Jump to content

David H. Lipman

  • Content Count

  • Joined

  • Days Won


Everything posted by David H. Lipman

  1. https://nvd.nist.gov/vuln/detail/CVE-2020-7982
  2. FBI Sees Rise in Fraud Schemes Related to the Coronavirus (COVID-19) Pandemic "Scammers are leveraging the COVID-19 pandemic to steal your money, your personal information, or both. Don’t let them. Protect yourself and do your research before clicking on links purporting to provide information on the virus; donating to a charity online or through social media; contributing to a crowdfunding campaign; purchasing products online; or giving up your personal information in order to receive money or other benefits. The FBI advises you to be on the lookout for the following: Fake CDC Emails. Watch out for emails claiming to be from the Centers for Disease Control and Prevention (CDC) or other organizations claiming to offer information on the virus. Do not click links or open attachments you do not recognize. Fraudsters can use links in emails to deliver malware to your computer to steal personal information or to lock your computer and demand payment. Be wary of websites and apps claiming to track COVID-19 cases worldwide. Criminals are using malicious websites to infect and lock devices until payment is received. Phishing Emails. Look out for phishing emails asking you to verify your personal information in order to receive an economic stimulus check from the government. While talk of economic stimulus checks has been in the news cycle, government agencies are not sending unsolicited emails seeking your private information in order to send you money. Phishing emails may also claim to be related to: Charitable contributions General financial relief Airline carrier refunds Fake cures and vaccines Fake testing kits Counterfeit Treatments or Equipment. Be cautious of anyone selling products that claim to prevent, treat, diagnose, or cure COVID-19. Be alert to counterfeit products such as sanitizing products and Personal Protective Equipment (PPE), including N95 respirator masks, goggles, full face shields, protective gowns, and gloves. More information on unapproved or counterfeit PPE can be found at www.cdc.gov/niosh. You can also find information on the U.S. Food and Drug Administration website, www.fda.gov, and the Environmental Protection Agency website, www.epa.gov. Report counterfeit products at www.ic3.gov and to the National Intellectual Property Rights Coordination Center at iprcenter.gov. If you are looking for accurate and up-to-date information on COVID-19, the CDC has posted extensive guidance and information that is updated frequently. The best sources for authoritative information on COVID-19 are www.cdc.gov and www.coronavirus.gov. You may also consult your primary care physician for guidance. The FBI is reminding you to always use good cyber hygiene and security measures. By remembering the following tips, you can protect yourself and help stop criminal activity: Do not open attachments or click links within emails from senders you don't recognize. Do not provide your username, password, date of birth, social security number, financial data, or other personal information in response to an email or robocall. Always verify the web address of legitimate websites and manually type them into your browser. Check for misspellings or wrong domains within a link (for example, an address that should end in a ".gov" ends in .com" instead). If you believe you are the victim of an Internet scam or cyber crime, or if you want to report suspicious activity, please visit the FBI’s Internet Crime Complaint Center at www.ic3.gov. "
  3. Down Down Down Down Down Down...
  4. If and only if a member submits quality samples can that member be elevated to the Forum group; Malware Hunters and once a member they will gain access to posted submission samples. However, Malwarebytes' personnel will not provide samples to even Malware Hunters upon request.
  5. https://www.imdb.com/title/tt2788710/
  6. Defending Against COVID-19 Cyber Scams "The Cybersecurity and Infrastructure Security Agency (CISA) warns individuals to remain vigilant for scams related to Coronavirus Disease 2019 (COVID-19). Cyber actors may send emails with malicious attachments or links to fraudulent websites to trick victims into revealing sensitive information or donating to fraudulent charities or causes. Exercise caution in handling any email with a COVID-19-related subject line, attachment, or hyperlink, and be wary of social media pleas, texts, or calls related to COVID-19. CISA encourages individuals to remain vigilant and take the following precautions. Avoid clicking on links in unsolicited emails and be wary of email attachments. See Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Scams for more information. Use trusted sources—such as legitimate, government websites—for up-to-date, fact-based information about COVID-19. Do not reveal personal or financial information in email, and do not respond to email solicitations for this information. Verify a charity’s authenticity before making donations. Review the Federal Trade Commission’s page on Charity Scams for more information. Review CISA Insights on Risk Management for COVID-19 for more information. "
  7. I heard my name in the breeze...
  8. https://www.imdb.com/title/tt3759298/
  9. No, you can still run it. The CounterSigning certificates are from DigiCert which expires in 2024 ( sha1) and that from Symantec which expires in 2028 (sha256).
