|
Sears.com Pushing Marketscore Spyware |
|
|
|
|
Written by Matt Jonkman
|
|
Thursday, 03 January 2008 |
|
CA has a good article about some shameful spyware pushing by Sears. Shoots holes in the old "only visit sites you trust" method of security. http://community.ca.com/blogs/securityadvisor/archive/2007/12/20/sears-com-join-the-community-get-spyware.aspx We've had signatures for Marketscore for a couple years now. 2001562 and 2001564. This is by far the most shameful and dangerous type of spyware. It hijacks ALL web traffic and redirects it through Marketscore's proxy servers. This gives them access to ALL of your traffic and web surfing, and allows them to alter anything in transit. Your banking login credentials, purchases, credit card info, everything is in their hands. Who "they" is is even dubious. It comes with the usual privacy disclosure to appear to be legal, but this is the exact kind of thing the FTC ought to be all over. Lets hope they're watching! Great job by CA bringing this to everyone's attention!
|
|
Last Updated ( Saturday, 26 January 2008 )
|
