List of Windows 10 “phone home” domains

Sunday, August 16th, 2015

Here is a list of all the domains caught so far sending your data back to Microsoft in Windows 10: vortex.data.microsoft.com vortex-win.data.microsoft.com telecommand.telemetry.microsoft.com telecommand.telemetry.microsoft.com.nsatc.net oca.telemetry.microsoft.com oca.telemetry.microsoft.com.nsatc.net sqm.telemetry.microsoft.com sqm.telemetry.microsoft.com.nsatc.net watson.telemetry.microsoft.com watson.telemetry.microsoft.com.nsatc.net redir.metaservices.microsoft.com choice.microsoft.com choice.microsoft.com.nsatc.net df.telemetry.microsoft.com reports.wes.df.telemetry.microsoft.com wes.df.telemetry.microsoft.com services.wes.df.telemetry.microsoft.com sqm.df.telemetry.microsoft.com telemetry.microsoft.com watson.ppe.telemetry.microsoft.com telemetry.appex.bing.net telemetry.urs.microsoft.com telemetry.appex.bing.net:443 settings-sandbox.data.microsoft.com vortex-sandbox.data.microsoft.com survey.watson.microsoft.com watson.live.com watson.microsoft.com statsfe2.ws.microsoft.com corpext.msitadfs.glbdns2.microsoft.com compatexchange.cloudapp.net cs1.wpc.v0cdn.net a-0001.a-msedge.net statsfe2.update.microsoft.com.akadns.net sls.update.microsoft.com.akadns.net fe2.update.microsoft.com.akadns.net diagnostics.support.microsoft.com corp.sts.microsoft.com statsfe1.ws.microsoft.com pre.footprintpredict.com i1.services.social.microsoft.com i1.services.social.microsoft.com.nsatc.net feedback.windows.com feedback.microsoft-hohm.com feedback.search.microsoft.com rad.msn.com preview.msn.com ad.doubleclick.net ads.msn.com ads1.msads.net ads1.msn.com a.ads1.msn.com a.ads2.msn.com adnexus.net adnxs.com aidps.atdmt.com apps.skype.com az361816.vo.msecnd.net az512334.vo.msecnd.net a.rad.msn.com a.ads2.msads.net ac3.msn.com aka-cdn-ns.adtech.de b.rad.msn.com b.ads2.msads.net b.ads1.msn.com bs.serving-sys.com c.msn.com cdn.atdmt.com cds26.ams9.msecn.net c.atdmt.com db3aqu.atdmt.com ec.atdmt.com flex.msn.com g.msn.com h2.msn.com h1.msn.com live.rads.msn.com msntest.serving-sys.com m.adnxs.com m.hotmail.com preview.msn.com pricelist.skype.com rad.msn.com rad.live.com secure.flashtalking.com static.2mdn.net s.gateway.messenger.live.com secure.adnxs.com sO.2mdn.net ui.skype.com www.msftncsi.com msftncsi.com view.atdmt.com Warning: Block them at your own risk.  You may break some updating functionality.

Attackers can access Dropbox, Google Drive, OneDrive files without a user’s password

Thursday, August 6th, 2015

Hackers don't even need your password anymore to get access to your cloud data. Newly published research, released at the Black Hat conference in Las Vegas on Wednesday by security firm Imperva, shows how a "man-in-the-cloud" attack can grab cloud-based files -- as well as infecting users with malware -- without ...

Windows 10 Upgrade Spam Carries CTB-Locker Ransomware

Monday, August 3rd, 2015

In the week since a free upgrade to Windows 10 was made available, users have learned a of about a host of built-in privacy and security issues, the most troubling being a native feature called Wi-Fi Sense that grants access to your Wi-Fi network to contacts stored in a host of ...

Flash/HTML5 in Firefox

Friday, July 31st, 2015

I've been asked a lot lately about uninstalling Flash in Firefox and why users are still being served the Flash versions on Youtube, for example, and requiring them to install it before displaying the video.  I was asked again today and thought I would quickly post something about it. The easiest ...

New Version of TeslaCrypt Changes Encryption Scheme

Tuesday, July 14th, 2015

A new version of the nasty TeslaCrypt ransomware is making the rounds, and the creators have added several new features, including an improved encryption scheme and some details designed to mimic CryptoWall. TeslaCrypt is among the more recent variants of ransomware to emerge and the malware, which is a variant of ...