drive-by download – Page 4 – WindowsTechs.com

Visited a compromised site that I thought was legitimate. How long has it been compromised for? How bad is the malware? [on hold]

Posted on December 31, 2016 by laid back dude

http://anti-hacker-alliance.com is filled with malware. Don’t go there; my free Avast deflected over 6 attempts, 2 at least were URL malware. I was using Windows 7 and now doing an Avast boot scan.

Someone please fully inves… Continue reading Visited a compromised site that I thought was legitimate. How long has it been compromised for? How bad is the malware? [on hold]→

LastPass Patches Ormandy Remote Compromise Flaw

Posted on July 28, 2016 by Michael Mimoso

LastPass has patched a vulnerability in its Firefox add-on that allows attackers complete remote compromise of the password manager Continue reading LastPass Patches Ormandy Remote Compromise Flaw→

I was tricked on Facebook into downloading an obfuscated script

Posted on June 25, 2016 by Nacib Neme

I got a notification on Facebook: “(a friend of mine) mentioned you in a comment”. However, when I clicked it, Firefox tried to download the following file:

comment_24016875.jse

This is an obfuscated script which seems to d… Continue reading I was tricked on Facebook into downloading an obfuscated script→

Nuclear, Angler Exploit Kit Activity Has Disappeared

Posted on June 22, 2016 by Michael Mimoso

Researchers who study exploit kits are reporting that two major kits, Angler and Nuclear, may no longer be available. Continue reading Nuclear, Angler Exploit Kit Activity Has Disappeared→

Is the save button delay in a Firefox download dialog a security feature? What does it protect?

Posted on March 21, 2016 by Numeron

When I click to download a file through Firefox, a dialog window appears asking me whether I want to save the file somewhere or open it immediately once downloaded.

The OK button in the dialog window starts disabled, and doesn’t enable … Continue reading Is the save button delay in a Firefox download dialog a security feature? What does it protect?→

Why is Norton Safe Web flagging my site as dangerous when it reports on PHP files/urls that don’t exist?

Posted on February 29, 2016 by hawkeye

I’m in a bit of a quandary over Norton Safe Web’s rating of my company’s website.

My question is: is it possible for someone to fool Norton Safe Web into thinking that our website has PHP files which don’t exist? Could there be some sort … Continue reading Why is Norton Safe Web flagging my site as dangerous when it reports on PHP files/urls that don’t exist?→

Are malicious drive-by-downloads detectable based on file type/mime type?

Posted on December 20, 2015 by Uwe Keim

Drive-by-downloads are automatic downloads without user interaction.

We provide a free service for uploading large files and notifying users by email (this one, something like ge.tt or WeTransfer).

By default when a user cl… Continue reading Are malicious drive-by-downloads detectable based on file type/mime type?→