Author Topic: SECURITY WARNINGS & Notices - Please post them here  (Read 1794705 times)

0 Members and 1 Guest are viewing this topic.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 61216
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5925 on: June 04, 2019, 07:19:50 AM »
Win 8.1 [x64] - Avast PremSec 19.9.2394.B1 - CC 5.63 - EEK - Firefox ESR 68.2 [NS/AOS/uBO] - TB 68.2 [EM] - ABS/ACP/ASB/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 41761
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5926 on: June 04, 2019, 01:33:15 PM »
Windows 10 Apps Hit by Malicious Ads that Blockers Won't Stop
https://www.bleepingcomputer.com/news/security/windows-10-apps-hit-by-malicious-ads-that-blockers-wont-stop/
Simple solution, do not install add-supported apps.
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.6.xxxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5927 on: June 04, 2019, 03:20:07 PM »
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 41761
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5928 on: June 04, 2019, 03:36:17 PM »
AMCA Breach Hits 12 Million Quest Diagnostics Patients
https://www.securityweek.com/amca-breach-hits-12-million-quest-diagnostics-patients
Good thing my insurance co. doesn't cover Quest. so, I avoided this one. :)
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.6.xxxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5929 on: June 06, 2019, 03:20:00 PM »
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5930 on: June 06, 2019, 03:38:32 PM »
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5931 on: June 07, 2019, 01:40:10 PM »
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 41761
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.6.xxxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5933 on: June 09, 2019, 05:03:00 PM »
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5934 on: June 10, 2019, 04:46:51 AM »
Major HSM vulnerabilities impact banks, cloud providers, governments
https://www.zdnet.com/article/major-hsm-vulnerabilities-impact-banks-cloud-providers-governments/
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5935 on: June 11, 2019, 04:59:42 AM »
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline Be Secure

  • Long Time Avast User(9years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1884
« Last Edit: June 12, 2019, 03:43:56 AM by Be Secure »
PC- Windows10 EDU 64Bit,Avast Free V.19.8.2393,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31781
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5937 on: June 13, 2019, 05:48:18 PM »
Important to have proper back-end security on Magento webshop sites.,
hundreds of which have been compromised lately:
https://sansec.io/labs/2019/05/10/magento-2-hacks/
because the cybercriminals automated these hacks to quite an extent:
https://twitter.com/gwillem/status/1138818632409145344

In such cases it is best to have additional security measures taken,
cloudhosting and hiding your back-end to attackers,

an example: cloudflare//support.coudflare.com -> http://sitemeer.com/# http://HTTPS://www.interviewcoder: in 8443
IP 83.217.93.87: 8080  or 8880 https app deployment on Cloudflare,
in this case check shodan.io not for weaknesses but in stead for stabler security (pol)
website: https://hairsuite.nl:8443

Foud retirable jQuery libraries: Retire.js
jquery-ui-dialog   1.10.4   Found in -https://hairsuite.nl:8443/static/version1559290779/base/Magento/base/default/jquery/jquery-ui.js
Vulnerability info:
High   CVE-2016-7103 281 XSS Vulnerability on closeText option   123
jquery   1.12.4   Found in -https://hairsuite.nl:8443/static/version1559290779/base/Magento/base/default/jquery/jquery.min.js
Vulnerability info:
Medium   2432 3rd party CORS request may execute CVE-2015-9251   1234
Medium   CVE-2015-9251 11974 parseHTML() executes scripts in event handlers   123
Medium   CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution

Compare: https://www.magereport.com/scan/?s=https://hairsuite.nl:s/
outside of the store not much to be scanned
Security Checks for -https://hairsuite.nl
(3) Susceptible to man-in-the-middle attacks
Vulnerable to cross-site attacks
DNS is susceptible to man-in-the-middle attacks

polonus (volunteer 3rd party cold reconnaissance website security analyst and website error-hunter)
« Last Edit: June 13, 2019, 05:50:07 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31781
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5938 on: June 17, 2019, 03:28:17 PM »
Fake news or real existing cyber-threat against the Russian astralinux-grid?

http://wiki.dataved.ru/6/h/t -> https://scaner-vs.ru/version-for-testing/
part of threats described at:
https://download.geo.drweb.com/pub/drweb/unix/workstation/11.1/documentation/html/en/index.html?dw_8_app_a_threat_types.htm

vim exploitable - http://download.astralinux.ru/astra/stable/orel/repository/pool/main/v/vim/
https://www.cybersecurity-review.com/news-june-2019/your-linux-can-get-hacked-just-by-opening-a-file-in-vim-or-neovim-editor/
https://www.reddit.com/r/vim/comments/bwp7q3/code_execution_vulnerability_in_vim_811365_and/

source credits go out to: luntrus

Consider also: https://github.com/numirias/security/blob/master/doc/2019-06-04_ace-vim-neovim.md
Patches: https://github.com/vim/vim/commit/5357552  &  https://github.com/neovim/neovim/pull/10082
Quote
Beyond patching, it's recommended to disable modelines in the vimrc (set nomodeline), to use the securemodelines plugin, or to disable modelineexpr (since patch 8.1.1366, Vim-only) to disallow expressions in modelines.

Check if you have modelines enabled by opening vim and entering

:set modeline?

If vim returns nomodeline, you are not vulnerable.
If you are vulnerable or want to ensure your security with this issue, add these lines to your vimrc:

set modelines=0
set nomodeline
quote credits go to Arminias (@rawsec)

polonus (volunteer 3rd party cold reconnaissance website security analyst & website error-hunter)
« Last Edit: June 17, 2019, 03:37:08 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31781
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5939 on: June 17, 2019, 07:36:09 PM »
Kaspersky about OS hardening and steering away recently from Microsoft to Astralinux...

Read: https://securelist.com/features-of-secure-os-realization/77469/

Quote
To improve security, tools that make it more difficult to exploit some vulnerabilities,
including those inherent in the system due to its insecure original design, can be built into the system.
Examples include: Grsecurity, AppArmor, Hardened Gentoo, Atlix, YANUX, and Astra Linux, etc.

Weird is that none of the MS evangelists here reacts. Well in this respect.
Why the Russian Federation may have taken such actions to harden their grid-base,
switching from MS-Windows towards military strength astralinux for their critical systems?

Seems the world again comes "split in two, or maybe three or four (Anglo-US, EU, Russian Federation, Mainland China).

Remember the song lyrics: "The Russian spy and I, we both wonder why, the world is split in two"?

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!