Page 6 of 6 FirstFirst ... 456
Results 51 to 60 of 60

Thread: Are We Being Paranoid?

  1. #51
    Join Date
    Jan 2012
    Beans
    753

    Re: Are We Being Paranoid?

    Quote Originally Posted by CharlesA View Post
    Good read. The sad part is it is true - convenience vs security wins in the end.
    I think this is called the "Dancing Pigs Effect". Security should focus more on educating people for common sense rather than constantly hunting for 0days (not the people shouldn't try to patch vulnerabilities). Simply disabling browser scripts does a hell of a lot more than running antivirus.

    Quote Originally Posted by haqking View Post
    There was a time when they thought the earth was round !
    Are you being serious?

    Last edited by Stonecold1995; December 2nd, 2012 at 02:24 AM.

  2. #52
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 22.04 Jammy Jellyfish

    Re: Are We Being Paranoid?

    Quote Originally Posted by Merisi View Post
    This thread is becoming a bit of an eye opener for me in some ways as I thought my security practises were quite solid but I wasn't aware you could find maleware on sites that you think might be safe.

    Your other point as well has got me thinking in that I've no idea what being hacked looks like unless it's obvious. I just assumed being hacked would mean that your finances might be in jeoparday. I imagine a lot of people think that.
    The thing is - most people would trust a reputable site and "let their guard down" which makes it the perfect vector of attack.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  3. #53
    Join Date
    Jan 2012
    Beans
    753

    Re: Are We Being Paranoid?

    Quote Originally Posted by CharlesA View Post
    The thing is - most people would trust a reputable site and "let their guard down" which makes it the perfect vector of attack.
    That's exactly what exploit packs take advantage of. If a hacker buys an exploit pack and hacks a "reputable" site, he can put the exploit pack in that site and anyone who visits it has the potential to be infected. Theoretically this could even happen to Ubuntu Forums, but because this site has good security, and because many people who visit this forum are using a computer with GNU/Linux, it would be a very poor attack vector. But many innocent sites (especially blogs) can become zombies spreading malware. So don't trust anything 100%, even if you know the owner of the site would never put up malware!

  4. #54
    Join Date
    Jun 2011
    Location
    The Shadow Gallery
    Beans
    6,744

    Re: Are We Being Paranoid?

    Quote Originally Posted by Stonecold1995 View Post
    I think this is called the "Dancing Pigs Effect". Security should focus more on educating people for common sense rather than constantly hunting for 0days (not the people shouldn't try to patch vulnerabilities). Simply disabling browser scripts does a hell of a lot more than running antivirus.


    Are you being serious?

    I am always being serious apart from when I'm not !
    Backtrack - Giving machine guns to monkeys since 2006
    Kali-Linux - Adding a grenade launcher to the machine guns since 2013

  5. #55
    Join Date
    Nov 2009
    Beans
    919
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Are We Being Paranoid?

    Quote Originally Posted by Stonecold1995 View Post
    That's exactly what exploit packs take advantage of. If a hacker buys an exploit pack and hacks a "reputable" site, he can put the exploit pack in that site and anyone who visits it has the potential to be infected. Theoretically this could even happen to Ubuntu Forums, but because this site has good security, and because many people who visit this forum are using a computer with GNU/Linux, it would be a very poor attack vector. But many innocent sites (especially blogs) can become zombies spreading malware. So don't trust anything 100%, even if you know the owner of the site would never put up malware!
    It's not just legit/reputable sites being compromised directly. What I see most often when I'm actively monitoring are malicious ads. Sure, there are many, many small and large sites with out of date web applications, db flaws, server software, things like that, and they do frequently get compromised. But from an ROI standpoint, nothing beats getting a malicious ad onto a widely-used legitimate platform, and it happens to the biggest ones all the time. Individually they may be relatively short-lived, but during their lifetimes they could compromise every visitor to every site that the ad platform has cycled that advertisement onto, no additional clicks necessary. And nothing the site owners can do except report the ads and hope they are removed, or stop running that ad platform.

