Bugs/Viruses/Malware etc

[Ford]

flash needs to be updated again! re security fixes

http://www.theregister.co.uk/2015/03/12/adobe_kicks_out_flash_security_fix/

 

Gamer?

'The software nasty, dubbed Teslacrypt, works in the same way as traditional ransomware like Cryptolocker. It attempts to infect Windows PCs by exploiting a vulnerability in Adobe Flash or Internet Explorer. A victim has to visit a booby-trapped website to get infected, although the malware backs off if it detects the presence of some antivirus packages, or if it's running in a virtual machine.......The new malware also doesn't just focus on documents or images, but encrypts files associated with more than 20 games and gaming services – from user profile data to saved games, maps, and mods. These include Call of Duty, World of Warcraft, Assassin's Creed, League of Legends, and Minecraft. In addition, it locks out Steam accounts, and developer tools like Unity3D and Unreal Engine...'

http://www.theregister.co.uk/2015/03/13/ransomware_video_games/

http://labs.bromium.com/2015/03/12/achievement-locked-new-crypto-ransomware-pwns-video-gamers/

[unclebulgaria67]

It will get to the stage that the internet becomes unusable because security software cannot detect malaware. It then remains dormant on peoples systems, until the people behind it want to trigger it to do what they want.

[labrat]

the recomendations by most of the malware producers is actually to send the infected exe to some of the testing sites

 

if they warn you that theres a virus in it - re-infect it and try again

 

if it says clear then send it out

 

the free tests are working against themselves

[Ford]

conniff, you'll like these

http://www.theregister.co.uk/2015/04/10/china_great_cannon/

 

though they may not be the only ones, as linked there

http://www.theregister.co.uk/2013/11/11/gchq_used_fake_linkedin_profiles_to_access_belgian_telco/

[Ford]

'Just when you think macro malware is a thing of the past, over the past few months, we have seen an increasing macro downloader trend that affects nearly 501,240 unique machines worldwide..........We have seen majority of the macro-malware attacks in the United States and United Kingdom.'

http://blogs.technet.com/b/mmpc/archive/2015/04/28/social-engineering-tricks-open-the-door-to-macro-malware-attacks-how-can-we-close-it.aspx

http://www.theregister.co.uk/2015/04/30/macros_the_future_of_malware_says_microsoft/

[Ford]

'Lenovo system update flaws plugged, security world not impressed. L is for Lenovo, lax, lackadaisical, loophole and many other words..........Lenovo faces renewed accusations of lax security practices - just three months after the Superfish debacle - after it was obliged to fix flaws in its software update system....'

http://www.theregister.co.uk/2015/05/06/lenovo_system_update/

 

'Rombertik' malware; 'Cisco researchers have found new malware that destroys a machine's Master Boot Record and home directories if it detects meddling white hats.....It targets any and all websites, and spreads through an executable screensaver disguised as an Adobe PDF file'

http://www.theregister.co.uk/2015/05/05/rombertik_malware/

[Ford]

'eBay is racing to fix a second serious security flaw that may allow criminals to spread malware through files seemingly hosted by the online tat bazaar....'

http://www.theregister.co.uk/2015/05/23/beware_forms_that_arent_ebay_hit_by_serious_security_problem/

[Ford]

time to security update flash, again!

 

http://www.itproportal.com/2015/06/24/adobe-releases-emergency-flash-patch/

 

'..Flash is known to be a vulnerable system under heavy attacks by hackers all over the world. As we reported two weeks ago, the number of malware attacks through Flash rose by a stunning 317 per cent in the first quarter of 2015..'

[brassnecked]

Time for Flash to go, unfortunately many online shopping carts and PayPal checkouts depend on it.

[James39]

Time for Flash to go, unfortunately many online shopping carts and PayPal checkouts depend on it.

finally! it was about time!

[Ford]

and another flash security patch required!

http://www.theregister.co.uk/2015/07/12/adobe_flash_zero_day_cve_2015_5122/

https://helpx.adobe.com/security/products/flash-player/apsa15-04.html

 

latest java too

http://www.theregister.co.uk/2015/07/13/java_jockes_join_flash_fans_in_the_0_day_exploit_club/

[Ford]

time to update adobe again, reader and flash

https://helpx.adobe.com/security/products/acrobat/apsb15-24.html

http://www.adobe.com/uk/products/flashplayer/distribution3.html

[Ford]

Malvertising

June was the worst on record for such, many may have been infected by the Angler Exploit, sent via Azure, which hides in fake ads on popular sites. The daily mail site was recently targeted.