  10. It does look like the MBAR standalone scanner needs a new certificate.
  11. I saw Brightburn last month. It was a different Sci-Fi/Horror movie and was pretty good. What made it good was Elizabeth Banks. This was different for her as she is mostly known for performing in comedies.
  12. https://www.imdb.com/title/tt5311542/
  13. Secure Email does not equate to spam. "Secure" relates to; using SSL/TLS, privacy of email contents and the ability to encrypt individual emails between parties. As noted, MBAM does nor process email, All email works with MBAM. The *BEST* email experience will always be with an email client such as Microsoft Outlook, Thunderbird and others and not by using a Web Browser ( such as Chrome and Firefox ) to access a HTTPS WebMail server ( such as https://mail.aol.com/ ) . Using an email client is more secure and allows better processing of spam through Rules and Regular Expressions as well as better ability for viewing attachments and printing. One can use a third party spam filter in conjunction with an email client for increased spam and content filtering. I personally use Pegasus mail ( now in its 30th year of being a free email client ) and it has Regular Expressions and with it I can can filter out spam sources by IP address ranges. My suggestion is to use Thunderbird for its ease of use, capabilities, Add-Ons and spam filtering. Of course limiting spam means NOT providing your email address everywhere, specifically indicating top sources to not send you marketing and promotional emails, to indicate that you prohibit the sharing of your email address and also perform US Can Spam Opt-Out on spam. Please reference: https://www.ftc.gov/tips-advice/business-center/guidance/can-spam-act-compliance-guide-business 6. Honor opt-out requests promptly. Any opt-out mechanism you offer must be able to process opt-out requests for at least 30 days after you send your message. You must honor a recipient’s opt-out request within 10 business days. You can’t charge a fee, require the recipient to give you any personally identifying information beyond an email address, or make the recipient take any step other than sending a reply email or visiting a single page on an Internet website as a condition for honoring an opt-out request. Once people have told you they don’t want to receive more messages from you, you can’t sell or transfer their email addresses, even in the form of a mailing list. The only exception is that you may transfer the addresses to a company you’ve hired to help you comply with the CAN-SPAM Act. Look for that Opt-Out mechanism in the email and choose to Opt-Out. Not taking any action means implicit acceptance of spam. Taking action means that legitimate email marketers will cease sending you spam and ultimately reduce the volume of spam.
  14. MBAM does nor process email and does not look at Transport Layer Security and Secure Sockets Layer ( TLS and SSL ) protocols. TLS and SSL protocols encrypt the data stream from email client to email server and from email server to email server. It has nothing to do with the content of the email. TLS and SSL protocols are used like a bus carrying passengers from one bus station to another or to a bus stop. They do not care about the individual passengers or what they are carrying on their persons. MBAM will block any malicious and/or nefarious site in the Malwarebytes' Black List.
  15. Windows 7 OS specific updates - Yes. But; Dot Net, Visual C++, Microsoft Security Essentials, MS Office, etc, still are getting updates.
  16. It depends on your desire to be warned and other factors. For example. One may download a MP3 that is a Wimad trojan. A traditional anti virus application will detect that as a malicious file being a a Wimad trojan. That would give one a Red Flag on the source of the MP3 as well as the file itself. MBAM's anti exploitation module will only act to prevent the the software that renders the MP3 to act maliciously on the trojan's behalf.
  17. I'm sorry Malwarebytes doesn't supply information like that. Regular members can not access malware samples that are submitted by other members as well., To gain that level of privilege, one would have to submit quality malware samples inline with the provided submission guidelines. If the submissions are quality, Malwarebytes personnel, who are Malware Researchers, may choose to elevate that member to "Malware Hunters" status. Once a member is in the group Malware Hunters, the member can then download samples that other members have submitted.
  18. Just to bring this back on-track... Physical security of eScooters, 16-Year-Old Scooter Rider Killed by Tow Truck in New Jersey "A 16-year-old boy became the first person killed while riding a shared electric scooter in New Jersey when he collided with a tow truck in Elizabeth on Wednesday night. The boy, identified by a city official as Nelson Miranda Gomez, was riding one of 150 Lime scooters that were made available for public rental in Elizabeth just three weeks ago, according to the city’s mayor, J. Christian Bollwage. The mayor said a large tow truck was making a right turn from Elizabeth Avenue onto Spring Street at about 8:05 p.m. when it struck the boy, a local resident, who died shortly after the collision. The driver, who stayed at the scene and called for help, has not been charged, a city official said."
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.