Author Topic: SECURITY WARNINGS & Notices - Please post them here  (Read 2256475 times)

0 Members and 2 Guests are viewing this topic.

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46573
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3480 on: March 10, 2015, 08:22:37 PM »
Excellent reply and advice ehmen. :)
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, Avast One 21.11, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33441
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3481 on: March 10, 2015, 10:10:53 PM »
Another online scanner website with a server update problem: http://scanurl.net/
HTTP Server: nginx 1.4.0 (Outdated)
The risk involved:
Quote
So let’s add up the risks and hidden dangers of outdated technology:

Increased security threats and vulnerabilities
Hard drive failures leading to possible catastrophic data loss
Bit rot leading to data corruption
Software rot leading to instability, increased downtime, and loss of productivity
Loss of competitiveness
Lower IT flexibility
Limited responsiveness to the organization
Quote from  Cole Humphreys in a Tweet on  CLOUD INDUSTRY INSIGHTS.

polonus
« Last Edit: March 10, 2015, 10:34:22 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33441
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3482 on: March 11, 2015, 12:00:02 AM »
Canary Watch oversight: https://canarywatch.org/
The use of Canary Watch alerts may get websites in a corner they do not wanna be in,
just my humble opinion.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline ehmen

  • Poster
  • *
  • Posts: 475
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3483 on: March 11, 2015, 01:19:24 AM »
Excellent reply and advice ehmen. :)
;)

Offline ehmen

  • Poster
  • *
  • Posts: 475
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3484 on: March 11, 2015, 01:22:07 AM »
If you thought you were safe from the FREAK attack on Windows computer, think again.

http://www.cnet.com/news/windows-vulnerable-to-freak-encryption-flaw-too/
« Last Edit: March 11, 2015, 01:46:03 AM by ehmen »

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33441
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3485 on: March 11, 2015, 01:44:38 AM »
ehmen is right, read here: http://thehackernews.com/2015/03/freak-openssl-vulnerability.html
link article author = Mohit Kumar
And a link to the freak testing tool: https://tools.keycdn.com/freak

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline ehmen

  • Poster
  • *
  • Posts: 475
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3486 on: March 11, 2015, 01:57:28 AM »
Chrome users should make sure they have the newly released version 41 to be immune to the FREAK attack.
« Last Edit: March 11, 2015, 01:59:18 AM by ehmen »

Offline mchain

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5420
  • Spartan Warrior
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3487 on: March 11, 2015, 02:08:59 AM »
Another online scanner website with a server update problem: http://scanurl.net/
HTTP Server: nginx 1.4.0 (Outdated)
The risk involved:
Quote
So let’s add up the risks and hidden dangers of outdated technology:

Increased security threats and vulnerabilities
Hard drive failures leading to possible catastrophic data loss
Bit rot leading to data corruption
Software rot leading to instability, increased downtime, and loss of productivity
Loss of competitiveness
Lower IT flexibility
Limited responsiveness to the organization
Quote from  Cole Humphreys in a Tweet on  CLOUD INDUSTRY INSIGHTS.

polonus
Pol,

Glad you are looking into this.  [EDIT:] Scintillating work.
« Last Edit: March 11, 2015, 02:36:48 AM by mchain »
Windows 10 Home 64-bit 20H2 Avast Premier Security version 21.3.2459 (build 21.3.6164.652) UI version 1.0.612.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37170
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3488 on: March 11, 2015, 03:37:30 PM »
Exploiting the DRAM rowhammer bug to gain kernel privileges
http://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html

GOOGLERS’ EPIC HACK EXPLOITS HOW MEMORY LEAKS ELECTRICITY
http://www.wired.com/2015/03/google-hack-dram-memory-electric-leaks/

Cutting-edge hack gives super user status by exploiting DRAM weakness
http://arstechnica.com/security/2015/03/cutting-edge-hack-gives-super-user-status-by-exploiting-dram-weakness/


Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46573
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, Avast One 21.11, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67247
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3490 on: March 11, 2015, 04:28:30 PM »
Yet Another Cleaner, Yet Another Stealer:
https://blog.malwarebytes.org/fraud-scam/2015/03/yet-another-cleaner-yet-another-stealer/



Shame on Elex do Brasil Participações Ltda Technology Inc. here in Brazil...
Quote
Alright, so it looks like Yet Another Cleaner is straight up stealing our detection database and modifying it for their own means. Based on the fact that they only detected a very small portion of the tons of malware we had both YAC and MBAM scan, their scanner apparently uses a slimmed down version of the one utilized by Malwarebytes Anti-Malware.  We also know this because we actually analyzed a memory snapshot of their software in action.
The best things in life are free.

Offline ehmen

  • Poster
  • *
  • Posts: 475
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3491 on: March 11, 2015, 06:00:13 PM »

Online CraigB

  • Avast Überevangelist
  • Serious Graphoman
  • *****
  • Posts: 11151
  • No support PM's thanks

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46573
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3493 on: March 11, 2015, 07:09:10 PM »
That's because Para-Noid got his info from the horses mouth which I obviously overlooked.
My info came from a third party. :)
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, Avast One 21.11, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline abruptum

  • Super Poster
  • ***
  • Posts: 2387
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #3494 on: March 12, 2015, 01:54:17 PM »
‘Equation Group’ hackers tied to NSA after new Kaspersky Labs report surfaces

  http://rt.com/usa/239933-equation-group-nsa-links-backsnarf/

New smoking gun further ties NSA to omnipotent “Equation Group” hackers

  http://arstechnica.com/security/2015/03/new-smoking-gun-further-ties-nsa-to-omnipotent-equation-group-hackers/