StopTheHacker is at HostingCon 2011 in beautiful, sunny yet cool, San Diego!

Come visit us at booth #623.

If you’re at HostingCon, whether you are a customer or you would like to learn about our services, affiliate program, or how to partner, come by and say hi! We’re also giving away fee stuff including a $100 Amazon Gift Card. Tweet with #stopthehacker and #APSPartner – you must be present to win!

For details on how to attend:
http://www.hostingcon.com/

Look for us at HostingCon 2012 in Boston!

StopTheHacker in the News at HostingCon
StopTheHacker was one of ten recommended SaaS applications available on Parallels Automation at the launch of its Cloud Applications module. It was among only four apps presented by Parallels CEO, Birger Steen, in his keynote speech at the conference on Wednesday.

Parallels announced the availability of Parallels Automation for Cloud Applications at HostingCon 2011.

• Parallels Automation
• Parallels Cloud Services Catalog

StopTheHacker and Parallels Announce Contest Winners at HostingCon
On Wednesday, Parallels announced the winners of the APSPartner Contest. Thanks to all of you who stopped by our booth and scanned our QR code!

The winner of the $100 Amazon Gift Card from StopTheHacker was Yuriy Koshkin. Congratulations Yuriy!

• The complete list of HostingCon APSPartner Contest Winners

Company, News

Our service provider will be conducting scheduled database maintenance tomorrow, Wednesday, August 3rd, at approximately 6:00 AM PT. The upgrade will take approximately 30 minutes. This maintenance will improve performance of our websites.

During this maintenance, some webpages at StopTheHacker.com may be unreachable or be served slower than usual. Logins to the customer panel and access to our reseller API will be affected during this time. However, this maintenance will not interrupt the scanning services that make sure your website is safe.

If you encounter any issues logging in during this window, please try again after 6:30 AM PT. We apologize for any inconvenience this may cause you. If you continue to encounter issues after the window, please let us know. We are always here to help.

Company, News, Status

Building on our efforts to identify malware and spam on social networks like Facebook, we are very happy to announce the release of our Facebook safety app, MyPageKeeper, in collaboration with researchers from the University of California, Riverside (Press Release).

For more information about MyPageKeeper, visit the Facebook app page.

Why should you use MyPageKeeper?
MyPageKeeper protects your Facebook profile and online reputation. Hackers, malicious individuals and even Facebook friends can post malicious content on your wall. Visitors to your wall may be infected with viruses or get scammed by phishing and spam campaigns. Using MyPageKeeper puts you in charge of what content is allowed on your wall and news feed. You have the power to protect your friends from getting infected with malware.

What does MyPageKeeper do?
MyPageKeeper scans and monitors all content posted on your wall and news feed. It uses advanced techniques to identify whether a piece of content is malicious, spam or related to phishing. Continuous monitoring and the latest web-based malware detection technologies allows MyPageKeeper to protect your online persona on Facebook.

Do you have to pay anything for MyPageKeeper?
No, MyPageKeeper is FREE to use.

How can you be a good Facebooker?

1. Protect your online profile by preventing malicious content from being posted on it.
2. Protect your friends too. Tell them about MyPageKeeper so that their profiles are safe.
3. Provide feedback and feature requests. we would love to hear from you.

Who is behind this effort?
Researchers from the University of California, Riverside and security experts from StopTheHacker.com have joined forces to provide this free service to the community.

Company, News, Security app, Facebook, malware, mypagekeeper, UCR

The stopthehacker.com team traveled to Omaha, Nebraska, in early February to meet with other cyber security companies and corporate, academic and government leaders. Anirban Banerjee, stopthehacker.com co-founder, appeared in a video interview conducted by Jeff Slobotski of the Silicon Prairie News.

Watch Anirban describe the goals of stopthehacker.com:

• Scott Tech Center & Innovation Accelerator Host Cyber Security Event

Thanks again to the Silicon Prairie News for covering us at the event!

