT's Support Team to the Yahoo! Support Team. I've had a few clients who get stuck in a finger pointing exercise of BT blaming Yahoo and Yahoo blaming BT.
Standard advice to clients - RUN AWAY and get a gmail.com, outlook.com, vivaldi.net or ANY other "free" email account and break free of this mess.
(Trouble is the evil Yahoo makes it very hard to export folders as they keep breaking their IMAP access... does Yahoo get *anything* right?)
I have a couple of clients who regularly get their Yahoo accounts hijacked. Older clients so will have fairly tame surfing habits, though one of them visits a lot of hotels. Maybe that is the route. Hard to tell.
The same pattern happens each time where the scammer mails out "Help I need cash" messages from the yahoo account to everyone in the address book. They then delete your address book. The ReplyTo: address will have been changed on the account. Often to the same name but at a different free mail host. So anyone replying to the scam will be directed to the scammer.
Last time this had happened the broken Yahoo mail interface was stopping us correct the issue due to a bug in the interface, but I flipped back to the old interface and all was well again.
You really have to dig deep into all the settings to remove all traces of the scammer's control of the account. They tend to go in and change as many of the contact details as possible.
2FA is now enabled, but as it is Yahoo I am still expecting to hear back from one of these clients again soon the next time the account is hijacked.
And to the commentard above who claim this is just idiot users... with my clients there have been no typing in details on phishing sites. I train a healthy level of paranoia into my clients which means they have certainly not done anything as daft as that. I wish I could get them off of the Yahoo accounts, but they often don't like change.
Does this also ban second hand sales of these old Samsung phones?
Have they published how wide their geo-block is? I have a client with a website on Linode who does business with Azerbaijan. He is not going to be happy if the block is thrown too wide.
I tell them I need to get the "boss" to answer their questions. Then put them on "Hold". Slinging the phone handset under my speakers while I select a few new tracks for them. I have an interesting selection of Hold Music. Generally some nice lively aggressive Punk music. Though for the next few weeks playlist has been changed to Motörhead.
Use it for the spammy rubbish. Junk you don't care about.
I have a work domain and a personal domain that covers work clients and friends\family. The ISP mailboxes come in for those junky anonymous places like forums, shops, etc. The main reason being that for my domains I have to put my personal home address into the WHOIS information. Junky ISP accounts keep the junk as anon junk. I also keep my work and personal mailboxes spam free this way.
Meanwhile... my biggest hassle has been one specific spammer who has worked out how to bypass the Virgin filters. Loads of regular email following an obvious pattern that pours into one of my ntlword.com addresses. Not unique to me as I have seen clients with ntlworld addresses that are getting the same spam. The frustrating part being how obvious the pattern is to this guy's messages.
> 24x7x365¼ would be fanatical. A whole 6 hours off every year? Slackers.
Errr... try that maths again. 24 hours in a day, 365¼ days per year. So why is the 7 in the equation?
Wipe and rebuild may mean that some of the things you paid for don't work any more. And most ordinary users won't have the (extra, paid for) copy of the OS just hanging about.
What is going to be missing? Some cruddy half working bloatware. It is this kind of cr*p that is making a mess of the Windows OS experience.
Clean install, add a few bits of decent freeware from Ninite and you're up and running.
What annoys me the most is how badly written the Manufacturer tools are. These security issues don't surprise me. Too many of these computer makers pile heaps of dubious software onto all their computers. This then makes their lower end laptops run like sludge and drains all the life out of the better machines.
I have just updated it for you to something more secure...
That old thing called System Restore. Or whatever they call it now. The same method that lets you uninstall an update would allow them to find out your previous settings and put them back in place. No data would need transmitting to MS for that.
Yahoo's adverts are not very nice. A client phoned up last month asking for help to get rid of the adverts. This guy is 75 years old and was getting obviously annoyed that every time he looked at his email the top message in the inbox was an advert banner from Yahoo advertising Funerals!!
The huge advert down the right hand side was as bad. Can't remember what that one said, but it was close enough to "you are going to die soon".
We found our way onto the old Classic Mail interface and he was fine again.
It is very weird as to how so many of Yahoo Mail users just plain refuse to change their routines and use a proper mail client. Just by the definition that these people are using Yahoo Mail shows how little they understand the technology.
And as to the constant hacks and password thefts... I have one client who is hit every 18 months. He'll have his address book spammed with one of those "I am stuck in a foreign country, send me £5000" emails. The scammer will also delete his contacts from within Yahoo. And then change the reply addresses so it is being redirected to a different scam account. At least with that guy I have finally got him using a mail client!
So when will be the first batch of fake phishing emails with TalkTalk logos on them?
If I was the scammer I would be readying a whole batch of emails "From TalkTalk Compensation Team" asking customers to login to my fake talk talk site to hoover up even more data. I expect wording the emails as a claim for compensation should hook a good number of people in.
This is going to be an interesting few months for TalkTalk customers.
Surly this should be stainjob?
This is the feature I want. If a manufacturer decide to stop supporting the device then at least give us the ability to support it ourselves with Cygenmod. I have an annoying Asus tablet here that had updates abandoned barely three months after purchase! I expected support to at least get to the end of the one year warranty....
Visited a client working in a big old farmer's barn. Making paving slabs, kerb stones and similar. At the other end of this barn was the office. No door. When opening up the PC case there was an inch deep heap of fine concrete dust on top of every surface. Hate to think how much of that had got inside the hard disk breath hole as this stuff was really fine grained.
