SECURITY WARNINGS & Notices - Please post them here

[polonus]

Hi Para-Noid,

There is enough wrong with a lot of HTTPS Everywhere domains. Wrong server configurations, missing or wrong security header implementations, mixed content site, log-ins with alerts for all log-in info going over the wire in plain txt form.
And a lot of possible other issues making the ideal situation looking good at first sight, but the real worls situation is often worse as could be (poodle, beast and heartbleed, cerificvation errors, encryption served "from the weak side up" (surveillance can be performed without much of a hassle). So a lot of good will going hand in hand  with a lot of incompetence and situations where money comes before security. Now you understand that malvertisers are a problem on a normal http website, but when they come encrypten on a https website in the present situation the detection problem can outgrow the added protocol security.
I perform webscans as volunteer website analyst so I know what I am talking about with thousands of examples scanned.
The Browser JSGuard extention in Chrome and SaferChromeSecurity extensions will give you some good insights in the overal https site insecurities that exist,

polonus

[Para-Noid]

Tech Support Spam Plague LinkedIn and Other High-Traffic Sites

https://blog.malwarebytes.org/fraud-scam/2015/04/tech-support-spam-plague-linkedin-and-other-high-traffic-sites/?utm_source=Gplus&utm_medium=social

Thanks polonus for a good explanation. I would never question your credentials as a website analyst.

[polonus]

See for frauds: http://escrow-fraud.com/search.php?&all=&dir=asc&sf=p&start=2521

pol

[Para-Noid]

InfoSec Books to Read for World Book Day

https://blog.malwarebytes.org/cyber-crime/2015/04/infosec-books-to-read-for-world-book-day/?utm_source=Gplus&utm_medium=social

[Para-Noid]

An Instagram Roundup

https://blog.malwarebytes.org/online-security/2015/04/an-instagram-roundup/?utm_source=Gplus&utm_medium=social

[polonus]

What AV vendors have cheated here - according to this infringement report: http://weblog.av-comparatives.org/?p=501

Reason for the apparent fraud would be the fact that users mainly choose an AV vendor based on AV Comparative Security Test Results,
"which is not very clever according to me, but it is the way for people that rely on third party authority as they cannot decide for themselves because of lack of insight." Between brackets I state what is purely my own personal opinion, pol

polonus

[Secondmineboy]

I would like to know that too:)

[polonus]

I think you are not alone there, and I would like to hear Avast's comments in the aftermath if there were any to come.
Well at least we have to wait after the conclusions have been brought forward of course, they cannot react pending the investigations. But if innocent I would play this out great time, these two infringers should be punished by the market period.

polonus

[bob3160]

I would also be interested in seeing the results. 

[Staticguy]

OMG!!! I hope it aint one of the major antivirus program i.e. Avast, AVG, Norton, McAfee, Kaspersky, and Trend Micro 

[bob3160]

OMG!!! I hope it aint one of the major antivirus program i.e. Avast, AVG, Norton, McAfee, Kaspersky, and Trend Micro 

Speculation is totally out of line. It only starts rumors. 

[polonus]

Speculation is totally out of line. It only starts rumors.

Right you are, bob3160. They should never have presented this in this way
and have mentioned the offending AV vendors when they were ready to do so without delay.
Furthermore it has been reported that there was a party that had sent in pre-prepared results.

polonus

[Staticguy]

OMG!!! I hope it aint one of the major antivirus program i.e. Avast, AVG, Norton, McAfee, Kaspersky, and Trend Micro 

Speculation is totally out of line. It only starts rumors. 

I didn't mean as a rumors just assuming it won't be any of the top antivirus that I have listed there. An assumption. Even though I will stick to AVG Free and Avast Free forever. AVG Free (for my desktop) and Avast Free (for my laptop and where I log in and out and write in this forum) and other vendors that I have listed it will also be bad for business as those antivirus software can be bought from retail stores worldwide. Mistakes do happen hope it can be resolved asap.

[bob3160]

OMG!!! I hope it aint one of the major antivirus program i.e. Avast, AVG, Norton, McAfee, Kaspersky, and Trend Micro 

Speculation is totally out of line. It only starts rumors. 

I didn't mean as a rumors just assuming it won't be any of the top antivirus that I have listed there. An assumption. Even though I will stick to AVG Free and Avast Free forever. AVG Free (for my desktop) and Avast Free (for my laptop and where I log in and out and write in this forum) and other vendors that I have listed it will also be bad for business as those antivirus software can be bought from retail stores worldwide. Mistakes do happen hope it can be resolved asap.

Never assume, it usually makes an ass out of you and me.

[Staticguy]

Ok. Yes Sir!