Posts tagged ‘security’


Why you shouldn’t sign up for Facebook’s two-factor authentication

14.02.2018

I know, you’re stick of reading my reporting on my experiences with Facebook et al, let alone what someone else is going through. But here’s a word of warning from Gabriel Lewis, who signed up to Facebook’s two-factor authentication. Note: he never opted in to SMS notifications, and he doesn’t have the Facebook app. He’s not alone.
   Once again, just because Facebook might prompt you to do something doesn’t mean you should. I was suckered in once,* not going to happen again.

* Facebook’s fake malware warnings are now happening to a big number of Mac users, who aren’t infected. This will simply unravel more and more.

Tags: , , , , , , , ,
Posted in internet, technology, USA | No Comments »


New Zealand slips to 17th in latest Good Country Index

11.12.2017


Above: Simon Anholt, giving a talk at TEDSalon Berlin.

Out today: my friend Simon Anholt’s Good Country Index, with the Netherlands taking the top spot from Sweden, which drops to sixth. New Zealand is in 17th, failing in prosperity and equality, and in cultural contribution (previously we had been 5th and 12th). On the plus side, we are doing reasonably well in health and well-being, and in science and technology. It’s a challenge for us as we aren’t keeping up with certain aspects of the game by international standards. Have a read—it’s all properly referenced and sourced.

Tags: , , , , , , , , , , , ,
Posted in branding, culture, general, leadership, New Zealand, politics, Sweden | No Comments »


A warning to those with rivers.pro tagcloud code in their Tumblr themes

31.01.2014

Does anyone have the rivers.pro tagcloud code in their Tumblr theme? If so, it’s time to remove it. The code forwards to a website which McAfee SiteAdvisor labels dodgy. It is very hard to remove from a customized theme, since every time the page loads, the forwarding takes place. You’ll have to find a way to stop the loading, then edit your templates.
   The code looks something like this:

<script type="text/javascript" src="http://tumblrtags.rivers.pro/jquery.js"></script><script type="text/javascript" src="http://tumblrtags.rivers.pro/widget.js?css=default&minsize=80&maxsize=180&order=alphabetical"></script>

   I’ve advised Tumblr of this. Maybe they have some way to help Tumblr users.
   Incidentally, you may be asking, ‘Why is he warning people on his regular blog and not on Tumblr?’ The answer is simple: I am not allowed to.
   Every time I tried posting this message, this is what I got:

Tumblr warning on tagcloud code

Maybe Tumblr has already blocked the code?
   Regardless, if you have friends who use Tumblr, please get them to check.

Tags: , , , ,
Posted in design, internet, technology, USA | 2 Comments »


I remember one of IMI’s scare campaigns

29.10.2011

I came across a fascinating article in Wired’s online edition about two scammers who promote “scareware”: those inferior antivirus programs designed to rid users of fake viruses they tell you about through fake pop-ups. And once you install them, you get a virus.
   This paragraph struck a chord:

But those troubles didn’t do much to stifle IMI’s scare campaign. Starting around 2007, the company cranked up both its aggression and its ingenuity. Leading advertising networks had banned IMI, so the company set up a series of fake online ad agencies that placed banners on popular websites, including those of The Economist, eHarmony, and Major League Baseball. IMI embedded the ads with hidden code, so if someone from inside the hosting site’s offices looked at them, they saw appeals from mainstream companies like Travelocity, Priceline, and Weight Watchers. But if regular users viewed the ads, they saw quickie come-ons for used cars or diet pills. When consumers clicked on an ad, it would redirect their browser to a site selling antivirus software or, worse, trigger an auto-download. All the while, IMI was engaged in an arms race against established antivirus companies, continually tweaking its software to make it unrecognizable to the databases of known threats.

   In 2007, we had come across these very ads. Luckily, we caught them within hours of their surfacing on our sites, thanks to browsing the pages ourselves, and using proxies to see what people overseas could be viewing. We removed all banners from the affected ad network, replacing them with ads from another one. The ad network who fed the ads to us removed the ads ASAP. Four years on, we discover who was behind them.
   Not that we can blame the ad network. The actual ads looked legit: the ones I remember pretended to be from Careerbuilder. Unfortunately, when they loaded, it launched one of IMI’s websites with a fake virus scan.
   I tended to be more fortunate, as I customized my machines enough so that the standard fonts do not display—though I got caught out earlier this year with one fake ad with a defrag alert, on my laptop, where I had not removed Segoe as the default UI font in favour of one of our in-house ones.
   The two blokes behind IMI are on an Interpol most-wanted list, though that’s just the tip of the iceberg.
   There are plenty more following in their footsteps, as I’ve noticed that these sorts of ads have continued. Panda Security, the article reveals, estimates that the number of phony antivirus programs has leapt from 92,215 in 2008 to 3,084,410 last year. Fortunately, as far as I know, advertisements for these programs, and the fake virus alerts that accompany them, haven’t surfaced on the ad networks we’re using. We’ll keep monitoring.

Tags: , , , , , , ,
Posted in business, internet, marketing, media, publishing, technology, USA | No Comments »