I was on this browsing, and I got a fake picture popping up warning that MSE has detected viruses. I knew it was fake, but then it asked me to download a file. I know instantly it was bogus and no harm was done but other people may not know this.
I suspect it was dodgy code in one of the adds which forward to a different webpage.
|
|
Thanks, I also use MSE on my home PC (Sophos at work) but haven't had anything pop up yet. As you say, it might have just been a rogue advert.
|
I've had the warning from MSE this morning and I'm now scanning to remove the items.
It popped up as I clicked on the computer forum and I wrote down the warnings in case it may help to solve the problem.
Trojan-PSW.Win32.launch
Hack Tool Win32/Welevate.A
Adware Win32 Fraud
Hope this helps.
Pat
|
I think I I should mention the warning came in a box supposedly from Microsoft Security Essentials and offered me the chance to click and clean it now, when I did click on it I got the pop up at the bottom of the screen asking if I wanted to allow something I didn't recognise to access the PC, so I declined it.
More info here
www.bleepingcomputer.com/virus-removal/remove-fake-microsoft-security-essentials-alert
Pat
Last edited by: pda on Fri 21 Dec 12 at 06:34
|
Err ... I just carried out a fool scan (MSE) and it came up with:
Exploit: Java/CVE-2012-4681 which is a tad severe :(
So I gave it a thorough beating about the head and body and - all's well now :)
|
I did a ful scan with Malware Bytes and MSE and it found nothing but that's because I didn't allow the spoof MSE box access to the hard drive.
It's very authentic and I wouldn't want anyone else on here not to be aware of it.
Pat
|
>> because I didn't allow the spoof MSE box access to the hard drive.
None of you can be sure of that. Just visiting a web page could launch an exploit without clicking on anything. THere are security holes in software and these trojans, viruses, etc. exploit holes (e.g. buffer overrun conditions). One piece of software that is full of such holes and will never be secure (despite fixes all the time) is Adobe Flash.
Keeping anti-virus, firewall, etc. up to date helps. As does patching all the software (and that includes Flash, Adobe Reader, etc.)
Not wanting to frighten anyone but don't assume you have to click on something for it to run. Take the Flash ads on some websites. Unless you setup the browser so you have to allow the Flash to run only when you say, it is already running when the ads show. And Flash has access to your system - how else does it render the adverts, video etc.
|
Are some browsers more secure than others I wonder?
I use Chrome for foreplay only but - I use IE for everthing else.
|
|
I use Safari for everything but only when I am on the macbook. If I am on the PC I use Chrome for everything tho i sometimes use IE9
|
|
And all Mac users do have anti-virus running don't you.... I hope so.
|
And all Mac users do have anti-virus running don't you.... I hope so.
No - Never have for the past 8 years and don't intend to install any now. Never had any problems. No doubt you will come up with some theoretical scare stories but in the real world there are no mac viruses worth bothering about.
Come to that have never had any problem at all with my Apple computer . It just sit there and works.
|
Err ... I disabled Adobe flash player.
Couldn't access youporn youtube, internet radio, Planet Rock etc.
Wont be doing THAT again.
:}
|
I didn't say you could all do without Flash Player. But it is one big security hole. You'll notice when viewing videos you don't have to click on anything to run per se. So the Flash code runs. And therefore a malicious site with Flash could do all sorts.
The time when Mac users (and iPhone/iPad) can be complacent is coming to an end. There never used to be enough computers to target and therefore no point spending the time/effort to write malware. As we know, plenty of these about now.
Of course more will target windows still. There's more toolkits to use to write these things that are available. And many hackers dislike Microsoft more than Apple.
|
>>I didn't say you could all do without Flash Player<<
Affirmative - I just thought I would zap it to see what happens (or not)
One can't really do without Flash Player so for security reasons it's important to keep-up-to-date with updates and patches plus run a full security scan on a regular basis.
|
For video, everyone is moving away from Flash. HTML 5 for example replace it in many instances.
But even for websites where you say Flash is needed on the Mac, the same websites offer non-Flash alternatives. Remember the iPhone/iPad do not have Flash but YouTube has an app. BBC used to use Flash for many platforms on iPlayer but they are offering alternatives. Google is trying to remove Flash from Android (you can still download it... just... for Android 4). So the BBC have their own media player for Android now.
Steve Jobs was not wrong when he said he didn't want Flash on the iPhone and iPad. And it's a user install on Mac OSX 10.8 too. It is inefficient and very poor for security. Designed in an era when security was not such a concern and difficult to bolt on top - too many holes in it below the security layer.
|
Just had the same thing again *sigh*
Pat
|
Security warning C4P - VxFan
