Wednesday, March 31, 2010

Random Pictures #3

Some random pictures from quite a while back.

I always see this van passing by. Some strange reason, I gets cheezeburger cravings:
lolcats grown up

Quite a while ago, I was at Tasik Idaman, and had to pass by this installation. I never knew Malaysia had a Atomic Licensing Board.
Big Boomz

Spotted outside Padang Astaka there was a strange English-Malay transliteration / modern Malay word: 'SUKSES'.

'Beraksi' is derived from the English word 'Action' where 'tions' are converted to 'si' like 'Suspension' is 'suspensi'. I thought those words were bad enough, but 'success' as 'sukses'? How lazy is that? Its like 'Racists' is 'rasis'!

Then we have some pseudo-science. Just lob in some Greek characters, and you'd gain some credibility. Pi water for vibrant health. Shrite.
Pi Water helps you make superior Apple Pi.

Troudat of Austria ('Gday, mate!') should get with the times and have a #FAIL stamp.
Or otherwise do some localisations for Malaysia; 'File' -> 'Fail' or at least 'Success' -> 'Sukses'


Tuesday, March 30, 2010

Browser payloads

I was innocently (honest!) browsing the vastness of the internet, when I came across an interesting page.

It displayed Windows XP like alerts, "Windows Security Alert" in all the colourful WinXP crayola themed glory and then proceeded to pop up another realistically rendered "window" which simulated a scan throughout my vulnerable Windows system. Yes, the windows were drag-able.

It looked something like this:

Then my Firefox browser popped up a dialog to confirm if I wanted to download and run a delicious "packupdate_build6_318.exe" file to patch up my now severely insecure operating system:
Fortunately Im abit more technologically aware of these scams. Fortunately I know that when Windows alerts you of something, you have to be doubly aware of things.

But what about the rest of the world? The vast majority of people who would be fooled by this cleverly rendered HTML/CSS/JavaScripted page? At the threat of "Security has been damaged by virus[sic]", a large number of people will want to eradicate the pesky virii. Thus, a high percentage who would click on "Run Application" after downloading.

So if you are the so-called "Tech Support" for your family/relatives/friends (its a thankless job), you could save yourself alot of headache by educating your "users" about these threats. Change the default theme to something different. Install a net-nanny. Install a real Anti-Virus app (or two) which is updated frequently. Lock down the users' permissions. Boot read-only. Charge by the minute. Ban the user from computers.

Alternatively, you could get them to run Linux.