Author Topic: SECURITY WARNINGS & Notices - Please post them here (Read 2904479 times)

polonus · « **Reply #4560 on:** March 16, 2016, 03:50:10 PM »

Oh what irony and the so-called innovating software developers that react in that link and run outsourcing for known security services themselves are vulnerable to DROWn attack: https://test.drownattack.com/?site=www.nixsolutions.com
Here the winged words of Para-Noid comes to mind: ´Never trust what you haven´t tested yourself´

polonus

polonus · « **Reply #4561 on:** March 17, 2016, 12:30:28 PM »

95% of https-servers vulnerable to MitM/attacks: http://news.netcraft.com/archives/2016/03/17/95-of-https-servers-vulnerable-to-trivial-mitm-attacks.html

Problem is that most https-sites do not use hsts. You can scan for that like here: https://www.expeditedssl.com/simple-ssl-scanner/scan?target_domain=
In this (random) example it is OK: https://www.expeditedssl.com/simple-ssl-scanner/scan?target_domain=www.marmotex.com

polonus

polonus · « **Reply #4562 on:** March 17, 2016, 12:58:01 PM »

Javascript in transit added to a webpage that was not being addressed via https.

They did not like it when the cat came out of the bag:
http://thewire.in/2015/06/09/israeli-firm-strong-arms-indian-techie-for-exposing-suspicious-code-3528/
Wifi HotSpots or a malicious ISP could mean you´re at risk.

polonus

Pondus · « **Reply #4563 on:** March 17, 2016, 01:22:11 PM »

Quote from: Para-Noid on March 16, 2016, 02:46:10 PM

Large Angler Malvertising Campaign Hits Top Publishers

https://blog.malwarebytes.org/malvertising-2/2016/03/large-angler-malvertising-campaign-hits-top-publishers/?utm_source=linkedin&utm_medium=social

More on this

http://www.neowin.net/news/crypto-ransomware-hits-major-websites-through-banner-ads-in-past-24-hours

http://blog.trendmicro.com/trendlabs-security-intelligence/malvertising-campaign-in-us-leads-to-angler-exploit-kitbedep/

bob3160 · « **Reply #4564 on:** March 17, 2016, 02:23:59 PM »

Quote from: Pondus on March 17, 2016, 01:22:11 PM

Quote from: Para-Noid on March 16, 2016, 02:46:10 PM
Large Angler Malvertising Campaign Hits Top Publishers

https://blog.malwarebytes.org/malvertising-2/2016/03/large-angler-malvertising-campaign-hits-top-publishers/?utm_source=linkedin&utm_medium=social
More on this

http://www.neowin.net/news/crypto-ransomware-hits-major-websites-through-banner-ads-in-past-24-hours

http://blog.trendmicro.com/trendlabs-security-intelligence/malvertising-campaign-in-us-leads-to-angler-exploit-kitbedep/

What's out there right now that will keep us safe from this

Pondus · « **Reply #4565 on:** March 17, 2016, 02:52:54 PM »

Quote from: bob3160 on March 17, 2016, 02:23:59 PM

Quote from: Pondus on March 17, 2016, 01:22:11 PM
Quote from: Para-Noid on March 16, 2016, 02:46:10 PM
Large Angler Malvertising Campaign Hits Top Publishers

https://blog.malwarebytes.org/malvertising-2/2016/03/large-angler-malvertising-campaign-hits-top-publishers/?utm_source=linkedin&utm_medium=social
More on this

http://www.neowin.net/news/crypto-ransomware-hits-major-websites-through-banner-ads-in-past-24-hours

http://blog.trendmicro.com/trendlabs-security-intelligence/malvertising-campaign-in-us-leads-to-angler-exploit-kitbedep/
What's out there right now that will keep us safe from this

Well TrendMicro say they detect it

The payload dropped

Quote

As of this writing, the exploit kit proceeds to download a BEDEP variant, which, in turn drops a malware we will detect as TROJ_AVRECON.

https://www.virustotal.com/en/file/5df4bce112f1f4019c242ea1515ca55eb76f3590d53d31ec61a7c428671b7ec1/analysis/

Quote

Angler Exploit Kit is known to exploit vulnerabilities in Adobe Flash and Microsoft Silverlight, among others.

