Forum Index

Board index » All Posts (Setsuka)

Aw: MSI GTX 970 GAMING 4G Golden Edition
Just popping in
Just popping in

Case : BitFenix Prodigy M Orange
Board : MSI Z97M
Card : MSI 960 4G
seems like a very solid card with good price value .. but somehow after I ordered it, it seems to vanish in every shop ... even the ASUS STRIX 960 4G suddenly changed from 3-5 days to unknown ... I then bumped into the 970 gold which would be definitely an overkill but the colors would fit nicely to the case :p

Posted on: 2015/5/18 14:45

Aw: MSI GTX 970 GAMING 4G Golden Edition
Just popping in
Just popping in

Is there any way to get the hands on this thing on our market?
Even on amazon it is not really available ... would be a perfect fit for the new rig of my wife

Posted on: 2015/5/17 16:42

Re: blocked by chrome
Just popping in
Just popping in

Edit: ui the post ended up longer than intended and sounds like a consultant. Feel free to edit away useless and inappropriate parts

Okay to be honest I don't know how your ad system looks like.

I'm not a specialist regarding web security. What I'm suggesting could be entirely wrong or outdated. It's simply based on the things I believe to know and read about.
Disclaimer end

As far as i know many of the hosted websites offer site space to an ad company (Google, etc.). The ad data is hosted at the ad provider and simply loaded as part of the website. So if an attacker is able to compromise the ad provider, he can compromise all the websites displaying the ads.

In case you host all the ad data yourself then the situation looks a bit different and would likely mean a lot more work for you

Finding it can be rather difficult especially if it is in the end in a js that loads data from another host, which again would mean that it wouldn't be your website that has to be compromised. Also good luck finding an exploit hidden in a picture or flash animation.

Finding out how it got there can also very tricky (even if you still have the logs :p ). Again it also could be that the legitimate ad data was already compromised before you got it from your legitimate source, or you got it of a seemingly legitimate source, etc., etc. It could be also a misconfiguration (as you pointed out), as well as "weak" authentication of an admin account, usually weak, guessable, brute-forceable, easy resetable (especially when the reset email account is hacked) passwords. Generally users use 3-5 passwords for all the accounts, I currently track something like 50+ accounts for myself. The attacker could also use a 0-day exploit to gain access, good luck detecting that

The analysis of an incident can be very time consuming.
You don't necessary have to be to blame since it could be sideloaded.
All you can do is trying to apply best practices with the resources you have to provide appropriate security for the service you provide.

Posted on: 2013/10/11 8:11

Re: blocked by chrome
Just popping in
Just popping in

yeah thought so ... ads are a very handy way to distribute malware since you don't distribute it yourself, you can do it on many sites at the same time and even chose to only sometimes as well as mutate it every time to keep a low profile.

Have now a good day of sleep :p

Posted on: 2013/10/5 14:33
Sic vis pacem para bellum
Top blocked by chrome
Just popping in
Just popping in

bei mir wird z.Z. die Webseite von Chrome geblockt mit der Begründung, dass sich darauf malware befindet, möglicherweise einer der Werbebanner?

The Website Ahead Contains Malware!
Google Chrome has blocked access to for now.
Even if you have visited this website safely in the past, visiting it now is very likely to infect your computer with malware.
Malware is malicious software that causes things like identity theft, financial loss, and permanent file deletion. Learn more ... ent=googlechrome&hl=en-US

PS dies gilt bei mir nun sogar bei firefox

Posted on: 2013/10/4 21:10


Forum - All Posts - ocaholic