More Blockbuster Security Problems
I got this security alert again when I was logging into the Blockbuster Online Web site last night.
I'm sure it's just a configuration problem on one of their servers, but my mom would freak if she saw this.
Welcome
Come in, take a look around, and feel free to contact me if you have a question or story idea. Be sure to read the comments or participate in the discussion.
Recent Posts
- Netflix Takeover Rumors Again
- Netflix New Releases for July 14th, 2009
- Saturday Shipping Reported in Greensboro, North Carolina
- Netflix Q2 Earnings Webcast on July 23rd
- Netflix Website "Temporarily Unavailable" - Back Online
- Netflix Announces Streaming on Sony Bravia TVs This Fall
- Rare Look Inside Two Tennessee Netflix Shipping Centers
- Are Blu-ray Discs Cracking more than DVDs?
- TiVo Offering Customers Upgrade Discount on HD DVRs
- Netflix New Releases for July 7th, 2009
Netflix Blogs
Software
Movie Links
Movie Podcasts
Disclaimer
This site is an independent Web site (I don't work for Netflix). Netflix is registered trademark of Netflix, Inc. HackingNetflix will not teach you how to lie, cheat or steal from Netflix. Hacking is the desire to fully understand something, and we want to learn as much as we can about this company and share this information.Click here for more information about this Website and a full disclosure statement.
Investors: Please do not use the information on this site to buy or sell stocks. I don't want to have to explain to your spouse how you lost a huge amount of money based on advice from a site called "Hacking Netflix."
The contents of this Web site are (c) 2003 - 2007 Briki Media, LLC. All rights reserved.
« Netflix is Looking for a Driver | Main | How to Cancel Your Netflix or Blockbuster Service »
TrackBack
TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d83451c1bb69e200d834254cbf53ef
Listed below are links to weblogs that reference More Blockbuster Security Problems:
» Blockbuster Online's security is suspect from Tiny Little Sparks
I signed up for Blockbuster Online a little over a week ago. Nearly a year ago, I had tried Netflix for a few months and really liked it. I had even tried the now-defunct Wal-Mart DVD rental service for comparison. But it was all getting to the point w... [Read More]
Comments
Verify your Comment
Previewing your Comment
This is only a preview. Your comment has not yet been posted.
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment
As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.
Having trouble reading this image? View an alternate.
Support
If you sign up through these links you help support this site.
Set Up Your Blog Now!
Categories
- Competition
- HackingNetflix Updates
- Humor
- Industry News
- Investor Relations
- Links
- Misc
- Movies
- Netflix Business Model
- Netflix Customer Support
- Netflix Hacks
- Netflix in the Press
- Netflix Info
- Netflix Marketing
- NetFlix News
- Netflix Prize
- New Releases
- Observations
- Off-topic
- Reviews
- Rumors
- Shameless self-promotion
- Software
- Suggestion Box
- TV
[Update from Mike: I was able to duplicate this error on 3 different computers in two locations. The screen capture is proof. Manuel also states below that Netflix is using spyware, and yet I have the assurances of 3 different sources at Netflix that they are not using spyware or adware. When you read his comments and visit his site you'll see that he distorts the facts and prints only one side of the story to support his hate campaign against Netflix.]
It's never happened to me and I bet I use BlockBuster more than you do. This is nothing compared to the security nightmare Netflix has created by paying spyware sites to infect users' PCs. Netflix has the audacity admitting using spyware to boost sales as reported by Adware Report and the Wall Street Journal. Both eXact Advertising and Claria use their spyware to steal customers from Netflix competitors yet their spyware doesn't stop there. eXact Advertising may collect any or all of the following types of information: (a) traffic or clickstream data, (b) cookies, (c) Internet Protocol ("IP") addresses, or (d) contact information and other personally identifying information.
Gator/GAIN can download and execute arbitrary code from its controlling server.
Gator/PDP, the installer control, can be directed by any web page to install code from Gator's servers.
Gator/PDP/3061, an early version of the installer control, has a critical security flaw: it allows any web page to download and execute code from anywhere, with no security checks.