Clearly there is a case that all rainfall, clouds and general precipitation needs apply for a licence in advance of the event.
The notes explain that diagnostic telemetry data is sent to settings-win.data.microsoft.com. Privacy advocates note that this is hard-coded, so blocking access via the hosts doesn't work.
So what does that mean? Are they saying the IP Address is hard coded? Usually I block this kind of stuff in the DNS not the hosts file. I'm assuming that they are not doing a lookup and going direct to the IP Address. If that is the case, why don't these articles list the relevant IP Addresses to be blocked by a firewall?
I get frustrated with companies like Faceboook, Spotify, Twatter as they are busy selling my personal details and connecting me up with people on their networks even though I have never accepted any of their Ts and Cs.
I've never been on any of these networks, but due to my job I have my personal contact details in many many people's phones and email contact lists. Which means when my clients join these Social Advertising Networks they are passing on *my* personal details without asking *my* permission.
It is a little scary at times thinking of the web of connections these advertisers have about me!
So if the burglar starts by cutting the phone cable outside the property these systems become pretty useless. Do they have any method of notifying you of that outage?
Would seem more logical to me that these have some kind of 3G fallback available.
Is one of those little wireless mouse receivers enough to stop it blue screening?
And I know at least one smaller ISP who admitted that this is causing them bandwidth problems when a client was having YouTube hiccups. I was told that: During Business hours non-Business critical traffic is being managed currently to maintain stability for VPNs and VOIP systems. This was directly blamed on the Windows 10 downloads
I notice this on the list:
* provide basic broadband (2Mbps) for all by 2016
Can't seem them managing to do that in time. Far too many people are stuck on the far end of a line too many miles from the exchange. Especially bad in those areas with aluminium cables in the ground. Some of my clients have shocking speeds available - well below that "basic" level. Not as if these are out in the sticks either!
So they get long enough at this machine to modify it to add a modem type ability. Which just shows that the airgap isn't a gap if the computer can be modified.
You beat me to it. That is what I came here to say. In computing the word "Experience" now means "bloated tracking crudware from the marketing team".
I did have that GeForce Experience tool go totally batsh*t mental on a client's PC once. It seemed to be intent on finding an nVidia shield in the house. Which did not exist. Was totally messing with the PC until it was removed.
I do get worried by this plan of Microsoft to auto-update drivers. Especially on OEM machines. Things like sound cards get pointless tweaks from some OEMs that mean the generic drivers then break the audio. So Microsoft does an auto-update and kills the audio. I've also seen similar with video.
It is *really* helpful that we have now had this silly nVidia Driver dance during testing. Hopefully this will make them think a bit harder about letting some of us have some control.
Yeah, there is a big room at Google HQ with all the user passwords on separate post-it notes attached to the wall. It is their backup system for when people forget passwords.
I think you have spotted the real reason behind this ban... "an Amazon Fire stick sideloaded with Kodi". With all the extra features Kodi can bring to an Amazon Fire stick I think Amazon didn't like that.
You could almost argue that Amazon is promoting more piracy through these KODI\XBMC android boxes than KODI themselves. If it wasn't for Amazon and Ebay listing them and making them so easy to find for the average "bloke who wants to watch footie and some films" then no one would know these existed.
Or are they banning KODI from the Amazon App store to stop it being put on their Amazon Fire sticks?
Sounds like nothing changed.
I am trying to understand the IT Angle. For a moment I thought I had opened my local newspaper website and their standard rant-bait articles. Or does this just drop into that category of annoying designers who don't bother to check with the user as to what they really want.
What I really don't understand about Win 8.1 and this Win 10 upgrade - why have MS removed the classic games like Minesweeper, Solitaire, etc?
Already I have had to port these over from Win 7 to Win 8.1 for a number of my clients. The old games work fine after the right dlls are located and a bit of hex editing of the game binaries to remove a Windows Version Check.
These classics have been wasting office time for decades. Why kill them off now?
Trouble is everyone wants "cheap" or "free" routers. I have clients who get upset if I tell them a router is over £100 so instead they end up with sub-£40 devices. Devices that attempt to be routers, modems, wireless AP, print servers, USB Backups, make the tea whilst juggling three balls in the air.
Not surprising these cheap bits of kit keep failing. Is there any profit in these silly devices? At this end of the market I can see why support is a PITA. If they have to chase a firmware update out of the manufacturer they must burn that profit away.
It is also noticeable that even among the trusted brand names the exact same router is sold at the bottom end just with a different logo in the corner of the control panels. I get a feeling some of these companies build their own expensive kit, but bring in cheaper stuff to fill in the holes at the bottom end of the market.
The only reason everyone is now noticing these security issues is because finally people are actually *looking* for the problems. These issues have always been there, but now we have companies who make money shouting about it.
It is so cramped in that tiny dark cockpit. And not exactly a place you want to be if you had to leave in the hurry. Fine if you were up front in the posh seats, but if not so good in the back. Pilot and co-pilot had ejector seats. Everyone else had to clamber out of an impossibly awkward back door.
Many stories around of how the rear crew would put the pins back into the ejector seats to remind the pilots not to leave the plane without them...
Now that this will really be the last ever flights it does mean that they are going to be able to make the most of the last hours of those engines. Last few times I saw her they talked of how they were taking it easy on the engines to extend as much life as possible.
Shoreham airshow will be my last chance to see her in the air. That's going to be emotional. The parents used to take us to airshows even as small kids. I've grown up with that howl and will miss it. Power you don't just hear but you feel in your soul.