Pondus · « **Reply #4566 on:** March 17, 2016, 02:54:02 PM »

have been waiting for this

Security firm discovers first iOS malware that can infect non-jailbroken iPhones w/o enterprise certificate
http://9to5mac.com/2016/03/17/acedeceiver-iphone-malware/

Eddy · « **Reply #4567 on:** March 17, 2016, 04:09:12 PM »

TeslaCrypt 3.0.1

http://blog.talosintel.com/2016/03/teslacrypt-301-tales-from-crypto.html

Secondmineboy · « **Reply #4568 on:** March 18, 2016, 06:34:14 PM »

Samas Ransomware Uses Pen Testing Tools for Delivery

http://www.securityweek.com/samas-ransomware-uses-pen-testing-tools-delivery

polonus · « **Reply #4569 on:** March 21, 2016, 12:57:32 PM »

Tavis Ormandy finds up another hole in Trend Micro AV,
probably concerning DirectPass: https://twitter.com/taviso/status/710950508094029824

polonus

Para-Noid · « **Reply #4570 on:** March 21, 2016, 02:32:15 PM »

Google Docs? Check One More Time…

https://blog.malwarebytes.org/fraud-scam/2016/03/google-docs-check-one-more-time/?utm_source=gplus&utm_medium=social

A Look Into Malvertising Attacks Targeting The UK

https://blog.malwarebytes.org/malvertising-2/2016/03/a-look-into-malvertising-attacks-targeting-the-uk/?utm_source=gplus&utm_medium=social

An iCloud scam that may be worse than ransomware

https://blog.malwarebytes.org/mac/2016/03/an-icloud-scam-that-may-be-worse-than-ransomware/?utm_source=linkedin&utm_medium=social

How to beat ransomware: Prevent, don't react

https://www.malwarebytes.org/articles/how-to-beat-ransomware-prevent-dont-react/?utm_source=gplus&utm_medium=social

FBI cautions motorists to “maintain awareness” of automobile hacks

http://arstechnica.com/tech-policy/2016/03/fbi-cautions-motorists-to-maintain-awareness-of-automobile-hacks/

TopFlix: a DNS Unlocker variant

https://blog.malwarebytes.org/online-security/2016/03/topflix-a-dns-unlocker-variant/?utm_source=gplus&utm_medium=social

polonus · « **Reply #4571 on:** March 22, 2016, 02:35:30 PM »

Handing over more of your privacy(mobile phone number etc.) for alleged easy log-in security?
I think it is a bad deal, for your privacy and security wise also, the mobile platform is inherently insecure and fully transparent.
It is presented to you, but not as you might intent it.

Read:
https://yahoo-security.tumblr.com/post/141266516770/kill-your-password-with-yahoo-account-key
We gonna be turned more and more into security unaware zombies.

polonus · « **Reply #4572 on:** March 22, 2016, 11:20:51 PM »

Adobe will track you through all of your devices via Adobe marketing cloud.
First it will come to the USA and to Canada and then it is time for Europe to experience this cross device ad-tracking system.
Read: http://www.theregister.co.uk/2016/03/22/adobe_will_track_users_across_devices_with_new_coop_project/
link article author - Tim Anderson
For Yahoo there is an opt-out, but what if some ad platforms don't honor that lifetime opt out?
Another coming attack on that little privacy that is left to you in the Mobile World:
https://iapp.org/news/a/the-privacy-pitfalls-of-cross-device-tracking/ article author - Angelique Carson
Keep your script and adblocker visors up

polonus

polonus · « **Reply #4573 on:** March 22, 2016, 11:37:13 PM »

My question to you all here is how can you protect a little bit of the last vestiges of any privacy you have left when this co-op adtracking comes in.
Now I use the two stage search on mobile devices - so Tap&Trust and AdblockBrowser.
But whenever I block script and ads on my laptop, my co-op Android will give me away.
The gullibility of these adtracking marketeers knows no limits.
What bright developers will come up with some counter measures here to protect us.

polonus

bob3160 · « **Reply #4574 on:** March 23, 2016, 12:42:51 PM »

Quote from: polonus on March 22, 2016, 11:37:13 PM

My question to you all here is how can you protect a little bit of the last vestiges of any privacy you have left when this co-op adtracking comes in.
Now I use the two stage search on mobile devices - so Tap&Trust and AdblockBrowser.
But whenever I block script and ads on my laptop, my co-op Android will give me away.
The gullibility of these adtracking marketeers knows no limits.
What bright developers will come up with some counter measures here to protect us.

polonus

@ Damien,
There is no privacy on the internet. If you want privacy, you never should have used the internet.
It's too late for all of us.