    I always advise users to block ads.

  6. #56
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 22.04 Jammy Jellyfish

    Re: Are We Being Paranoid?

    Quote Originally Posted by OpSecShellshock View Post
    It's not just legit/reputable sites being compromised directly. What I see most often when I'm actively monitoring are malicious ads. Sure, there are many, many small and large sites with out of date web applications, db flaws, server software, things like that, and they do frequently get compromised. But from an ROI standpoint, nothing beats getting a malicious ad onto a widely-used legitimate platform, and it happens to the biggest ones all the time. Individually they may be relatively short-lived, but during their lifetimes they could compromise every visitor to every site that the ad platform has cycled that advertisement onto, no additional clicks necessary. And nothing the site owners can do except report the ads and hope they are removed, or stop running that ad platform.

    I always advise users to block ads.
    Agreed. I remember a (semi) popular forum that got tagged as malicious because of their ads. I know this is a popular method because it bypasses the main site completely and puts the blame on the company serving the ads.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  7. #57
    Join Date
    Jan 2012
    Beans
    753

    Re: Are We Being Paranoid?

    Quote Originally Posted by OpSecShellshock View Post
    It's not just legit/reputable sites being compromised directly. What I see most often when I'm actively monitoring are malicious ads. Sure, there are many, many small and large sites with out of date web applications, db flaws, server software, things like that, and they do frequently get compromised. But from an ROI standpoint, nothing beats getting a malicious ad onto a widely-used legitimate platform, and it happens to the biggest ones all the time. Individually they may be relatively short-lived, but during their lifetimes they could compromise every visitor to every site that the ad platform has cycled that advertisement onto, no additional clicks necessary. And nothing the site owners can do except report the ads and hope they are removed, or stop running that ad platform.

    I always advise users to block ads.
    Right, but those ads are often "legit", but were compromised at some stage, aren't they? I seem to remember reading somewhere that more malicious ads are malicious because the were compromised than malicious to start out.

    And I always block ads, but not because of malware but because they are annoying as hell! I just disable JavaScript, Java, and Flash in Chromium (I'm still waiting for Chrome's extensions API to be improved so that the NoScript developer can port it to Chrome) to protect from malicious scripts.

  8. #58
    Join Date
    Nov 2009
    Beans
    919
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Are We Being Paranoid?

    Quote Originally Posted by Stonecold1995 View Post
    Right, but those ads are often "legit", but were compromised at some stage, aren't they? I seem to remember reading somewhere that more malicious ads are malicious because the were compromised than malicious to start out.

    And I always block ads, but not because of malware but because they are annoying as hell! I just disable JavaScript, Java, and Flash in Chromium (I'm still waiting for Chrome's extensions API to be improved so that the NoScript developer can port it to Chrome) to protect from malicious scripts.
    I don't think legitimate ads themselves get compromised so much as fraudulent "companies" place ads with platform providers, sometimes going as far as to submit one advertisement for review that is harmless and switching to the malicious ad later. There's just not a very robust review process at a lot of platforms, and I wouldn't be surprised to find that submission is automated.

    And yes, even the ones that aren't malicious are annoying.

  9. #59
    Join Date
    Mar 2010
    Location
    Squidbilly-Land
    Beans
    Hidden!
    Distro
    Ubuntu

    Re: Are We Being Paranoid?

    Ok, so by now everyone here has read about the Tumblr Blog worm. http://www.nbcnews.com/technology/te...isitors-825075

    A reputable website. Hacked. End-user data (and perhaps worse) released. A few hours later, the fix was made, but some fairly high-traffic blogs like CNET and Verge were defaced. What happened beyond that is unknown.

  10. #60
    Join Date
    Aug 2011
    Location
    Manchester
    Beans
    83
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Are We Being Paranoid?

    So I guess the moral to this thread that it's not paranoia to be security conscious but more of a case that you can never be too careful.

Page 6 of 6 FirstFirst ... 456

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •