Jump to content

David H. Lipman

Experts
  • Content Count

    16,009
  • Joined

  • Days Won

    1

Everything posted by David H. Lipman

  1. https://multi-av.thespykiller.co.uk/ Credit goes to @Porthos for pointing this out. Thank You !
  2. Macy's Data Breach 2019: How to Check If You Have Been Affected "Macy's has written to customers that have been affected by a data breach, just ahead of its Q3 earnings and the Black Friday shopping season. In a letter dated November 14, the company said: "On behalf of Macy's, we are writing to inform you about a recent incident involving unauthorized access to personal information about you on macys.com." The letter goes on to say that on October 15, 2019, the company was made aware of a suspicious connection between the domain macys.com and another website. "Based on our investigation, we believe that on October 7, 2019 an unauthorized third party added unauthorized computer code to two pages on macys.com. The unauthorized code was highly specific and only allowed the third party to capture information submitted by customers on the following two macys.com pages," the company said. These were the checkout page and the wallet page. What Information Was Stolen From Macy's? While the code was removed on October 15, 2019, according to the company, the following information potentially could have been accessed: First Name Last Name Address City State Zip Phone Number Email Address Payment Card Number Payment Card Security Code Payment Card Month/Year of Expiration Macy's has confirmed that "customers checking out or interacting with the My Account wallet page on a mobile device or on the macys.com mobile application" were not affected. "
  3. So, your Disney+ account was hacked. Here's what to do The Likely Reason Disney+ Accounts Are Getting 'Hacked' "The reports came just a few days after Disney+ launched: Thousands of the streaming service accounts were already up for sale on various hacking forums, at bargain prices. As of Wednesday, new victims were still taking to Twitter and other venues to express their frustration that their accounts had been taken over. What’s happening almost certainly isn’t a hack in the way you’d normally think of it. Instead, it appears to be a classic—and regrettable—case of what’s known as credential stuffing. As ZDNet first reported, compromised Disney+ accounts could be found on the dark web for as much as $11 a pop, or as little as, well, free. (Disney+ itself costs $7 per month, or less for a full-year plan.) Disney rejects any suggestion that its systems have been hacked. “We have found no evidence of a security breach,” the company said in a statement. “We continuously audit our security systems and when we find an attempted suspicious login we proactively lock the associated user account and direct the user to select a new password.” Taking megacorporations at their word, especially regarding cybersecurity issues, is rarely advisable, but in this case you don’t have to, because the simpler explanation is almost certainly the correct one. “It certainly sounds like credential stuffing,” says Troy Hunt, founder the website Have I Been Pwned, a repository of the billions of accounts that have been leaked across various breaches over the years. “This incident has all the hallmarks of what we’ve been seeing over and over again.” "
  4. Good Point @Porthos if one uses a VPN its Exit Node may emanate from another country and thus Product Prices and associated Taxes may be skewed to be aligned with the IP address of the purchaser.
  5. Very Cool - Thanx for the heads-up Michael !
  6. That's a Shared Folder so its information would be used by both Profiles. However I renamed.. C:\ProgramData\Microsoft\Windows\DeviceMetadataStore\en-US. to C:\ProgramData\Microsoft\Windows\DeviceMetadataStore\en-US.bak And then reloaded the Control Panel applet. No change. This is how it appears in the alternate Profile with the External USB v2.0 HD and External eSATA hard disk turned-on. Here it is still in my Day-2-Day Profile. I downloaded the MSI file, didn't install it though. I used Universal Extractor to extract the files. I then ran, DeviceMetadataWizard.exe It can Author, but does not Modify 'Device and Printers' Meta-Data.
  7. Yes. One Profile displays correctly and another Profile has a corrupted display in "Devices and Printers".
  8. The full, offline, version: http://downloads.malwarebytes.com/file/mb4_offline
  9. LOL You'll just have to watch it and find out.
  10. In my reply, the two References cited had their URLs burred into one URL ( thanks to this Forum editor ). This has been fixed. There are now two distinct URLs cited in the References.
  11. https://en.wikipedia.org/wiki/Phase-change_memory "Phase-change memory (also known as PCM, PCME, PRAM, PCRAM, OUM (ovonic unified memory) and C-RAM or CRAM (chalcogenide RAM) is a type of non-volatile random-access memory. PRAMs exploit the unique behaviour of chalcogenide glass. In the older generation of PCM, heat produced by the passage of an electric current through a heating element generally made of TiN was used to either quickly heat and quench the glass, making it amorphous, or to hold it in its crystallization temperature range for some time, thereby switching it to a crystalline state. PCM also has the ability to achieve a number of distinct intermediary states, thereby having the ability to hold multiple bits in a single cell, but the difficulties in programming cells in this way has prevented these capabilities from being implemented in other technologies (most notably flash memory) with the same capability. Newer PCM technology has been trending in two different directions. One group has been directing a lot of research towards attempting to find viable material alternatives to Ge2Sb2Te5 (GST), with mixed success. Another group has developed the use of a GeTe–Sb2Te3superlattice to achieve non-thermal phase changes by simply changing the co-ordination state of the Germanium atoms with a laser pulse. This new Interfacial Phase-Change Memory (IPCM) has had many successes and continues to be the site of much active research.[1] Leon Chua has argued that all two-terminal non-volatile-memory devices, including PCM, should be considered memristors.[2]Stan Williams of HP Labs has also argued that PCM should be considered a memristor.[3] However, this terminology has been challenged and the potential applicability of memristor theory to any physically realizable device is open to question.[4][5]" References: Glass ceramic approaches for energy storage materials Chalcogenide phase-change memory materials for high-speed, low-power data storage
  12. Not only is a legitimate site, it is requested that encrypted data sample and/or a ransom Note be submitted to the site. It will then give a report on the Ransomware used and if there is a known decryption tool available or not.
  13. If you have a question, please start a new thread and fully state your query. This topic is almost 4 years old.
  14. You aren't the first and Microsoft's own hubris is driving more every day.
  15. You presume correctly. I already saw the previous cited articles and re-registered the DLL ,applied the REG file ( under the affected Profile ) deleted the User IconCache file, as well as executed,... "%WINDIR%\system32\ie4uinit.exe" -ClearIconCache That is my theory as well.
  16. Xiexie ni all... I have tried all suggestions from Post #19 and on with derivatives of Post 22 suggestions to no avail. I will note that all hardware unquestionably work. It is only the Device display in the Control Panel applet "Devices and Printers" in one Win7 Profile that is askew.
  17. Anything that is predicated on a fraud can't be good. If they are willing to have their software promoted by fraud or are directly promoting it through fraud is a good reason for the software to be declared as a PUP. As for the actual software, I have not analyzed it and based upon my own observations, I believe any PUP detection is a prima facie validation.
  18. For one they use scam websites in a kind of malicious advertisement ( aka; malvertisement ) called FakeAlerts that masquerade as Microsoft. The site may present a fake anti malware scan that falsely states your computer is infected with "viruses" and tells the victim they need to "download and repair windows" which leads to the web site ReimagePlus.Com . It is flagged as a Potentially Unwanted Program (PUP) because of the malicious activity around it.
  19. Drivers are installed in the OS. Profiles inherit hardware configurations. The CA-200 and the USB hard disk are connected via USB. The two Epson are IP Enabled. The Western Digital MyBook is connected via eSATA. There is only one eSATA port. I'll try the USB v2.0 USB HD and see if that gleams some information. Thanx FF.
  20. "Windows Resource Protection did not find any integrity violations."
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.