Jump to content

David H. Lipman

Experts
  • Content Count

    17,304
  • Joined

  • Days Won

    15

Posts posted by David H. Lipman

  1. When you see scam websites, give them the spam-BOT/malspam email address.  The email address will get abused,  sold or traded.  Responding to select spam emails may increase the value of that address to malvertisers, spammers and scammers.

    • Thanks 2
  2. Supreme Court limits the FTC’s authority to return money to consumers duped by deceptive business practices

    Statement by FTC Acting Chairwoman Rebecca Kelly Slaughter on the U.S. Supreme Court Ruling in AMG Capital Management LLC v. FTC

    Quote
    • The Supreme Court issued a ruling Thursday that will significantly limit the Federal Trade Commission’s ability to extract monetary relief for consumers when companies are found to use deceptive practices.
    • The decision will significantly hamper the FTC’s ability to return money to consumers duped by deceptive business practices, as the four sitting commissioners testified to Congress on Tuesday.
    • Facebook, for example, argued in its motion to dismiss the FTC’s ongoing antitrust lawsuit that it lacks statutory authority under the section of the law targeted in Thursday’s ruling.

    The Supreme Court issued a ruling Thursday that will significantly limit the Federal Trade Commission’s ability to extract monetary relief for consumers when companies are found to use deceptive practices.

    In a unanimous opinion delivered by Justice Stephen Breyer, the court said that Section 13(b) of the FTC Act does not authorize the agency to seek monetary relief for violations of the law, as it has commonly been used. The court noted that 13(b) doesn’t explicitly authorize the agency to obtain such a remedy, but instead allows the FTC to seek “a permanent injunction” pending administrative proceedings.

     

    “It is highly unlikely that Congress, without mentioning the matter, would grant the Commission authority to circumvent its traditional §5 administrative proceedings,” Breyer wrote. Given that Congress later enacted a law that authorizes the agency to seek monetary relief, the court said it did not believe Congress would have done so if 13(b) already granted that authority.

    The decision will significantly hamper the FTC’s ability to return money to consumers duped by deceptive business practices, as the four sitting commissioners testified to Congress on Tuesday. The two Democrats and two Republicans all advocated for a legislative fix should the Supreme Court rule against its authority to grant monetary relief under Section 13(b), though Republican Commissioner Noah Phillips suggested a more narrow approach focused on restitution rather than additional repayment for ill-gotten gains. The House Energy and Commerce Committee had already slated a hearing for next week to discuss legislative fixes to reaffirm the FTC’s power to provide redress to consumers.

    The ruling could have far-reaching impacts in cases where the FTC has invoked Section 13(b). Facebook, for example, argued in its motion to dismiss the FTC’s ongoing antitrust lawsuit that it lacks statutory authority under 13(b). While the issue isn’t directly about monetary relief, Facebook argued the FTC should not be able to claim authority under that law to remedy past conduct, since it only allows the FTC to stop ongoing or imminent legal violations.

    A spokesperson for the FTC declined to comment on how the ruling could impact that case.

    But the agency’s two Democratic commissioners slammed the ruling in statements on Thursday.

     

    “In AMG Capital, the Supreme Court ruled in favor of scam artists and dishonest corporations, leaving average Americans to pay for illegal behavior,” Acting Chairwoman Rebecca Kelly Slaughter said in a statement Thursday. “With this ruling, the Court has deprived the FTC of the strongest tool we had to help consumers when they need it most. We urge Congress to act swiftly to restore and strengthen the powers of the agency so we can make wronged consumers whole.”

    Slaughter said the agency has used the law to grant billions of dollars in relief for consumers over the past four decades, and it has been particularly useful in taking action against scams related to the Covid pandemic.

    Fellow Democratic Commissioner Rohit Chopra suggested the agency deploy a different authority that he said could be used to sanction bad actors.

    The case at hand involved a payday loan scheme, for which the court ruled in favor of the FTC, ordering the defendant to pay $1.3 billion in monetary relief. The defendant argued that the FTC lacked the authority to seek such a remedy, ultimately leading to Thursday’s decision.

