Continuing the series on double archived malicious Javascript attachments delivered in very sloppy malware campaigns, the below have been checked for August.
Author: Victor Truica
Windows User Endpoint Security – basic, easy and free
The below setup is what I use for PCs that need basic minimal protection against malware, without any, or with as less as possible, user intervention.
The software mentioned are recommended out of personal experience and based on what worked for myself, my users and my use cases. No affiliate/promo bs involved. Continue reading “Windows User Endpoint Security – basic, easy and free”
Email scams – very sloppy Cerber dropper
Timestamps – February 2017 to March 9-3-2017 + older ones on the same pattern from May 2016
Email scams – various UPS delivery notifications or failures
Timestamps – across February 2017 and the latest on 1/3/2017 11:05 PM
Continue reading “Email scams – various UPS delivery notifications or failures”
Email scams – undelivered parcel
Timestamps – end of January 2017 – 26/1/2017 12:06 PM
WordPress static content generator
Lately, I’ve been really interested in generating static content. Most websites out there are based on a CMS, WordPress going for 20% of all known websites, reason why I decided that would be useful to have a WordPress static content generator. There are a lot of solutions out there for generating static content and some have an option of importing your WordPress content, but I wanted to see how this can be done. Continue reading “WordPress static content generator”
Email scams – you have received a new fax
Another email scam. This time, a bit insistent, as I’ve been getting 6 similar emails in 2 days already, that are informing me that I’ve received a new fax. Continue reading “Email scams – you have received a new fax”
Getting the hang of fail2ban
I kept finding strange things in my log files and I wanted an automated way of going through them and banning IPs that are trying weird stuff. The answer in this case was fail2ban and the example that I’m covering in this post is looking out for and banning IPs attempting to use my mail server as an open relay. Continue reading “Getting the hang of fail2ban”
How my traffic dropped 10 times and I’m not worried
I was looking into web application firewalls the other day and I decided I want to use one or more to get the idea of how they work. My hosting provider did not provide mod_security (WAF module for Apache) on their server, nor I did have access to it, so I decided to try something external. Continue reading “How my traffic dropped 10 times and I’m not worried”
E-mail server configuration – through trial and error
E-mail server configuration can be a pain. Spam was and still is a big problem, especially due to its volume, being almost half the size of all e-mail sent globally. Automated services, filters, reputation monitors and blacklists made it harder for spam to get across in people’s inboxes. It also made it harder for e-mail servers to be accepted as “legitimate” – which is good because it raises the quality level and hardens the requirements, but on the other side, it gives debugging issues. Continue reading “E-mail server configuration – through trial and error”