Author Topic: SECURITY WARNINGS & Notices - Please post them here  (Read 2860745 times)

0 Members and 3 Guests are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5550 on: December 10, 2017, 02:57:36 PM »
This will implement with avast we will have to untag "no scanning of trusted websites",
but have all websites scanned, marked as trusted and not trusted alike.

Because in this case it could be a trusted phishing site (a contradictio in terminis),
that we tagged not to be scanned by avast. Capito? Always set to scan all sites!

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline mchain

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5564
  • Spartan Warrior
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5551 on: December 10, 2017, 04:04:11 PM »
Here is how to have avast scan all websites.  See attached below.

As 'Do not scan trusted websites' is already checked off by default, so in order to have avast scan all websites, including trusted ones, this box must be cleared off and the check removed.

Should be noted that a clean install will always restore this setting to not scan trusted websites so it is one of the things that must be checked on a new install of avast if you do not wish this behavior.
Windows 10 Home 64-bit 22H2 Avast Premier Security version 24.1.6099 (build 24.1.88821.762)  UI version 1.0.797
 UI version 1.0.788.  Windows 11 Home 23H2 - Windows 11 Pro 23H2 Avast Premier Security version 24.2.6105 (build 24.1.8918.827) UI version 1.0.801

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48523
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5552 on: December 10, 2017, 05:36:24 PM »
This should make it very easy for even a novice to follow
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5553 on: December 10, 2017, 07:05:55 PM »
Thank you, bob3160, for keeping everybody secure with this message,
together with your very clear picture and additional arrows,
that go the right direction.  ;D  ;)

Hope everybody stays safe that way.

Damian
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37505
  • Not a avast user
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5554 on: December 11, 2017, 07:43:06 PM »
CONFICKER / DOWNAD / DOWNADUP 9 Years After
http://blog.trendmicro.com/trendlabs-security-intelligence/conficker-downad-9-years-examining-impact-legacy-systems/

Quote
CVE-2008-4250 dominates our detections for vulnerabilities, with over 60,000 for the month of October 2017 alone.

All these clues paint a picture of the typical DOWNAD victim: organizations in key industries, typically from developing countries, that use outdated, unpatched legacy systems as an integral part of their network.

Conficker > https://en.wikipedia.org/wiki/Conficker

Until recently two versions of conficer was still on F-Secure top 10 detections evry 24H

VirusMap > http://worldmap3.f-secure.com/


« Last Edit: December 11, 2017, 07:48:46 PM by Pondus »

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5555 on: December 11, 2017, 09:45:32 PM »
Hi Pondus,

According toTrend Micro Conficker can be characterized as"background-malware", specially being active on legacy-systems.
"Not quite as interesting to a larger audience like modern malware like WannaCry & Petya, it still is a persistent threat and will be so as long as no longer supported, unpatched legacy systems form part of corporate networks".

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5556 on: December 12, 2017, 05:08:31 PM »
Problem with bogus EV SSL-certificates has been demonstrated by researcher:
Read: https://twitter.com/iangcarroll/status/940281927789146112

Costed the researcher under half an hour and 177 dollars to spoof the real extended validated certificate.

Is this a danger? And how it is!

More and more is shown that certification online has the same problems.
than all of the rest of the infrastructure, it is pn*wed and holed from all sites around
to serve black hat and other sp**ks from your own government together with cybercriminals all sorts.

If they wanna target you in person, you are birdfeed in no time,
and all the time the going gets narrower.  ;D ::) >:(

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37505
  • Not a avast user
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5557 on: December 14, 2017, 07:13:50 PM »

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48523
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5558 on: December 14, 2017, 09:17:08 PM »
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5559 on: December 15, 2017, 10:09:39 PM »
Hi bob3160,

Not good for your US consumers, not good for your US businesses.

Opens up a box of Pandora of mischief, that will go on unnoticed until found out years later.

Those that start to throttle will be out of business sooner or later, that is predictable.

I wish you all good luck with it.

"When you in the States are feeling the rain, in Europe it starts to drip.  ;D".

Damian
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5560 on: December 15, 2017, 10:13:31 PM »
Other holed themes, Newspaper en Newsmag, to infest Word Press CMS sites through:

https://blog.sucuri.net/2017/12/javascript-injection-creates-rogue-wordpress-admin-user.html

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5561 on: December 17, 2017, 05:47:01 PM »
NSA more than likely compromised encryption for surveillance targeting:

Read how hard it is to detect mathematical backdoors and much easier to inject these into export standards:
https://www.theregister.co.uk/2017/12/15/crypto_mathematical_backdoors/

This may come as shocking news for many after the "controlled" revelations by Snowden and Assange.

Read: https://www.theregister.co.uk/2013/09/23/rsa_crypto_warning/

and is blockchain as security chain coming to the rescue:
https://www.packtpub.com/big-data-and-business-intelligence/mastering-blockchain

The infrastructure is broken, trust is a thing of the past, we have landed in the middle of an insecure Interwebs  swamp,
somehow.

Big Guv Surveillance sp**ks, we thank you for doing that to the global Internet community over the years.

We owe you, we really do  ::)

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline ehmen

  • Poster
  • *
  • Posts: 498
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5562 on: December 19, 2017, 12:05:37 AM »

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 88895
  • No support PMs thanks
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5563 on: December 19, 2017, 12:16:50 AM »
Also see - https://forum.avast.com/index.php?topic=210852.msg1436360#msg1436360, why bother with just http as https isn't guaranteed safe.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.2.6105 (build 24.2.8918.824) UI 1.0.799/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #5564 on: December 19, 2017, 09:51:54 AM »
Hi DavidR & ehmen,

The reason for the https everywhere campaign by google and also now firefox could be that loads and loads of folks have insecure wifi access points to go onto connections out, and in that way could have a HTTP-drive-by-download injection launched against them quite easily.  Read background: https://www.theguardian.com/technology/2017/oct/16/wpa2-wifi-security-vulnerable-hacking-us-government-warns

But do not take it for granted you are safe for big guv surveillance on https: ""There's now a thriving outsourced surveillance industry and they are there to meet the needs and wants of countries from around the world, including those who are more – and less – respectful to human rights."

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!