Sunday, November 15, 2009

DNS Blackhole and RBN IP List Updated 11-15-2009

Over the weekend I've updated the DNS Blackhole and RBN IP List files to include blocking of the most recent malware sites. Updating your firewall will provide you with optimal protection:

Emerging Russian Business Network rules for Snort:
http://www.emergingthreats.net/rules/emerging-rbn.rules

Emerging Threats RBN Project page:
http://doc.emergingthreats.net/bin/view/Main/RussianBusinessNetwork

IP list as a text file (last update: 10-24-2009)
http://doc.emergingthreats.net/pub/Main/RussianBusinessNetwork/RussianBusinessNetworkIPs.txt

DNS Black Hole files for Smoothwall at Emerging Threats:
http://doc.emergingthreats.net/pub/Main/HoneywallSamples/config-hosts


http://doc.emergingthreats.net/pub/Main/HoneywallSamples/hosts


Understanding DNS Black Hole In Home Defense


James McQuaid

Saturday, November 7, 2009

DNS Blackhole Updated

DNS Black Hole files for Smoothwall at Emerging Threats:
http://doc.emergingthreats.net/pub/Main/HoneywallSamples/config-hosts

http://doc.emergingthreats.net/pub/Main/HoneywallSamples/hosts

Protect your home network from 285,273 bad actor and malware domains.

James McQuaid
11-7-2009

Tuesday, November 3, 2009

Message for Web Hosting Providers

The Electric Six, known for ridiculous, over-the-top rock, provide a timely message for legitimate web hosting providers who, by failing to scan their own networks, are allowing criminals to use web sites to deliver malware:

Listen to "Formula 409" by Electric Six on lala.com:
http://popup.lala.com/popup/360569453772674524

Lala.com rated safe for listening:
http://www.google.com/safebrowsing/diagnostic?site=lala.com
http://safeweb.norton.com/report/show?url=lala.com&x=0&y=0
http://www.siteadvisor.com/sites/lala.com
http://wepawet.cs.ucsb.edu/domain.php?hash=c1762e2fa3c76e8bfe41a9f7de069504&type=js

"You can clean your kitchen baby
Make it look good every time.
You can use a little Mr Clean
or Formula 409.

You can find my mission baby,
lock it on target every time.
Take out Washington or New York
Or you can take out Palestine.

You can drive your car to pieces baby,
Drive it until somebody dies.
Get out of trouble with a cover-up,
A greasy lawyer and some lies.

You can clean your kitchen baby
Make it look good every time.
You can use a little Mr Clean
or Formula 409."


Perhaps Congress should consider legislation imposing financial penalties for malware hosting. This would provide the hosts with an incentive to perform due diligence.