Company, News Cyber Security, Innovation Accelerator, Peter Kiewit Institute, Scott Tech Center, Silicon Prairie News

Malicious hackers have, for many years, been offering services to unscrupulous individuals and companies for monetary compensation. With the growth of Email Spam advertising everything from medical supplements to cars and lottery tickets, email scrubbers and filters have taken the game up a notch by implementing ever increasing layers of complexity to cut down on such spam. In turn, hackers have started to focus on advertising spam, such as medication and fraudulent scams by compromising web-based message boards and forums.

Hackers employ two basic techniques:

• Creating large numbers of users on forums. These accounts are then used to post spam on the message boards.
• Exploiting Web Application vulnerabilities in the software used to run the forum.

Approximately two weeks ago, Lenny Zeltser, from ISC SANS, posted an informative article about online pharmacy ads popping up on message boards. In this vein we have conducted a limited experiment with about 14,000 websites which contain spam announcing online pharmacies.

The aim of the experiment:

• What percentage of websites which advertise online pharmacies are message boards and Internet forums?
• What Web Applications, e.g. CMS packages, are used on the message boards that are compromised?

We believe this will provide us with a rough estimate of how focused are hackers toward using message boards and forums on the Internet to advertise spam. From another perspective, it will provide us some idea of how vulnerable websites are if it hosts a message board or forum from being abused by hackers.

Testing methodology:

We have used Google to mine the websites which contain certain keyword patterns such as “buy zocor online”, or “buy brand kamagra online” etc. Once the links suggested by Google were mined, each of the websites was tested against Google’s Safe Browsing List to determine if they had hosted malware (according to Google). Next, an analysis was done to determine if the link(s) mined from Google pointed to a forum or message board. This was done by identifying the presence of multiple strings inside a link. For example, if a link has the keywords “topic”, “view”, “thread” or similar keywords, including characters associated with dynamic page generation, it is probably hosting a message board or forum.

The test was conducted between January 21st and January 23rd, 2010.

Popular software packages installed on compromised forums and message boards.

We present the most interesting results below:

• 47.9% of websites displaying “online pharmacy” spam are message boards and forums.
• None of the websites advertising “online pharmacy” spam were listed on Google Safe Browsing List.
• 20.28% of forums displaying “online pharmacy” spam were using Jquery.
• 15.73% of forums displaying “online pharmacy” spam were using phpBB.
• 11.54% of forums displaying “online pharmacy” spam were using WordPress.
• 10.84 % of forums displaying “online pharmacy” spam were using Mootools.

These results and other software packages, helper-scripts, tracking-code are depicted in the graph presented above.

This small experiment shows that a high percentage of websites displaying online spam campaigns are message boards or forums. This indicates that there are many unsecured software installations and older software packages still in use which are often exploited by malicious individuals to post spam. Further, it seems that most sites which were hacked are using jQuery. This supports our previous observations regarding jQuery scripts being used to push malware to unsuspecting visitors.

Read more…

Company, News, Report google, malware, online pharmacy spam, safebrowsing, spam

Try our Blacklist Monitoring service for free. Blacklisting can happen to anyone. Now, with Blacklist Monitoring, know before it’s too late to keep your customers. Getting quick notice can let you fix the problem faster. Together, we can help make the web a safer, better place to surf.

What’s in it for you?

• We tell you if your site appears on a blacklist, i.e. Google’s SafeBrowsing list.
• You’ll receive an email every day with your status.

Sign up now. It’s Free!

• Free Google Blacklist Monitoring

Blacklisting happens to sites everyday and some don’t even know it until they hear that their readers and customers can’t reach them (see badwarebusters). Being blacklisted can practically take your website off the Internet! Most web browsers, like Firefox, Internet Explorer, Safari, or Chrome, will keep your visitors from accessing your site entirely, some won’t even give your visitor a choice.

We hope this never happens to you, but we can prepare you for when it does. We’ll notify you immediately. We can even help you recover.

We’ll be adding more services soon, so check back and don’t forget to subscribe to our feed, or follow us on Twitter or Facebook!

Company, News blacklist monitoring, blacklisting, free service, google, notification, tracking