[fyodor at insecure.org: C|Net Download.Com is now bundling Nmapwith malware!]
Steven Bellovin
smb at cs.columbia.edu
Tue Dec 6 18:09:57 UTC 2011
On Dec 6, 2011, at 12:34 31PM, William Allen Simpson wrote:
> On 12/6/11 12:00 PM, Eric Tykwinski wrote:
>> Maybe it's just me, but I would think that simply getting them listed on
>> stopbadware.org and other similar sites would probably have much more of an
>> effect.
>> The bad publicity can cause them to change tactics, but it takes some time.
>> I've seen much quicker results from blacklisting on Google and other search
>> engines.
>>
> I've reported it as a malware site via Firefox. Have you?
>
> But the whole site should be scanned for other/similar malware, and blocked
> accordingly. Probably a harder problem, as it gives different downloads
> depending on browser and OS.
>
>
Per the Krebs on Security link that Kyle just posted (and beat me to it),
the installer is already flagged as malware by a number of different scanners.
--Steve Bellovin, https://www.cs.columbia.edu/~smb
More information about the NANOG
mailing list