SECURITY WARNINGS & Notices - Please post them here

[polonus]

Hi SpeedyPC,

You know my position - avast! is a "darned" good product and it is getting better every day...
and well bob3160 seems to have converted quite a contingent of fine users in the States to make that final switch to the avast! av solution..

pol

[polonus]

Are zero days taken seriously? Re: http://www.zerodayinitiative.com/advisories/upcoming/  (reported by DVLabs)
The end of upcoming Java zero days is not in sight...

polonus

[bob3160]

Are zero days taken seriously? Re: http://www.zerodayinitiative.com/advisories/upcoming/  (reported by DVLabs)
The end of upcoming Java zero days is not in sight...

polonus

Zero Day is another reason why in my opinion, the new feature in avast! to keep your program up-to date
is a good idea. If used properly, new updates which patched a recent exploit will get updated on the users
computer. Even in the free  version of avast!

[Lisandro]

Are zero days taken seriously? Re: http://www.zerodayinitiative.com/advisories/upcoming/  (reported by DVLabs)
The end of upcoming Java zero days is not in sight...

polonus

Sandbox will be an answer, wouldn't it?

[polonus]

Hi Tech,

Good suggestion i.m.h.o.,

pol

[mchain]

Are zero days taken seriously? Re: http://www.zerodayinitiative.com/advisories/upcoming/  (reported by DVLabs)
The end of upcoming Java zero days is not in sight...

polonus

Sandbox will be an answer, wouldn't it?

Absolutely correct.  Any malware downloaded to your system will remain inside the sandbox where it can do no harm.  Once the sandbox is deleted, all contents within vanish, and the threat(s) is/are removed.  Some malware will not run within a sandbox if it detects it is inside one, so one will get additional protection from that as well. 

Tracking cookies vanish too when the sandbox is deleted.

If java jre is not needed, best to uninstall it from your system.

[Lisandro]

If java jre is not needed, best to uninstall it from your system.

We need it for online banking in my country

[mchain]

If java jre is not needed, best to uninstall it from your system.

We need it for online banking in my country

**Sigh**

Problem is, most users of computer systems are not advanced/expert users and thus not really aware of the dangers of using such sites.  Until Oracle fixes all zero-days, or introduces a new cross-platform jre variant specifically for banker use, then the task of maintaining one's own IT support can be daunting at best, and victimize innocent users at worst.  Convenience does not outweigh security in this case.

[polonus]

@Tech,

At least you could always update to the latest java version. Pre-scan links where you wanna go to avoid java based exploits (kits) landing sites.
Use NoScript and RequestPolicy extensions in the firefox browser to prevent malscripts from running and third party requests being met.
Have the avast shields up and running. Only enable java in the browser when you need it, else do not allow it...

polonus

[SpeedyPC]

If java jre is not needed, best to uninstall it from your system.

We need it for online banking in my country

Me too Tech you're not alone buddy and you still have to keep an eye out what you're doing with online banking so you don't get robbed

[bob3160]

Boring Malware Sneaks By Antivirus Sandboxing

[mchain]

Very hot phishing attack on Facebook users originally posted by Carol @ c|net Spyware, viruses, & security forum: NEWS - March 26, 2013.

Direct link to article report:  http://www.scambook.com/blog/2013/03/facebook-security-alert-www-wasvideo-com-hacks-your-account-spams-your-friends/

Urlquery report:  http://urlquery.net/report.php?id=1653452  Note the source origination point and screenshot of website.  Screenshot of website is identical to the https Facebook version.
Urlvoid report:  http://www.urlvoid.com/scan/fizikubook.com/
Sucuri report:  http://sitecheck.sucuri.net/results/www.fizikubook.com/indexv2.php
VirusTotal url scan report:  https://www.virustotal.com/en/url/cb2a916e6d5f226ce65a22e56266248d8fe03592c104d11c83caefe784cbc49b/analysis/1364462131/
zulu zscaler report:  Not available as this site is currently number 45 in queue.

Firefox does block this site as a reported web forgery.

Under no circumstance visit this hxxp://www.fizubook.com directly.

[polonus]

Let us hope malcreants do not find out about this spamming technique abuse of Google services in combination with an URL/shortener....
: https://www.barracuda.com//blogs/labsblog?bid=3130 )article author ° Dave Michmerhuizen'
Do not use them, check links to click (for security reasons) Give in shortened links at a url-expander like
http://longurl.org/ or http://www.clybs.com/urlexpander

polonus

[bob3160]

Let us hope malcreants do not find out about this spamming technique abuse of Google services in combination with an URL/shortener....
: https://www.barracuda.com//blogs/labsblog?bid=3130 )article author ° Dave Michmerhuizen'
Do not use them, check links to click (for security reasons) Give in shortened links at a url-expander like
http://longurl.org/ or http://www.clybs.com/urlexpander

polonus

This doesn't have anything to do with URL shortening but links embedded in translated websites.
I use https://goo.gl  a lot of times.
Here is just one of them:
http://goo.gl/VLXde
Certainly not dangerous.

[DavidR]

@ Bob
What is dangerous is the fact that the user has no way of identifying where the link leads to without clicking on the link. So there is an element of blind trust when using URL shortening methods.

I already use Long URL Mobile Expander add-on in FF, but it doesn't cover all or goo.gl being one such instance.

@ polonus
The 2nd link urlexpander, isn't as convenient as the Long URL Mobile Expander add-on as it appears to be on-line only - there is also a problem on the site any shortened url entered results in an application error. So not very good.