Author Topic: Mass internet infections and how to protect with NoScript in Firefox!  (Read 3219 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33489
  • malware fighter
Hi malware fighters,

More interesting news about gumblar, which seems to have subsided a bit now, can be found here:
http://garwarner.blogspot.com/2009/06/gumblars-48000-compromised-domains.html
Another one of these grand scale attacks on a minor scale is beladen.
How can we protect ourselves when we run the NoScript extension in our Firefox browser:
1. Go to the NoScript icon, right click it,
2. Go to options and open it up,
3. Go to plugins,
4. In there tag all additional restrictions, and also tag Apply these restrictions to trusted sites too,
Now your fail safe where gumblar and other mass trusted website infections are concerned.

Besides as an avast user you always have the Shield protection as a last resort to disconnect from
trusted sites that try to redirect you to a silent malware download site,

Be safe and secure, is the wish and the command of,

polonus

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67235
Apply these restrictions to trusted sites too
Hmmm... this will restrict browsing experience quite a lot, won't it?
The best things in life are free.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 87292
  • No support PMs thanks
Depends what you have plugins you have blocked for untrusted sites, but I guess you have to make a decision based on if it does impact on normal browsing. In which case you have to make compromises.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 22.12.6044 (build 22.12.7758.768) UI 1.0.741/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33489
  • malware fighter
Hi DavidR,

That is off course also depending of what concessions you wanna make seen to your normal browsing habits and your other safehex measures taken (surfing with normal user rights will reduce the effects and payload of 92% of known Windows malware and general malcode to a large extentl, so what you as a user cannot do to your OS yourself the malcode cannot perform either).
It is a pity that a lot of pre-link browser scanners cannot be fully trusted now that trusted, reputable sites also have come under attack of grand scale CyberCrime mass website attacks (like beladen, gumblar, cruzer all sorts, etc. etc.), so reputation scanners have been turned into snake oil solutions now, and where real time scanners are concerned, you should run several to have some clue as what is safe to click (scandoo, finjan, xpl) and then you still can be taken by surprise.
NoScript still stands tall against existing and future malcode scripts, RequestPolicy is a great help against malcode re-directions, ad a last line of defense is formed by the avast shields. Keep your visors up, folks, you are under threat on the Internet,

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline !Donovan

  • Web Analyst
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 2219
    • The WAR Against Malware
Too bad firefox isn't working for me...
Familiarize Yourself! | Educate Yourself! | Beautify Yourself! | Scan Yourself!
"People who say it cannot be done should not interrupt those who are doing it."

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 87292
  • No support PMs thanks
@ polonus
Me I'm not concerned in the slightest, just a comment for Tech, to effectively try it and see, if it is too obtrusive to normal browsing then switch it back off. Life is a compromise and this is no different, protection over functionality.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 22.12.6044 (build 22.12.7758.768) UI 1.0.741/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67235
Yeah, with K9 filter, avast, Online Armour firewall and HostsMan, with NoScript, I have more than enough... I want to browse a little bit freely (with safety).
The best things in life are free.