 |
|
09-11-2016, 05:31 AM
|
#1
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: Jan 2008
Location: NC
Posts: 21,304
|
A clever malware attack
Unfortunately hackers are getting better and better. If you use Firefox, you could fall for this very convincing enticement to compromise your PC. The most convincing effort I've seen so far, but I know Firefox doesn't update with random popups. Please don't...
__________________
No one agrees with other people's opinions; they merely agree with their own opinions -- expressed by somebody else. Sydney Tremayne
Retired Jun 2011 at age 57
Target AA: 50% equity funds / 45% bonds / 5% cash
Target WR: Approx 1.5% Approx 20% SI (secure income, SS only)
|
|
|
 |
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!
Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that Early-Retirement.org is a great community to join. Best of all it's totally FREE!
You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!
|
|
09-11-2016, 06:15 AM
|
#2
|
|
Thinks s/he gets paid by the post
Join Date: May 2014
Posts: 1,390
|
Everyone should have spyware and virus protection on their computer . Once the malware gets a foothold on your computer system it is very difficult to get rid of it.
__________________
Understanding both the power of compound interest and the difficulty of getting it is the heart and soul of understanding a lot of things. Charlie Munger
The first rule of compounding: Never interupt it unnecessarily. Charlie Munger
|
|
|
|
|
09-11-2016, 07:15 AM
|
#3
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: Feb 2006
Location: Washington, DC
Posts: 11,331
|
Yeah some of these browser popups reel you in. So easy to respond to the prompt before your brain registers what is going on. Many people will never even realize they made a mistake.
__________________
Idleness is fatal only to the mediocre -- Albert Camus
|
|
|
|
09-11-2016, 09:33 AM
|
#4
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: May 2006
Location: west coast, hi there!
Posts: 8,809
|
 Quote:
Originally Posted by Midpack
Unfortunately hackers are getting better and better. If you use Firefox, you could fall for this very convincing enticement to compromise your PC. The most convincing effort I've seen so far, but I know Firefox doesn't update with random popups. Please don't...
|
Thanks Midpack. I will show this to DW who came to me concerned yesterday with a voicemail from the IRS telling her she would get a court action and to respond to the phone number given  .
I do use Firefox. I am guessing that having the popup blocker active would remove this theat. So how to run that popup blocker? Here is some introductory info which I had to review myself: https://support.mozilla.org/en-US/kb/pop-blocker-settings-exceptions-troubleshooting
Under that link is a link to pop up blocker settings: https://support.mozilla.org/en-US/kb...ocker-settings
You can turn the popup blocker off. Then in various web pages like your bank's, you can create exceptions easily that get put into the exceptions list.
|
|
|
|
|
09-11-2016, 09:59 AM
|
#5
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: Dec 2008
Location: On a hill in the Pine Barrens
Posts: 9,722
|
This attack is not so simple:
https://support.mozilla.org/en-US/questions/1127436
Could be from an ad on a page, going to a bad result in google search, etc. Bad guys seem to always be a bit more clever than all the blocks on your device. Since the attacks may be morphing in a continuous fashion, one fix does not cure all.
|
|
|
|
|
09-11-2016, 10:16 AM
|
#6
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: May 2006
Location: west coast, hi there!
Posts: 8,809
|
Midpack, what was the action that took you to that web page?
I notice that the URL for that page starts with "feehacitysocializing.net". I don't always look at URL's but this is one clue to the observant.
|
|
|
|
|
09-11-2016, 10:24 AM
|
#7
|
|
Thinks s/he gets paid by the post
Join Date: Feb 2012
Posts: 1,477
|
I never update from a popup, but go to the official site instead. Same when I get a phone call with message left from cc wrt fraud. I again, always call the number on the cc rather than the one left on my answering machine.
|
|
|
|
|
09-11-2016, 11:04 AM
|
#8
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: May 2008
Location: No fixed abode
Posts: 8,765
|
I always (mostly) glance at a URL before I click on it, whether it's in an email or on a webpage. It's the best method of avoiding malware that I know of. However, that's not the usual practice. So much for counter-phishing training: Half of people click anything sent to them | Ars Technica
Quote:
|
For those who admitted to clicking on the link, the majority said they did so out of curiosity. Half of those who didn't were warned off because they didn't recognize the sender's name, and a small minority avoided clicking because they were concerned about the privacy of the person who may have accidentally sent them the link. "I think that with careful planning and execution, anyone can be made to click on this type of link, even if it’s just out of curiosity," Benenson said.
|
Also, if you are interested to know if you've been affected by any of the major security breaches, you can go to https://haveibeenpwned.com/ and enter your email address or any usernames you use. They'll run it against the databases of compromised sites. The username part is probably not that valuable, since they get reused, but the email part is useful. It's a pretty cool app, and is run by a respected security dude. If you have any questions about it read the FAQ.
Quote:
How do I know the site isn't just harvesting searched email addresses?
You don't, but it's not. The site is simply intended to be a free service for people to assess risk in relation to their account being caught up in a breach. As with any website, if you're concerned about the intent or security, don't use it.
|
As of the time of this post they have identified 138 pwned websites and almost a billion and a half pwned accounts. I came up with 1 on my email.
