twitter facebook rss

Black Friday, Cyber Monday, fraud, and marketing…

Posted by David Harley on November 25, 2017

David Harley photo

It’s not so many years ago that my arm was twisted into writing a blog article about Black Friday and Cyber Monday scams. I had to look up both terms before I wrote on the topic because they didn’t mean much to people in the UK back in 2009 (and in fact the term/marketing initiative […]

Security books – 21 people name their favourites

Posted by David Harley on June 12, 2017

David Harley photo

Heimdal Security asked 20 experts (plus me) to name their favourite security books.

WannaCryptor ‘Afterthoughts’…

Posted by David Harley on May 17, 2017

David Harley photo

…Not that we’re exactly in the post-WannaCryptor era yet. But forgive me if you’ve heard enough of the saga of the ransomware ESET calls Win32/Filecoder.WannaCryptor.D (after just a few days, I certainly have). Craig Williams, of the company Gigabyte IT Solutions on St. Helena, mailed me wondering about my take on the issue.* Here are a […]

WannaCryptor: XP, Win8, WinServer 2003 patches [updated]

Posted by David Harley on May 13, 2017

David Harley photo

Even XP, Windows 8, and Windows Server 2003 systems can now be patched against the vulnerability exploited by WannaCrypt. Patching is highly recommended!

Still Pumping and Dumping

Posted by David Harley on April 25, 2017

David Harley photo

Pump and Dump spam campaign still piling on the improbabilities.

All Hands to the Pump (and Dump)

Posted by David Harley on April 19, 2017

David Harley photo

A few years ago, even before I started working directly with vendors in the security industry, ‘Pump and Dump’ scams were a major nuisance. Here’s a description from a paper Andrew Lee and I wrote after I started working with ESET. Pump and Dump (or Hype and Dump) mails are designed to inflate the value […]

Social Engineering v. Malware: Remembering VBS/Loveletter

Posted by David Harley on February 20, 2017

David Harley photo

VBS/Loveletter demonstrated that sometimes the quality of malcode doesn’t matter if the social engineering hits the spot.

Key Card Ransomware: News versus FUD

Posted by David Harley on January 30, 2017

David Harley photo

On the 28th January 2017, a news site reported that Hotel ransomed by hackers as guests locked out of rooms. The story initially claimed that a ransomware gang had been able to compromise systems in the Romantik Seehotel Jägerwirt in Austria including the key card registry system, even managing to lock guests into their rooms. The […]

Support Scams and Diagnostic Services

Posted by David Harley on November 24, 2016

David Harley photo

Sometimes the borderline between out-and-out support scams and sub-optimal diagnostic services is too blurry for comfort.

Misinformation, Memetics and Electoral Fallout

Posted by David Harley on November 12, 2016

David Harley photo

Why make judgements based on memetic misinformation when there’s plenty of live footage to work from?