Author Topic: SECURITY WARNINGS & Notices - Please post them here  (Read 2943671 times)

0 Members and 3 Guests are viewing this topic.

CharleyO

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1530 on: August 31, 2011, 01:19:45 AM »
***

Fake Anti-Virus, Social Network Scams On The Rise

Quote

... researchers found that the rising tide of fake anti-virus during the first half of 2011 includes a new variant consisting of fake desktop utilities, propelled by SpyEye and Zeus Trojan spam.

... the report found that security threats from social media continue to rise as social networking sites such as Facebook and Twitter are increasingly used in the workplace.
... rogue apps that impersonate online games in order to distribute malware.

... mobile security threats for the Android platform experienced a big upward spike, proliferated with the growth of the Android Market.


http://www.crn.com/news/security/231600446/fake-anti-virus-social-network-scams-on-the-rise-report.htm;jsessionid=Im5cs88mTXd-5XWl+mtdZQ**.ecappj02?cid=nl_sec


***

CharleyO

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1531 on: August 31, 2011, 01:30:04 AM »
***

Apple Gives Internship To JailbreakMe Creator

Quote

Sometimes, if you can’t beat them, employ them. Nicholas Allegra, a 19-year-old hacker and creator of the Jailbreakme.com site, responsible for a series of jaibreaking iOS hacks, has officially been hired as an intern at Apple


http://www.crn.com/news/security/231600297/apple-gives-internship-to-jailbreakme-creator-comex.htm?cid=nl_sec


***

CharleyO

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1532 on: August 31, 2011, 01:35:49 AM »
***

Xpaj Botnet Intercepts 87 Million Web Searches In Click-Fraud Scheme

Quote

... researchers said Friday they recently uncovered the file-infector W32.Xpaj.B botnet, also known simply as Xpaj, by digging up command and control servers containing encrypted binary data, encryption keys, databases and Web applications used in conjunction with a widespread click-fraud scheme over the last several months.


http://www.crn.com/news/security/231600289/xpaj-botnet-intercepts-87-million-web-searches-in-click-fraud-scheme.htm?cid=nl_sec


***

CharleyO

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1533 on: August 31, 2011, 01:40:38 AM »
***

Skype Cross-Site Scripting Flaw Enables Phone Session Attacks

Quote

A gaping cross-site scripting flaw in the latest version of Skype enables attackers to inject malicious code into a user’s phone sessions.
The cross-site scripting vulnerability occurs in Skype 5.5.1.113, affecting Windows XP, Vista and 7, and stems from a persistent code injection vulnerability due to a validation input error that prevents the VoIP client from properly inspecting phone numbers sourced from users’ home, office and mobile Skype accounts, according to researcher Levent Kayan.
 

http://www.crn.com/news/security/231600218/skype-cross-site-scripting-flaw-enables-phone-session-attacks.htm?cid=nl_sec


***

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76032
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline mchain

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5710
  • Spartan Warrior
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1535 on: August 31, 2011, 10:19:05 PM »
Et al,

Just thought I'd post this for other users and viewers to peruse at their leisure.

See:  http://news.cnet.com/8301-27080_3-20099421-245/google-users-in-iran-targeted-in-ssl-spoof/?tag=contentMain;contentBody
 
re: Spoofed and Invalid CA certificates.

I come here every week or so to see what is out there as far as malware trends are going.  Looks like the latest and greatest (sadly) is the one currently known as 'Enhanced Protection Virus'.  I wish Essexboy all the best in finding a successful resolution for the two users whom currently have this rogue program on their machines.

If we have known spoofed CA's, then is this not a part of the problem with Google Re-direct, since we don't really know for sure where the browser is ending up at?   ??? ???

Note, too, the link provided for the program called 'Covergence', at the bottom of the blog, which is said to analyze for certificate revocations, that does not work on my machine.  When the add-on is run in FF 6.0, it says it is not compatible

As always, I run my browser in a sandbox to test before installing anything like this.  Could this affect proper operation?  Why would it say 'incompatible' if it is supposed to run on FF?

Just a question, if anyone cares to explain possible reasons.

I sure some have seen this blog, but just want to make sure everyone here at this forum knows about it.

mchain

XP Home Edition SP 3 P4 2 GB RAM Avast! Free Edition v. 6.0.1203
Windows 10 Home 64-bit 22H2 Microsoft Windows Defender - Windows 11 Home 23H2 - Windows 11 Pro 23H2 Avast Premier Security version 24.4.6112 (build 24.4.9067.762) UI version 1.0.803

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76032
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76032
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48645
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1538 on: September 02, 2011, 01:57:30 PM »
@Asyn,
Clicking on the link in your last post brings up the following:



Strange, the only thing I had blocked in openDNS was Adult content and randomized isp's.
I don't see any here and yet the site was blocked.
I've removed the filer.
« Last Edit: September 02, 2011, 02:55:08 PM by bob3160 »
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v24H2 64bit, 32 Gig Ram, 1TB SSD, Avast Free 24.4.6112, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76032
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1539 on: September 02, 2011, 02:27:20 PM »
@Asyn,
Clicking on the link in your last post brings up the following:

Sorry Bob, can't help you, I just tried it again and it still works here...!
Do you use OpenDNS..?? The alert seems related to it.
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48645
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1540 on: September 02, 2011, 02:29:54 PM »
Yes I do and I guess according to them, it's not a safe place to go.
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v24H2 64bit, 32 Gig Ram, 1TB SSD, Avast Free 24.4.6112, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89329
  • No support PMs thanks
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1541 on: September 02, 2011, 02:38:19 PM »
No problem with the link either, not using OpenDNS either.

Can't see why OpenDNS would object to this, however would also depend on what your dashboard settings are if you have any set.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.5.6116 (build 24.5.9153.762) UI 1.0.808/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76032
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1542 on: September 02, 2011, 02:41:45 PM »
Yes I do and I guess according to them, it's not a safe place to go.

Well, usually it's one of the safest places to go...!!! ;)
http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29
https://www.torproject.org/index.html.en
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Online CraigB

  • Avast Überevangelist
  • Serious Graphoman
  • *****
  • Posts: 11249
  • No support PM's thanks
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1543 on: September 02, 2011, 02:43:29 PM »
Yes I do and I guess according to them, it's not a safe place to go.
Im using OpenDNS and that link is not blocked for me but im not using the dashboard settings, just the basic DNS addresses.

YoKenny

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #1544 on: September 02, 2011, 02:44:19 PM »
Yes I do and I guess according to them, it's not a safe place to go.
Its definitly not a safe place to go according to OpenDNS!