__________________
"Good judgment comes from experience. Experience comes from bad judgement." - Anonymous (not Will Rogers or Sam Clemens)
DW and I - FIREd at 50 (7/06), living off assets
|
|
|
|
|
09-11-2016, 11:57 AM
|
#9
|
|
Moderator
Join Date: Nov 2015
Posts: 13,926
|
side note: your desk top layout would drive me nuts.
|
|
|
|
|
09-11-2016, 12:28 PM
|
#10
|
|
Moderator Emeritus
Join Date: Sep 2007
Posts: 17,774
|
Dollars to donuts that's not the OP's desktop (I too have fun with the details creating imaginary people, and some of the folders look like they're for a parent of an eagle scout candidate who is taking the ACT, and I don't think that defines the OP).
__________________
“Would you like an adventure now, or would you like to have your tea first?” J.M. Barrie, Peter Pan
|
|
|
|
|
09-11-2016, 01:44 PM
|
#11
|
|
Recycles dryer sheets
Join Date: Mar 2014
Posts: 197
|
I had a similar window on Chrome this morning and closed it without clicking the link.
|
|
|
|
|
09-11-2016, 02:05 PM
|
#12
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: Jun 2008
Posts: 13,150
|
Midpack,
Thanks for the alert. I use Firefox and had I come across that pop up, probably would have feel for the trick. Especially since not having much sleep the night before.
__________________
Have you ever seen a headstone with these words
"If only I had spent more time at work" ... from "Busy Man" sung by Billy Ray Cyrus
|
|
|
|
|
09-11-2016, 02:43 PM
|
#13
|
|
Thinks s/he gets paid by the post
Join Date: Jun 2013
Posts: 1,019
|
This happened to me a couple of times, when I was using a streaming radio site that required me to disable my ad blocker on that page if I wanted to listen. In my case it's not a popup. Rather, the browser just switches from the radio station page to the fake Firefox update page. I'm guessing this happens when the radio station page would be updating to show a new ad, but can't prove it. I can see how a lot of people would fall for this.
|
|
|
|
|
09-11-2016, 02:56 PM
|
#14
|
|
Thinks s/he gets paid by the post
Join Date: Jun 2004
Location: W Wash
Posts: 1,644
|
Thanks Midpack
I vaguely recall seeing that popup early this week. Could not recall if I had seen, so ran Malwarebytes. Sure enough there was malware. Now gone. It looked like one of the could have been serious.
Nwsteve
|
|
|
|
|
09-11-2016, 03:03 PM
|
#15
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: May 2006
Location: west coast, hi there!
Posts: 8,809
|
Quote:
Originally Posted by nwsteve
Thanks Midpack
I vaguely recall seeing that popup early this week. Could not recall if I had seen, so ran Malwarebytes. Sure enough there was malware. Now gone. It looked like one of the could have been serious.
Nwsteve
|
I wonder if Malwarebytes can detect this and warn. This app is one of the few l have paid for so it is always active.
|
|
|
|
|
09-11-2016, 03:28 PM
|
#16
|
|
Thinks s/he gets paid by the post
Join Date: Aug 2011
Posts: 3,606
|
Quote:
Originally Posted by Lsbcal
I notice that the URL for that page starts with "feehacitysocializing.net". I don't always look at URL's but this is one clue to the observant.
|
+1
|
|
|
|
|
09-11-2016, 05:19 PM
|
#17
|
|
Thinks s/he gets paid by the post
Join Date: Jan 2006
Posts: 4,172
|
|
|
|
|
|
09-15-2016, 11:10 AM
|
#18
|
|
Dryer sheet aficionado
Join Date: Mar 2014
Location: Steamboat Springs
Posts: 41
|
I had an Adobe Flash pop-up recently. Almost clicked it reflexively. Glad I did not.
Sent from my iPhone using Early Retirement Forum
|
|
|
|
|
09-15-2016, 11:12 AM
|
#19
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: Jan 2008
Location: NC
Posts: 21,304
|
Quote:
Originally Posted by Aerides
side note: your desk top layout would drive me nuts.
|
Not my desktop...
__________________
No one agrees with other people's opinions; they merely agree with their own opinions -- expressed by somebody else. Sydney Tremayne
Retired Jun 2011 at age 57
Target AA: 50% equity funds / 45% bonds / 5% cash
Target WR: Approx 1.5% Approx 20% SI (secure income, SS only)
|
|
|
|
|
09-15-2016, 11:59 AM
|
#20
|
|
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Join Date: Jun 2008
Posts: 13,150
|
Was watching morning news today and malware was in the news again (Olympic athletes medical records hacked, Powell hacked gmail) with a mention that the hackers run circles around the traditional ways of protection with anti-virus and firewall.
On the front lines against cyber hackers - Videos - CBS News
__________________
Have you ever seen a headstone with these words
"If only I had spent more time at work" ... from "Busy Man" sung by Billy Ray Cyrus
|
|
|
|
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
|
» Recent Threads
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
» Quick Links
|
|
|
Linear Mode