Gator/PDP/5094, the latest version of the installer control, seems to contain code to work around the network security products Zone Alarm Pro, STOPzilla, Norton Internet Security and McAfee Desktop Firewall.
Claria says its spyware infected more than 40 million PCs at the end of last year. Also, eXact Advertising claims to have infected 10% of all web users' PCs.
Netflix should be ashamed damaging so many users' PCs with spyware. [Where are the screen shots, Manuel? Where is your proof that Netflix is doing this? Old articles and a researcher who is a paid expert against Claria? Full disclosure, please.]
Posted by: manuel | August 10, 2005 at 09:07 AM
manuel,
"Netflix should be ashamed damaging so many users' PCs with spyware."
Collecting data is not damaging to a computer. The software doesn't overload your connection or delete files. It's part of business: if you want to use their website they’re going to load 'hellish' cookies on your system to survey your daily Internet use. Any company could do it.
Did you ever consider what they use the data for? I doubt it. It’s used to improve the site for your individual wants.
Posted by: CashForFlow | August 10, 2005 at 10:27 AM
"Collecting data is not damaging to a computer. The software doesn't overload your connection or delete files. It's part of business: if you want to use their website they’re going to load 'hellish' cookies on your system to survey your daily Internet use. Any company could do it."
While I have never had any problems with spyware or any of that other stuff getting on my system I still find what you said to be wrong.
What you fail to mention is that they have NO F'N right to put that CRAP on our computers without us knowing what they want to do.
I hope all of the BA$TARD$ who use this spyware crap on us go to F'N hell and if anyone reading this is involved with the spyware crap you can kiss my F'N a$$!
Posted by: | August 10, 2005 at 12:57 PM
I must agree with the screamer....it is sleazy
to support such practices.
...and I hope they go to FN H8LL!! ;0)
Posted by: PlungeBob | August 10, 2005 at 02:47 PM
"Collecting data is not damaging"
We're not talking about harmless cookies. We're talking programs that punch holes in firewalls leaving PCs totally defenseless. This is the type of damage Netflix is paying spyware companies for just to turn a bigger profit.
Posted by: manuel | August 10, 2005 at 04:14 PM
Manuel,
Your information on Netflix and spyware is wrong. I asked Netflix about your claims and this was the response:
"Netflix does not use adware or spyware and we specifically forbid our affiliates from advertising Netflix via spyware or adware. If it happens, we crack down on it. That’s on the record."
You need to check your facts before you start making claims about a company.
You also need to present all of the facts, not just the negative side of the story.
- Mike
Posted by: Mike K | August 10, 2005 at 05:43 PM
"I must agree with the screamer....it is sleazy"
Sorry if I came off like I was screaming, (although I was), but those kind of people really piss me off. They are no different that the scum-suckers that break into your home. I think the best way to get rid of them is to have an open bounty on those people. I, for one would be willing to contribute to that type of fund.
Posted by: | August 10, 2005 at 05:52 PM
"We're not talking about harmless cookies. We're talking programs that punch holes in firewalls leaving PCs totally defenseless. "
That statement doesn't make sense. A firewall is a program designed to stop that sort of traffic in particular. If a 'harmless cookie' is sending traffic through a firewall then get a better firewall. An easier/better idea is to modify your browser’s settings on how it handles cookies.
These spyware programs are way overblown to sell overpriced firewall software. In fact, getting a decent router is the best means of protecting your computer.
Posted by: CashForFlow | August 10, 2005 at 05:52 PM
BTW, I was able to duplicate the security problem this story is about on 3 different machines, using 3 different browsers (IE/Windows, Safari & Firefox). All 3 had the default settings.
- Mike
Posted by: Mike K | August 10, 2005 at 05:52 PM
If so, Netflix needs to put out a press release. I hope you'll forgive me for doubting your word.
Posted by: manuel | August 10, 2005 at 05:53 PM
Manuel,
Why would they need to put out a press release to address your claims?
Call or e-mail Netflix, which is what you should have done before writing your story.
Why do I even bother? You use this site as a forum to go off on Netflix on nearly every post. You're as bad as the "shills."
This site is for people interested in news about Netflix, not a forum for you to twist and distort things.