Ad networks now promise to do more to protect

http://www.theregister.co.uk/2015/10/16/iab_lean_ads/

http://www.bbc.co.uk/news/technology-34541915

[obiter dictum]

What alternatives are there to Adobe Flash???

 

I use FireFox

[stu007]

DRIDEX Malware designed to eavesdrop on victim’s computers in order to steal personal information such as usernames and passwords, with the ultimate aim of breaking into bank accounts and siphoning off cash.

 

Unlike some other malware, known as “worms”, Dridex does not spread on its own. Instead, the victim must be specifically targeted for the initial infection email by the virus’s authors.

 

Once installed, Dridex has a significant amount of control over the user’s computer. It can upload, download and run programs, as well as snoop on internet browsing by directly looking at network traffic and by taking screenshots of the browser window. The malware also adds the computer to the wider Dridex “botnet”, which allows its controllers to communicate with the infected computer through others.

 

Users should ensure that there computers anti virus protection is Up to Date and NEVER open any attachments in unrecognized emails.

 

READ MORE HERE: http://www.theguardian.com/technology/2015/oct/14/what-is-dridex-how-can-i-stay-safe

[Ford]

..

Ad networks now promise to do more to protect

...[/url]

 

it is hoped. its no wonder ad filters/blocks are used. i just turned them off to see having used them for years, and went on a few sites. blimey, to read one article that contained about 2 paragraphs i had to scroll down about a mile. so intrusive, left right and centre, popping up!

and then there is the downloading which may effect those on lower speeds/download limits.

and then the malware...

some sites need to make money from ads to survive. but, unless revised/securer, keep on filtering/blocking the ads

[snowdragon]

anyone know what has replaced adobe flash player please. I need something to play games it seems as just been on Big fish to play a game I was playing this morning only to find the screen is yellow and also a game on face book has stopped working. I use chrome with Windows 8

Thank you

Sandy xx

[Andyorch]

https://helpx.adobe.com/security/products/flash-player/apsb15-27.html

[snowdragon]

thank you andy, seems I already have the latest version which is, 19.00.226

[snowdragon]

have reinstalled it but some games not working, they were this morning!

[Ford]

i....... keep on filtering/blocking the ads

 

 

seems the next Firefox browser will have ad filtering as standard..

http://www.pcauthority.com.au/News/410823,adblocking-goes-mainstream-with-mozillas-firefox-rollout.aspx

[Ford]

anyone know what has replaced adobe flash player please.

Sandy xx

 

 

html 5 is one solution (see the earlier posted links). but, it depends on what the site uses. for eg utube site uses both flash and html5, and can be set to use the latter. most browsers now support html5.

flash is a mare. since andy's post just above, flash was updated again to the version you mention.

 

re your flash problem, try the flash uninstaller then reinstall the latest flash on to up to date chrome. also check the plugins in chrome ensure only one flash is there.

and, double check chromes site checker is not 'yellow' blocking the site. good luck.

[Ford]

re ads; they seem worse on tablets/phones. went on the mirror site on a tablet, an ad popped up the whole screen. the site/tab was just closed straight away, so they lost the viewer.

 

ironically, an ad blocker blocker was recently hacked http://www.theregister.co.uk/2015/11/02/pagefair_malware_snare_scare_in_halloween_hack_of_adblocker_blocker/

[snowdragon]

adblock plus is good & ad remover for chrome, I have them and they work

[Ford]

adblock plus is good & ad remover for chrome, I have them and they work

 

i looked at that re fox, seems ok. but am trying ublock origin, seems pretty good and light on resources. i dont like google chrome anyway, so wont be using that browser.

one thing re adblock is their (voluntary opt in) acceptance of 'some' unobtrusive/non bandwidth(data) hungry ads, which seems ok. some sites need the revenue. its just that most sites now are just OTT and invasive, ruining the browsing and exposing users to poss malware re auto loading and click ons.