     

  3. What you referred to is the guidelines to malicious disk file submissions.  Malwarebytes is not a historical anti malware solution and uses its signatures to only target NEW, emerging, files and not old files.  The "three month old" guideline is not a hard rule.  A undetected file that is 4 or 5 months may still get targeted by the creation of a signature but 3 months represents a relative threshold.  Therefore old files will not be accepted for signature creation consideration.  Malwarebytes does not accept malware libraries of files (aka; Zoos or Collections).

    Note also the guidelines is specific about "viruses".  MBAM does not target file infecting viruses.  Only a dropper that starts a viral infection of legitimate files.  The terminology of "viruses" is overly used and abused.  The overarching concept is malware which is a concatenation  of parts of the words MALicious and softWARE and covers viruses and worms, exploit code and trojans.  All malicious disk files have that time limitation.  Virus Total is useful in determining the age of a given malicious file.  In a Virus Total Report is the "First Submission" date.  That is the date where someone first submitted a given file to Virus Total and then can be used to gauge the file's age.

    Example:
    https://www.virustotal.com/gui/file/6c78152760aa6d3d27528e2443dc599129e5b85988f4f3286b06d07ffd13f63e/detection

    The Report shows a "First Submission  2021-04-20"  date which shows this is a new malicious file.

     

  4. So-cooooooooooooooool !

    A great milestone...  in getting the drone to Mars and by building it on Earth with our atmosphere destined to operate in the very thin Mars atmosphere using a semi autonomous coaxial, counter rotating,  blade lift system.

  5. MBAM does not target PDF and other scripted and/or Documents.  It uses its anti exploitation module to block any malicious activity that may occur whiles rendering them.

    Please submit the PDF in;  Newest Malware Threats  after reading...

    Malware Hunters group
    Purpose of this forum

    EDIT:

    This is the Malwarebytes for Windows Malware Removal sub-forum so I will request this be moved to;  Mac Malware Removal Help & Support

     

     

     

  6. Scraped data of 500 million LinkedIn users being sold online, 2 million records leaked as proof

    Quote

    Updated on 07/04: We updated our personal data leak checker database with more than 780,000 email addresses associated with this leak. Use it to find out if your LinkedIn profile has been scraped by the threat actors.

    Days after a massive Facebook data leak made the headlines, it seems like we’re in for another one, this time involving LinkedIn.

    An archive containing data purportedly scraped from 500 million LinkedIn profiles has been put for sale on a popular hacker forum, with another 2 million records leaked as a proof-of-concept sample by the post author.

    LinkedIn-leak-forum-post.png

    The four leaked files contain information about the LinkedIn users whose data has been allegedly scraped by the threat actor, including their full names, email addresses, phone numbers, workplace information, and more. 

    To see if your email address has been exposed in this data leak or other security breaches, use our personal data leak checker with a library of 15+ billion breached records.

    While users on the hacker forum can view the leaked samples for about $2 worth of forum credits, the threat actor appears to be auctioning the much-larger 500 million user database for at least a 4-digit sum, presumably in bitcoin.

    hdeNE8ds-G8llc8TCCuGhe-uhelmg4wbr3YwChBO

    The author of the post claims that the data was scraped from LinkedIn. Our investigation team was able to confirm this by looking at the samples provided on the hacker forum. However, it’s unclear whether the threat actor is selling up-to-date LinkedIn profiles, or if the data has been taken or aggregated from a previous breach suffered by LinkedIn or other companies.

    We asked LinkedIn if they could confirm that the leak was genuine, and whether they have alerted their users and clients, but we have received no reply from the company at the time of writing this report.

    What was leaked?

    Based on the samples we saw from the leaked files, they appear to contain a variety of mostly professional information from LinkedIn profiles, including:

    • LinkedIn IDs
    • Full names
    • Email addresses
    • Phone numbers
    • Genders
    • Links to LinkedIn profiles
    • Links to other social media profiles
    • Professional titles and other work-related data

     

     

    ** More in the article.

     

  7. The functionality of a BAT file is based upon the Windows Command Interpreter which is limited in its functionality.  The functions implemented in a BAT file can do damage to the PC's OS, the file structure and can cause OS degradation.  However it won't "infect".  That is a BAT file has a greatly diminished capability to create a windows malicious process or structure that will remain performing malicious activity after one logs-off or reboots.

    More advanced scripting interpreters like Visual Basic, JavaScript and PowerShell scripts are  not as limited and can "infect" a host.

     

    • Thanks 1
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.