Why do you constantly take swipes at me? I can't belive you wrote: "I hope you'll forgive me for doubting your word." Why would I need to make this up?
I will again ask you to be fair and balanced in your writings on your site and in your comments here.
- Mike
Posted by: Mike K | August 10, 2005 at 06:23 PM
"Your information on Netflix and spyware is wrong"
Is it?
PC Pitstop on Netflix being a Claria client:
http://www.pcpitstop.com/gator/advertisers.asp
Adware Reports on Netflix's admission of using spyware:
http://www.adwarereport.com/mt/archives/000159.html
Wall Street Journal on Netflix's admission of using spyware:
http://online.wsj.com/public/article/0,,SB112011691087873874-ZfLOkSgs26INqfMhlyBT6HDaB3A_20060701,00.html?
Benjamin Edelman's test results showing Gator targets BlockBuster for Netflix:
http://asp-cyber.law.harvard.edu/gator-sites/test.asp?host=blockbuster.com
Benjamin Edelman's research showing eXact Advertisng reroutes traffic meant for Netflix competitors:
http://www.benedelman.org/spyware/exact-advertisers/ads-highlights.html
Posted by: manuel | August 10, 2005 at 06:30 PM
Manual-
You need to learn to distinguish between Netflix and a Netflix affiliate.
It's the affiliate that's paying for the adware/spyware/whatever placement. This is specifically prohibited by the affiliate agreement. However, this agreement doesn't prevent an affiliate from trying.
Posted by: | August 10, 2005 at 09:35 PM
Netflix Press Release: "We do not and have never used spyware of any form"
Manuel: They didn't say anything about which universe they were referring to.
Random Anime Character: WHAAA!!!!
Posted by: Aron | August 10, 2005 at 11:02 PM
I WILL INFECT YOUR COMPUTER, AND THEN I WILL INFECT YOU. YOU HAVE NO TIME TO MAKE PLANS. IT IS TIME FOR ME TO RID THIS WORLD OF YOU. YOUR COMPUTER IS FIRST. I HAVE JUST SOME TIME TO ATTACK NOW WHILE HE IS NOT LOOKING.
WHAA!!!
THE FIREWALL WILL NOT STOP ME. I AM STRONGER. HERE I GO.
WHAAA!!!
Posted by: Megatron the Spyware Demon | August 10, 2005 at 11:05 PM
Manuel,
Speak with Netflix PR (I am not a Netflix employee and cannot answer on behalf of the company). I have been assured by 3 different Netflix employees this year that they do not use spyware or adware to promote Netflix.
I have been researching the spyware story on and off for a long time. I don't know the details of Netflix's past with Claria, but I do believe that they do not use spyware or adware now.
I also believe that it might be affiliates using spyware, which is in violation of the agreement they have with Netflix. I wonder if Netflix used Claria in the past for the Netflix popup banners we saw last year, but I don't have the full story yet. Claria has a number of products.
You've stated that Netflix is using spyware and adware, but if they are not will you post a retraction?
- Mike
Posted by: Mike K | August 10, 2005 at 11:16 PM
When the Wall Street Journal posts a retraction so will I.
http://online.wsj.com/public/article/0,,SB112011691087873874-ZfLOkSgs26INqfMhlyBT6HDaB3A_20060701,00.html?
Posted by: manuel | August 11, 2005 at 08:25 AM
Manuel,
The WSJ is not running around saying that Netflix is infecting computers with spyware. Read the story carefully:
"Incorporated in 1998, Claria has raised about $64 million to date, primarily from angel investors and venture-capital firms. The Redwood City, Calif., company says it had more than $100 million in revenue last year, from advertisers that included Cendant Corp., FTD.com Inc., Netflix Inc. and Orbitz Inc. Despite concerns about the practice, adware is remarkably widespread: Claria says its software was on more than 40 million PCs at the end of last year."
Hmm.. Netflix was an advertiser last year. Read it again. Where do they say that Netflix is using spyware or adware today, what relationship they had with Claria, or if they are even advertising with them now?
Have you contacted Netflix? No, why should you? You only want to write about what a horrible company Netflix is. You constantly twist and distort facts to support your hate campaign against Netflix.
