Join Early Retirement Today
Reply
 
Thread Tools Search this Thread Display Modes
A clever malware attack
Old 09-11-2016, 05:31 AM   #1
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Midpack's Avatar
 
Join Date: Jan 2008
Location: Chicagoland
Posts: 11,413
A clever malware attack

Unfortunately hackers are getting better and better. If you use Firefox, you could fall for this very convincing enticement to compromise your PC. The most convincing effort I've seen so far, but I know Firefox doesn't update with random popups. Please don't...

__________________

__________________
No one agrees with other people's opinions; they merely agree with their own opinions -- expressed by somebody else. Sydney Tremayne
Retired Jun 2011 at age 57

Target AA: 60% equity funds / 35% bond funds / 5% cash
Target WR: Approx 2.5% Approx 20% SI (secure income, SS only)
Midpack is offline   Reply With Quote
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!

Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that Early-Retirement.org is a great community to join. Best of all it's totally FREE!

You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!

Old 09-11-2016, 06:15 AM   #2
Recycles dryer sheets
 
Join Date: May 2014
Posts: 339
Everyone should have spyware and virus protection on their computer . Once the malware gets a foothold on your computer system it is very difficult to get rid of it.
__________________

__________________
Understanding both the power of compound interest and the difficulty of getting it is the heart and soul of understanding a lot of things. Charlie Munger
UnrealizedPotential is online now   Reply With Quote
Old 09-11-2016, 07:15 AM   #3
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
donheff's Avatar
 
Join Date: Feb 2006
Location: Washington, DC
Posts: 8,350
Yeah some of these browser popups reel you in. So easy to respond to the prompt before your brain registers what is going on. Many people will never even realize they made a mistake.
__________________
Every man is, or hopes to be, an Idler. -- Samuel Johnson
donheff is offline   Reply With Quote
Old 09-11-2016, 09:33 AM   #4
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Lsbcal's Avatar
 
Join Date: May 2006
Location: west coast, hi there!
Posts: 5,284
Quote:
Originally Posted by Midpack View Post
Unfortunately hackers are getting better and better. If you use Firefox, you could fall for this very convincing enticement to compromise your PC. The most convincing effort I've seen so far, but I know Firefox doesn't update with random popups. Please don't...
Thanks Midpack. I will show this to DW who came to me concerned yesterday with a voicemail from the IRS telling her she would get a court action and to respond to the phone number given .

I do use Firefox. I am guessing that having the popup blocker active would remove this theat. So how to run that popup blocker? Here is some introductory info which I had to review myself: https://support.mozilla.org/en-US/kb/pop-blocker-settings-exceptions-troubleshooting

Under that link is a link to pop up blocker settings: https://support.mozilla.org/en-US/kb...ocker-settings

You can turn the popup blocker off. Then in various web pages like your bank's, you can create exceptions easily that get put into the exceptions list.
__________________
Lsbcal is online now   Reply With Quote
Old 09-11-2016, 09:59 AM   #5
Thinks s/he gets paid by the post
target2019's Avatar
 
Join Date: Dec 2008
Posts: 3,426
This attack is not so simple:

https://support.mozilla.org/en-US/questions/1127436

Could be from an ad on a page, going to a bad result in google search, etc. Bad guys seem to always be a bit more clever than all the blocks on your device. Since the attacks may be morphing in a continuous fashion, one fix does not cure all.
__________________
target2019 is offline   Reply With Quote
Old 09-11-2016, 10:16 AM   #6
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Lsbcal's Avatar
 
Join Date: May 2006
Location: west coast, hi there!
Posts: 5,284
Midpack, what was the action that took you to that web page?

I notice that the URL for that page starts with "feehacitysocializing.net". I don't always look at URL's but this is one clue to the observant.
__________________
Lsbcal is online now   Reply With Quote
Old 09-11-2016, 10:24 AM   #7
Recycles dryer sheets
 
Join Date: Feb 2012
Posts: 359
I never update from a popup, but go to the official site instead. Same when I get a phone call with message left from cc wrt fraud. I again, always call the number on the cc rather than the one left on my answering machine.
__________________
TrvlBug is online now   Reply With Quote
Old 09-11-2016, 11:04 AM   #8
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
harley's Avatar
 
Join Date: May 2008
Location: Following the nice weather
Posts: 6,204
I always (mostly) glance at a URL before I click on it, whether it's in an email or on a webpage. It's the best method of avoiding malware that I know of. However, that's not the usual practice. So much for counter-phishing training: Half of people click anything sent to them | Ars Technica

Quote:
For those who admitted to clicking on the link, the majority said they did so out of curiosity. Half of those who didn't were warned off because they didn't recognize the sender's name, and a small minority avoided clicking because they were concerned about the privacy of the person who may have accidentally sent them the link. "I think that with careful planning and execution, anyone can be made to click on this type of link, even if itís just out of curiosity," Benenson said.
Also, if you are interested to know if you've been affected by any of the major security breaches, you can go to https://haveibeenpwned.com/ and enter your email address or any usernames you use. They'll run it against the databases of compromised sites. The username part is probably not that valuable, since they get reused, but the email part is useful. It's a pretty cool app, and is run by a respected security dude. If you have any questions about it read the FAQ.

Quote:
How do I know the site isn't just harvesting searched email addresses?

