Author Topic: IDS alert on cert and various best policy recommendations  (Read 110 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast √úberevangelist
  • Maybe Bot
  • *****
  • Posts: 30835
  • malware fighter
IDS alert on cert and various best policy recommendations
« on: November 08, 2018, 11:47:01 PM »
Given as clean here: https://www.virustotal.com/#/domain/zenideen.com
Given as a low security risk here: https://sitecheck.sucuri.net/results/https/zenideen.com

Flagged here: https://urlquery.net/report/f27a22cb-8479-4322-b816-ee18e6dea249
CloudFlare abuse?
alerts for ET INFO Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)
Fortinet's reports various js malware. (U+200B) is not a valid identifier! For line 39 etc. in
https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=entuWyN7e24uXl1t~enc

Word Press plug-in update required:    contact-form-7 5.0.4   latest release (5.0.5) Update required
https://contactform7.com/

admin back-end account vulnerable.

Retirable jQuery libraries: https://retire.insecurity.today/#!/scan/8c6b35749eed1cb8c99a459c30adf803a2ae9e03f0427c0d1d008c64291ba714

External link blocked from loading by u<atrix: -https://load.sumo.com/

182 best security policy recommendations: https://webhint.io/scanner/354bc1aa-2b06-4347-a4e4-0d4127c9ba5c

This now being offline? -> https://webcookies.org/cookies/st.mobeemi.xyz/19977477
Blocked by MBAM for possible suspicious activity.

polonus (volunteer website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!