I looked at the Bejamin Edelman stuff earlier this year, but realized that much of it's from 2003. The following dates were found on the Edelman pages you link to:
"These results were retrieved from Gator servers as of 6/4/2003 2:03:15 PM (Eastern)"
This is from one of the pages your link to as a source: http://asp-cyber.law.harvard.edu/gator-sites/test.asp?host=blockbuster.com
"Last Updated: June 7, 2003"
From this from another page you use a "source" for your story: http://cyber.law.harvard.edu/people/edelman/ads/gator/
Did you disclose that Edelman was involved in a lawsuit against Gator/Claria? Why should you? It doesn’t support your story. He made a full disclosure.
Even the WSJ talks about LAST YEAR. Hmm... Have you done any of your own research? I guess facts, research, and current information isn't that important to you when you're on a mission.
Where is your proof that Netflix is doing this today? Yet you make these claims. Even Edelman says it might be affiliates: “Through so-called "affiliate programs," eXact receives commissions from hundreds of online merchants, often without those merchants understanding what eXact is doing and without those merchants specifically consenting to eXact's methods.”
It’s not wonder that you won’t allow comments on your site. Somebody might actually post something positive about Netflix.
The two major differences between you and the WSJ are research (more than a few quick Google searches), and when they are wrong they WILL print a retraction.
- Mike
P.S. I've tried to tell you that you several times now that you need to do more research before you write a story but you won't listen.
Posted by: Mike K | August 11, 2005 at 09:43 AM
Yes, Edelman plans on revealing Claria's current client list once litigation is over.
Posted by: manuel | August 11, 2005 at 09:53 AM
For those of you offended by Aron's anime mockery, try GreenCine.com or RentAnime.com: They welcome anime fans.
Posted by: manuel | August 12, 2005 at 10:09 PM
Aron: [thinking to self] Curses! My anime mockery has backfired and I have driven countless numbers of subs away from Netflix. Manuel's powers are much stronger then I thought.
[Aron begins summoning great galactic energy for enraged shocking backhand fist of the tiger]
Megatron the Spyware Demon: WHA !!!!!! I have emerged from somewhere dark and mysterious where I used to be before I emerged ! You will now fall unhappily before me in agonizing defeat!
Aron: Oh no! I can't fight you AND Manuel at the same time!
A Clutch of Netflix Shills: WE CAN HELP YOU ! JOIN US ! WE ARE STRONG AND NUMEROUS !
Posted by: Aron | August 12, 2005 at 11:40 PM
August 15, 2005
Netflix Settles Over Infringement Of Spyware Patents
BTG plc, a British IP solution firm, has "dismissed all claims against [Netflix] and granted Netflix a non-exclusive license to patents covering technology for tracking the navigational path of a user through the internet." The amount of the settlement was undisclosed. The spyware was created by Infonautics with patents # 5,717,860 and # 5,712,979.
Posted by: manuel | August 15, 2005 at 06:01 AM
Manuel,
I have again checked with Netflix (have you?) and they said that the BTG license did not involve spyware. Read the patents and notice the part about "tracking" and "referrals." These are basic things companies do to monitor customer behaviour.
You also neglect to mention that Barnes & Noble, Amazon and Overstock are also being sued over the same patents. Hmm... Now you're accusing Amazon, etc?
I guess fact checking is unimportant. You'll write anything to promote your hate campaign against Netflix, eh?
- Mike
Posted by: Mike K | August 15, 2005 at 02:56 PM
"I have again checked with Netflix (have you?) and they said that the BTG license did not involve spyware."
That's not how I interpret it nor do other subscribers. Marjorie Sterne also had the same take on this story last year:
http://entrepreneur.typepad.com/news/2004/09/online_retailer.html
Netflix has no business tracking what web sites I visit nor will I give my consent.
Posted by: manuel | August 15, 2005 at 04:59 PM
Take a look at Netflix's privacy policy. It makes no mention of tracking web sites subscriber's visit:
http://www.netflix.com/PrivacyPolicy
Yet, Netflix has acquired the rights to use spyware that does exactly that. Moreover, BTG claims Netflix has already used this technology without their permission.
Posted by: manuel | August 15, 2005 at 05:10 PM