All posts by Marc Kranat

Cyberwar on free speech and small businesses

January 25, 2015 Marc Kranat Leave a comment

The last month has seen an major increase in international cyber warfare, first we had North Korea hacking Sony, apart from the embarrassment caused by leaked documents, forced them to shut down their entire network, and they claim still some …

Abuse, Security, Spam

AntiCrawler, referrer spam turned nasty

January 17, 2015 Marc Kranat 5 Comments

AntiCrawler, referrer spam turned nasty, asking you to add potentially malicious code to your own site.

anticrawler Although this is by far not the most popular blog, I do like to look in each day to check up on things, and …

phishing

Fake GoDaddy DNS Notifications

December 21, 2014 Marc Kranat 29 Comments

Only last week I posted about another phishing scam targeting GoDaddy clients, this client only just bought his first domain last week. He knew nothing should have been changed, so luckily when he got the email notification “Status Alert: Domain …

phishing, Security

Highly targeted Phishing against a GoDaddy account

December 11, 2014 Marc Kranat Leave a comment

I do get a lot of phishing emails, we all do, but as security professionals we tend to recognise them immediately, the syntax is wrong, it’s missing a name, of course when you get them from a bank you don’t …

Law, Policy, WordPress

Adding disclaimers on blog comments

October 29, 2014 Marc Kranat 1 Comment

I was asked a couple of days ago to add a disclaimer to the commenting section on a WordPress Blog, something like: “Commentators are asked to be polite, stay on topic. While we do monitor and moderate comments, they are …

Security

Test and Fix if your Browser can be exploited by Poodle

October 16, 2014 Marc Kranat Leave a comment

23F4236AC71C429DA1495077582E9B57 Most browsers are vulnerable, there were plans a remove SSL3 anyway. Here’s a simple test and supplied fixes for most browser types on most platforms.

General details on the Poodle SSL3 vulnerability here.

A fix for Poodle SSL3 Microsoft …

Security

Poodle Vulnerability and Microsoft iis Servers and Shell Shock

October 15, 2014 Marc Kranat 1 Comment

People are still busy going through previous projects and installations the growing number of threats offered by the Shell Shock vulnerability, with the list of exploits are constantly growing here.

Well I didn’t quite drop everything, but within 24 …

Scam, Spam

Fake domain name sales

October 8, 2014 Marc Kranat Leave a comment

I was so happy with the response I got with my post regarding the fake ICANN appraiser scam a couple of months ago, I thought it worth sharing each of the dodgy domain name practices I come across as they …

Security

inexcusable that there was only a password protecting this much sensitive data

October 6, 2014 Marc Kranat Leave a comment

JPMorgan Password Leads Hackers to 76 Million Households

Inexcusable that there was only a password protecting this much sensitive data.

Full Story here

2FA, Smart Card… we have so many tools available now, there really is no excuse for such …

Security

Creating a simple SSL Private Key and Certificate for HTTPS use, using StartSSL’s free service

August 11, 2014 Marc Kranat 1 Comment

“The site’s security certificate is not trusted!” Do you get to see this scary warning often? In most cases you can ignore it, management pages, even your own webmail server, but often you can’t ignore it, it will scare clients …

CISSP CISM PMP