Author |
Topic |
|
Stanley
Local Historian & Old Fart
36804 Posts
|
|
Posted -
16/08/2006
:
07:13
|
I have my system set for automatic updates from Mcaffee, Windows and Spyware Doctor. These have all issued a flurry of upgrades over the last few days, some of them major and involving re-starting the system to install. This is generally due to improved security patches or installation of updated databases to address new threats. So, the safe inference is that for some reason there are new threats out there. If you aren't on auto upgrade it might be a good idea to manually check for any upgrades available and install them. Can't do any harm, could save you a lot of hassle.
Stanley Challenger Graham
Barlick View stanley at barnoldswick.freeserve.co.uk
|
|
Replies |
Author |
|
|
pluggy
|
Posted - 15/05/2008 : 23:21
I was reading yesterday that Skyportal was vulnerable to SQL injection, looks like you got hit.......
Same advice I've been giving for years on my 'other' haunt and last week in this thread, don't run as administrator and avoid Internet explorer . Theres no such thing as a 'safe' site in this day and age.
It wasn't me driving the message home by the way, I don't do cracking.......
Need computer work ? "http://www.stsr.co.uk"
Pluggy's Household Monitor |
Stanley
Local Historian & Old Fart
36804 Posts
|
|
Posted - 16/05/2008 : 06:03
Pluggy, give Doc a ring on 812183 and let him know what you know.......
Stanley Challenger Graham
Barlick View stanley at barnoldswick.freeserve.co.uk |
Ringo
Site Administrator
3793 Posts
|
|
Posted - 16/05/2008 : 09:26
quote: Callunna wrote: Perhaps our mods could be persuaded to delete JalilMan from the new members list?
Is it time to introduce email authentication for new member applications? Member Jaliman has now been deleted
|
Stanley
Local Historian & Old Fart
36804 Posts
|
|
Posted - 16/05/2008 : 10:07
Well done Ric. In case anyone was wondering, Ric and I had both tried to find the registration but failed. I saw Ric this morning and he has evidently had another furtle. One thing is certain, we weren't ignoring the problem.
Stanley Challenger Graham
Barlick View stanley at barnoldswick.freeserve.co.uk |
Ringo
Site Administrator
3793 Posts
|
|
Posted - 16/05/2008 : 10:12
I have also deleted a few other members who lived in Afghanistan, I will try a keep on top of it.
|
pluggy
|
Posted - 16/05/2008 : 20:14
Just talked to Doc, he's patched the software and seems to be on top of it. The SQL injection flaw was discovered in November last year and some bright spark thought it prudent to post a proof of concept on the 'net. Once its out the thugs and bandits start using it for their own ends.......
Need computer work ? "http://www.stsr.co.uk"
Pluggy's Household Monitor |
Stanley
Local Historian & Old Fart
36804 Posts
|
|
Posted - 17/05/2008 : 07:10
Thanks for that Pluggy...... Now all I need is to be able to access the member list so I can delete the trolls as soon as they come on.......
Stanley Challenger Graham
Barlick View stanley at barnoldswick.freeserve.co.uk |
pluggy
|
Posted - 16/08/2008 : 16:44
Heres a site you may or may not be aware of and a demonstration of how ineffectual putting trust in AV can be.
http://www.virustotal.com/analisis/b5e9dda4ecc09da433416f316ebf7f17
Virustotal is a site you can upload files to and it runs it throgh umpteen virus scanners and gives you the results. The link above is the results of a file I received in my email today that slipped past the crap filter. It had first been submitted only a couple of hours before I did and shows how few of the popular AVs know about it.
So if you had any of the popular ones (Symantec/Avast/Mcafee/AVG/Kaspersy/Nod32 ot Trend) and opened it (It came wrapped in an email entitled 'Contract of Order Fulfilment') your machine would be owned my persons unknown.......
Need computer work ? "http://www.stsr.co.uk"
Pluggy's Household Monitor |
Anni
Regular Member
634 Posts
|
|
Posted - 17/08/2008 : 20:20
Ah Pluggy - I took a look at the link you posted and it was all double dutch to me
But thank you anyway.
|
pluggy
|
Posted - 17/08/2008 : 23:03
http://www.virustotal.com/analisis/744d4fe28a5d47fc176e7639a3f928c7
30 Hours Later, the 10 out of 36 have increased to 17. Obviously not a priority for Symantec (Norton) or Mcafee.
Anni, the list is names of 36 Anti Virus programs, the ones with dashes at the side of them are the ones that don't detect the particular virus I sent to them (I got it in my email yesterday) the ones with red writing are the ones that do detect it and what that particular AV have chosen to call this particular Virus. If you use Norton or Mcafee or any of the 15 others, the AV has no protection against it.
Need computer work ? "http://www.stsr.co.uk"
Pluggy's Household Monitor |
Tizer
|
Posted - 18/08/2008 : 11:09
Watch out for any emails that offer you " AntiVirus XP2008" - don't click on any links or files in them or they will install nasties on your computer.
The "CNN Top Ten Stories" spam is still going strong and causing great havoc. Fortunately, you probably won't have seen it if your ISP operates a rigorous spam filter. The message contains what claim to be CNN news stories but it also has nasty links that install trojan viruses and other bad stuff on yout PC.The ISP I use has been receiving 6 copies per second on their servers for a week or so now. They use an American service called Postini to tag spam but it hasn't always been effective on this CNN message. There is a rumour that Postini is being over-cautious because if it takes the risk of blocking genuine CNN emails then the mighty CNN will lean on it heavily.
Edited by - Tizer on 19/08/2008 09:38:36
|
Tizer
|
Posted - 18/08/2009 : 10:36
I've raised this thread again because my father in law has told me his computer has got infected by a trojan called Win32/Mebroot.BZtrojan. We've suggested he asks his `computer man' to sort it because it attacks the registry files and apparently can allow remote access to the computer. Also we reminded him that he *must* download antivirus updates and Windows updates frequently. I hope the computer man might remind him too!
Are antivirus updates and Windows updates not automatic nowadays? I use Ubuntu Linux and so I don't know how the Windows operating system is set up now. I get Ubuntu updates popping up every few days, some of them security and some just improvements to the programmes. As I write, one came up. I put in my password, click and it's done, almost always without a computer re-start.
|
Stanley
Local Historian & Old Fart
36804 Posts
|
|
Posted - 18/08/2009 : 16:52
Yes, Macaffee and Windows 2000K certainly.
Stanley Challenger Graham
Barlick View stanley at barnoldswick.freeserve.co.uk |
pluggy
|
Posted - 18/08/2009 : 17:28
As I mentioned in an earlier post in this thread (this time last year) having up-to-date AV and Windows isn't a guarantee againt malware. It helps but the bad guys are always ahead. Most of the reason there are so many out there....
Just for a change today's Ubuntu updates does want a restart.
Need computer work ? "http://www.stsr.co.uk"
Pluggy's Household Monitor |