VirtualLarry
No Lifer
I just got a spam link from a Skype user that's a friend that hasn't been on Skype for a year.
I called him, and he said he didn't send it, and didn't even have Skype on his current PC.
I also recently added Skype to one of my PCs, the other night, on a fairly fresh PC. But I was a bit sketched out, as the Firefox Nightly security certs for my favorite sites were mostly all showing from one CA, and didn't have Owner / Identity information in the Cert. I'm on Win7 Pro, on a Lenovo (but I don't believe that these models shipped with SuperFish), using Firefox Nightly.
So, I could have been key-logged I suppose.
This laptop does have the Lo-Jack type anti-theft system in BIOS, and I tried to disable it (I am original owner), because I recently cloned the HDD to an SSD, and swapped them. That act, can piss off the embedded Lo-Jack / Computrace module, and it will go active and weaponize, and then start allowing remote accesss, keylogging, and I suppose, installation of rogue CA certs that allow MITM attacks. (Happened to one of my other laptops.)
But if "they" (whomever "they" are, that gain access via Computrace) have access, then why would they use it to send obvious spam?
I think that it's highly more likely that either my, or my friend's, Skype password info was compromised.
I called him, and he said he didn't send it, and didn't even have Skype on his current PC.
I also recently added Skype to one of my PCs, the other night, on a fairly fresh PC. But I was a bit sketched out, as the Firefox Nightly security certs for my favorite sites were mostly all showing from one CA, and didn't have Owner / Identity information in the Cert. I'm on Win7 Pro, on a Lenovo (but I don't believe that these models shipped with SuperFish), using Firefox Nightly.
So, I could have been key-logged I suppose.
This laptop does have the Lo-Jack type anti-theft system in BIOS, and I tried to disable it (I am original owner), because I recently cloned the HDD to an SSD, and swapped them. That act, can piss off the embedded Lo-Jack / Computrace module, and it will go active and weaponize, and then start allowing remote accesss, keylogging, and I suppose, installation of rogue CA certs that allow MITM attacks. (Happened to one of my other laptops.)
But if "they" (whomever "they" are, that gain access via Computrace) have access, then why would they use it to send obvious spam?
I think that it's highly more likely that either my, or my friend's, Skype password info was compromised.