You don't, but it's not. The site is simply intended to be a free service for people to assess risk in relation to their account being caught up in a breach. As with any website, if you're concerned about the intent or security, don't use it.
As of the time of this post they have identified 138 pwned websites and almost a billion and a half pwned accounts. I came up with 1 on my email.
__________________
"Good judgment comes from experience. Experience comes from bad judgement." - Will Rogers
DW and I - FIREd at 50 (7/06), living off assets
harley is offline   Reply With Quote
Old 09-11-2016, 11:57 AM   #9
Recycles dryer sheets
Aerides's Avatar
 
Join Date: Nov 2015
Posts: 397
side note: your desk top layout would drive me nuts.
__________________
Aerides is offline   Reply With Quote
Old 09-11-2016, 12:28 PM   #10
Moderator Emeritus
Bestwifeever's Avatar
 
Join Date: Sep 2007
Posts: 15,870
Dollars to donuts that's not the OP's desktop (I too have fun with the details creating imaginary people, and some of the folders look like they're for a parent of an eagle scout candidate who is taking the ACT, and I don't think that defines the OP).
__________________

Bestwifeever is offline   Reply With Quote
Old 09-11-2016, 01:44 PM   #11
Recycles dryer sheets
 
Join Date: Mar 2014
Posts: 146
I had a similar window on Chrome this morning and closed it without clicking the link.
__________________
user5027 is online now   Reply With Quote
Old 09-11-2016, 02:05 PM   #12
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
easysurfer's Avatar
 
Join Date: Jun 2008
Posts: 7,156
Midpack,

Thanks for the alert. I use Firefox and had I come across that pop up, probably would have feel for the trick. Especially since not having much sleep the night before.
__________________
Have you ever seen a headstone with these words
"If only I had spent more time at work" ... from "Busy Man" sung by Billy Ray Cyrus
easysurfer is online now   Reply With Quote
Old 09-11-2016, 02:43 PM   #13
Full time employment: Posting here.
 
Join Date: Jun 2013
Posts: 534
This happened to me a couple of times, when I was using a streaming radio site that required me to disable my ad blocker on that page if I wanted to listen. In my case it's not a popup. Rather, the browser just switches from the radio station page to the fake Firefox update page. I'm guessing this happens when the radio station page would be updating to show a new ad, but can't prove it. I can see how a lot of people would fall for this.
__________________
Which Roger is offline   Reply With Quote
Old 09-11-2016, 02:56 PM   #14
Full time employment: Posting here.
 
Join Date: Jun 2004
Location: E. Wash
Posts: 977
Thanks Midpack
I vaguely recall seeing that popup early this week. Could not recall if I had seen, so ran Malwarebytes. Sure enough there was malware. Now gone. It looked like one of the could have been serious.
Nwsteve
__________________
nwsteve is offline   Reply With Quote
Old 09-11-2016, 03:03 PM   #15
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Lsbcal's Avatar
 
Join Date: May 2006
Location: west coast, hi there!
Posts: 5,284
Quote:
Originally Posted by nwsteve View Post
Thanks Midpack
I vaguely recall seeing that popup early this week. Could not recall if I had seen, so ran Malwarebytes. Sure enough there was malware. Now gone. It looked like one of the could have been serious.
Nwsteve
I wonder if Malwarebytes can detect this and warn. This app is one of the few l have paid for so it is always active.
__________________
Lsbcal is online now   Reply With Quote
Old 09-11-2016, 03:28 PM   #16
Thinks s/he gets paid by the post
gauss's Avatar
 
Join Date: Aug 2011
Posts: 1,603
Quote:
Originally Posted by Lsbcal View Post
I notice that the URL for that page starts with "feehacitysocializing.net". I don't always look at URL's but this is one clue to the observant.
+1
__________________
gauss is offline   Reply With Quote
Old 09-11-2016, 05:19 PM   #17
Thinks s/he gets paid by the post
 
Join Date: Jan 2006
Posts: 2,674
Also beware of making typos in the url bar:
Typosquatting Scam Infecting Computers with Dangerous Malware – AARP
__________________
kaneohe is offline   Reply With Quote
Old 09-15-2016, 11:10 AM   #18
Dryer sheet aficionado
Capwest28's Avatar
 
Join Date: Mar 2014
Location: The Woodlands
Posts: 32
I had an Adobe Flash pop-up recently. Almost clicked it reflexively. Glad I did not.


Sent from my iPhone using Early Retirement Forum
__________________
Capwest28 is offline   Reply With Quote
Old 09-15-2016, 11:12 AM   #19
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Midpack's Avatar
 
Join Date: Jan 2008
Location: Chicagoland
Posts: 11,413
Quote:
Originally Posted by Aerides View Post
side note: your desk top layout would drive me nuts.
Not my desktop...
__________________
No one agrees with other people's opinions; they merely agree with their own opinions -- expressed by somebody else. Sydney Tremayne
Retired Jun 2011 at age 57

Target AA: 60% equity funds / 35% bond funds / 5% cash
Target WR: Approx 2.5% Approx 20% SI (secure income, SS only)
Midpack is offline   Reply With Quote
Old 09-15-2016, 11:59 AM   #20
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
easysurfer's Avatar
 
Join Date: Jun 2008
Posts: 7,156
Was watching morning news today and malware was in the news again (Olympic athletes medical records hacked, Powell hacked gmail) with a mention that the hackers run circles around the traditional ways of protection with anti-virus and firewall.

On the front lines against cyber hackers - Videos - CBS News
__________________

__________________
Have you ever seen a headstone with these words
"If only I had spent more time at work" ... from "Busy Man" sung by Billy Ray Cyrus
easysurfer is online now   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Heat Attack Grill Spokesman Dies of Heart Attack easysurfer Other topics 1 02-13-2013 03:55 AM
Hotmail's "RE HI" malware Nords Other topics 11 04-24-2009 09:33 AM
Very clever Dutch site brewer12345 Other topics 8 01-28-2008 10:26 PM
Another clever SS scheme? mickeyd FIRE and Money 17 12-18-2007 10:44 PM
Am I being too clever???? 2B FIRECalc support 0 07-02-2006 09:44 AM

 

 
All times are GMT -6. The time now is 07:19 PM.
 
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.