Author Topic: SECURITY WARNINGS & Notices - Please post them here  (Read 1985438 times)

0 Members and 1 Guest are viewing this topic.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 66723
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6195 on: August 07, 2020, 12:25:25 PM »
Intel investigating breach after 20GB of internal documents leak online
https://www.zdnet.com/article/intel-investigating-breach-after-20gb-of-internal-documents-leak-online/
Win 8.1 [x64] - Avast PremSec 20.8.2427.B#2 [UI.560] - CC 5.71 - EEK - FF ESR 68.12 [NS/AOS/uBO/PB] - TB 68.12 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 66723
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6196 on: August 10, 2020, 12:15:20 PM »
Win 8.1 [x64] - Avast PremSec 20.8.2427.B#2 [UI.560] - CC 5.71 - EEK - FF ESR 68.12 [NS/AOS/uBO/PB] - TB 68.12 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44082
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6197 on: August 11, 2020, 02:01:40 PM »
Weekly Security News Roundup w/e 8-7-2020

https://youtu.be/uriyhbdMkbY
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 66723
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6198 on: August 14, 2020, 03:36:29 PM »
Win 8.1 [x64] - Avast PremSec 20.8.2427.B#2 [UI.560] - CC 5.71 - EEK - FF ESR 68.12 [NS/AOS/uBO/PB] - TB 68.12 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 32688
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6199 on: August 14, 2020, 06:28:57 PM »
Has Google the intention of phasing out URLs completely in the beowser?

See: https://blog.chromium.org/2020/08/helping-people-spot-spoofs-url.html
Research: https://research.google/pubs/pub49166/

Who are the real authorities to decide this. Protocol Authorities or Big Tech from Silicon Valley or Sillicon Forest?
End users may never learn not to click a ww2.somecybercriminaldomain dot com or ending in su (soviet union often used by malcreants).

polonus
« Last Edit: August 14, 2020, 06:45:48 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 83751
  • No support PMs thanks
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6200 on: August 14, 2020, 08:04:22 PM »
Has Google the intention of phasing out URLs completely in the beowser?

See: https://blog.chromium.org/2020/08/helping-people-spot-spoofs-url.html
Research: https://research.google/pubs/pub49166/

Who are the real authorities to decide this. Protocol Authorities or Big Tech from Silicon Valley or Sillicon Forest?
End users may never learn not to click a ww2.somecybercriminaldomain dot com or ending in su (soviet union often used by malcreants).

polonus


I'm not sure which I like least Googles involvement in so called solution this or the domain name spoofing problem.

If you arrive at a spoofed address in the first place it really is too late.  Always check links before you click, especially in emails or other websites, I always hover over links in emails or browser to display the underlying URL.

The first solution to this issue is sat in the chair in front of the screen (or PEBCAK)  :D
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 2004 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 20.7.2425 (build 20.7.5568.595) UI-1.0.558/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 32688
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6201 on: August 15, 2020, 05:21:44 PM »
Drovorub malware attacking linux systems: See: https://www.theregister.com/2020/08/13/drovorub_nsa_fbi/
Read:
https://www.nsa.gov/news-features/press-room/Article/2311407/nsa-and-fbi-expose-russian-previously-undisclosed-malware-drovorub-in-cybersecu/
Also: https://blog.cygenta.co.uk/drovorub-apt/

Such malware has been with us since 2015. It is all feasable because of the monolithic character of the linux kernel,
that manages all resources like processes and access to devices.
Compare it with loadable device malcode from the Microsoft Dos period via "string" command.
 
It works through modification and manipulation of a dynamical LKM (loadable kernel module).
From user mode one can get access to call table via sys call and get sys open.

Auditing and kernel file signing protects against such malware modules and toolkits worked by stately agents,
read: https://www.oracle.com/technical-resources/articles/linux/signed-kernel-modules.html

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
« Last Edit: August 15, 2020, 07:00:13 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44082
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6202 on: August 16, 2020, 07:00:38 PM »
Spam filter in G-mail is slipping
I received the following email today,

This is an obvious Phishing attempt. It was sent from
a no-reply <ravagepuff(at)ravagepuff.com> e-mail address
and obviously has nothing to do with UPS.
The OK and other links lead you to the following web address,
hxxps://silvadi-5488.s3.us-east-2.amazonaws.com/11.html#qs=r-acacaeffekjgadggkibhfaefgfiabaefgfiabaefacbhaccajdfacfjjahhidcacb.
(I've broken the actual link on purpose)
The only reward you'll get by following any of these links is an empty bank account and Identity theft.
Always treat any email you receive with suspicion and prevent getting hacked or having your identity stolen.


Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44082
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6203 on: August 17, 2020, 08:32:46 PM »

Weekly Security News Roundup w/e 8-14-2020

https://youtu.be/j_zqzO7tCGc
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 32688
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6204 on: August 19, 2020, 07:58:09 PM »
Thousands and thousands of Word Press sites vulnerable.
Re: https://www.wordfence.com/blog/2020/08/critical-vulnerabilities-patched-in-quiz-and-survey-master-plugin/
Vulnerable plug-ins should now have been patched.

An ongoing drama this PHP based Word Press Content Management Software in the hands of those
that do not know how to configure it properly or maintain it, keep it updated and fully patched (plug-ins).

Know about the many websites that now launch malcode like emotet malware and heodo malcode:
See: https://urlhaus.abuse.ch/browse/

Lot of times we see WP sites with outdated kernel versions, outdated or even left plug-in code,
user enumeration not later set to "disabled"not directory listing. Look here for reported websites:

Check your Word Press website against this scanner: https://hackertarget.com/wordpress-security-scan/

Important: https://www.wordfence.com/blog/2020/08/wordpress-auto-updates-what-do-you-have-to-lose/

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
« Last Edit: August 20, 2020, 10:04:10 AM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 66723
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6205 on: August 20, 2020, 10:48:27 AM »
Win 8.1 [x64] - Avast PremSec 20.8.2427.B#2 [UI.560] - CC 5.71 - EEK - FF ESR 68.12 [NS/AOS/uBO/PB] - TB 68.12 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 83751
  • No support PMs thanks
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6206 on: August 20, 2020, 11:26:03 AM »
Microsoft issues out of band KB4578013 Windows security update
https://www.bleepingcomputer.com/news/security/microsoft-issues-out-of-band-kb4578013-windows-security-update/

Given this is about the Remote Access Service, something which isn't available to windows 10 home users.  I wonder if it would even be offered to win10 home users ?

That said, this is for Windows 8.1 versions, which I don't know if the same would apply for Windows 8.1 home users not having the remote access function.
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 2004 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 20.7.2425 (build 20.7.5568.595) UI-1.0.558/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44082
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6207 on: August 20, 2020, 01:44:23 PM »
Microsoft issues out of band KB4578013 Windows security update
https://www.bleepingcomputer.com/news/security/microsoft-issues-out-of-band-kb4578013-windows-security-update/
The KB4578013 security update fixes two Windows Remote Access elevation of privilege vulnerabilities affecting
all supported versions of Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2.
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44082
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6208 on: August 22, 2020, 02:51:20 PM »

Weekly Security News Roundup w/e 8-21-2020

https://youtu.be/WaNdJ50bP7c
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 32688
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #6209 on: August 23, 2020, 05:19:03 PM »
25 Top Most Dangerous Weaknesses: : https://cwe.mitre.org/top25/archive/2020/2020_cwe_top25.html

See image attached.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!