Jump to content

Massimiliano

Techbench
  • Posts

    1,009
  • Joined

  • Last visited

  • Days Won

    3

Posts posted by Massimiliano

  1. 16 hours ago, Massimiliano said:

    @treed

    Regarding the Log4Shell vulnerability, are devices with Malwarebytes installed (  but everyone in general) protected? 

    Can Malwarebytes Privacy in addition help?

    Does anything in particular need to be done to stay safer, other than normal practices?

    Thanks

    I'm retracting the question because an article came out saying that "According to security experts at Eclectic Light Company, Apple has fixed vunlnerability in iCloud"

  2. @iTzHazZx

    I've been using this free app for years, and continue to use it, with great satisfaction and without taking any risk (below is the link)

    Freemacsoft - AppCleaner

    It is now a universal binary (version 3.6 from HighSierra to Monterey - Compatibility is guaranteed every year with the new system, a few weeks after release but I've never had a problem even with betas)

    It is also available for older versions of macOS (3.4 for OS X 10.10 to macOS 10.12 and 2.3 for Mac OS X 10.6 to OS X 10.9)

    I hope I have been helpful to you

    Have a nice Sunday

    Massimiliano

  3. 16 hours ago, gatortail said:

    @Massimiliano if you provide a list I can ask our research team to analyze. 

    I am not able to get you the list because these sites I discover them by chance

    But on the same sites after a few hours, without changing anything in MWB BG settings, these ads disappear

    This is the only help I can give you

    It almost seems, but I'm not inside the processes enough to understand it precisely, that these AD circuits manage to break through the protection but the latter has a kind of AI and learns to block them

    Translated with DeepL Translator Free

  4. 1 hour ago, treed said:

    That could be a factor, but I doubt that's the only factor. It's possible that you wouldn't see it if you were logged in, but it's also possible it wouldn't make a difference, and if you're not logged in because you don't want Google tracking you, that wouldn't be an ideal solution.

    I'd still say that forcing your externally-visible IP address to change would be a key thing to try, and rebooting the modem that is responsible for that IP address may not actually force it to change. I'd definitely recommend talking to your ISP about how to do that.

    Talking to my ISP is a lost cause at the outset. I hope to be able to change it as soon as possible. A new one must arrive, which is honest. In fact, it's not Italian. However, I use MWB privacy on iPhone, iPad and Mac and the problem is only on the Mac; it does not show up on my father's Mac and iPhone without vpn. Restarting the router anyway, at least as far as the IP is displayed is changed. I don't really keep any logins active except this forum.

  5. 4 hours ago, gatortail said:

    We made one change based upon the sites you shared.  Also, v1.0.6 is now available.

    Thanks.

    It had been updated in the background. I visited the sites at this time and now the ads are gone. Hopefully they won't find another way to get past your defenses.

    • Like 1
  6. 3 hours ago, gatortail said:

    I'll ask our research team to review.

    Thanks

    If I find others, almost all Italian, for obvious reasons, I will not fail to report them in this discussion so that you can implement better filters.

  7. 36 minutes ago, alvarnell said:

    Once more. There are no utilities able to scan and remove malware from any iDevice you have and I strongly suspect same for whatever brand of router you have. 

    You still haven't listed what "every single device" actually means in your case.

    There are more than a dozen A-V scanners available for Macs and and even more for PCs, most require payment. Here are some recommendations from what I assume are reputable a couple of independent testing sources:

    https://www.av-test.org/en/antivirus/home-users/

    https://www.av-comparatives.org/consumer/

    For Macs, I'm most familiar with ClamXAV (~30US$/year with 30 day free trial) which has an option to also search for Windows and other platform malware on your Mac. There's also a Windows utility that uses the same scan engine from a different developer https://docs.clamav.net/faq/faq-win32.html.

    for experience of acquaintances between those listed I would surely exclude TotalAV

  8. 12 minutes ago, gatortail said:

    @Massimiliano Yes, we've made several improvements thru v1.0.5.  We should be releasing v1.0.6 shortly. 

    Well, congratulations. It's a whole other thing now.

    I hope it will come soon in Italy too, also for iOS and iPadOS

    As written several times the Call Protection and SMS Protection, for me would be a thing that serves little purpose in fact, having been Beta Tester for 3 years, the only call that had blocked was the Apple support while several, unfortunately of Scam type, had passed smoothly; SMS, at least in Italy, are little used, and in my case, if they do not belong to contacts in my address book, I normally trash them regardless, except for any OTP codes. 
    I think, but this is just a suggestion, that they should be two separate products Protection for Safari and Protection for Calls/SMS. This one, though, I think is more of a suggestion that might be of interest to @treed

     

    This instead is a request for you @gatortail : is it possible in some way to split the ad blocker function from the tracker one; there is a site that I'm interested in looking at, that has ads, frequent but not invasive; I have to disable that protection to be able to see the site but I would like to allow them the ads but not the tracking. Is there any way that you know of? Thanks

    Translated with DeepL Translator Free

    • Like 1
  9. 28 minutes ago, gatortail said:

    @Massimiliano could you please provide some examples?

    I had tried for some periods to use only your extension on macOS (on iOS and iPadOS devices there is not, at least for Italy so I used as 1blocker) and in others with 1blocker and after discovering Super Agent For Safari (this only to avoid the tedious practice of cookies banner imposed by the EU)

    Until about 3 weeks ago with only your extension the sites I normally visited were full of banner ads very invasive, in addition to video advertising

    Therefore I had reactivated 1blocker (which I purchased not in subscription but in perpetual mode) and I was thinking of leaving it like that for good

    Now to verify, after your question of clarification, I tried to disable everything except MWB BG and indeed the ads, at least at the times I tried, were no longer present.

    In the last 3 weeks or so, have you implemented new filters silently?

    Being a public beta (or so I understood) I think this is normal, but I was obviously not aware of it.

    That's the only explanation I can think of.

    I'm waiting for your clarification

    Have a nice day

     

     

    PS: Regarding certain types of content, which I consider inappropriate, I have partially solved forcing in the hosts file of my Mac Google SafeSearch and inhibiting the ability to access other search engines (unfortunately you can not do on devices other than Mac without JailBreak, practice that I consider aberrant and stupid)

    Translated with DeepL - Translator Free

  10. 21 hours ago, treed said:

    I've used both 1Blocker and Browser Guard in the past without any problems. There shouldn't be any conflicts. You can run as many content blocking extensions as you like. The more you run, though, the harder it can be to troubleshoot if something is getting blocked (or not blocked) incorrectly... it will get harder and harder to figure out which one is causing the issue in order to report it, or add the site to an allow list or block list.

    Unfortunately MWB Browser Guard, at least in Italy, lets almost all advertisements through. Probably Italian sites have found a way to break the protection.
    Moreover it has some limits on cookies (I add together 1blocker and Super Agent that, if set correctly, automatically accepts only the functional/technical ones and on some sites if set correctly 1bloker rejects them all regardless, for example where you don't need login)

  11. @treed, meanwhile thank you, right away

    I may have figured it out

    I changed the password and restarted the router

    Obviously all devices have disconnected

    The devices with that strange name were the two iPhones that are set with private addresses (in fact, the wi-fi addresses of the devices match), which I have now renamed

    At this point, after having reconnected all the family devices, I limited the wi-fi access only to the known devices, limiting the access to any device outside the list of the connected ones and I disabled the guest connection (Possible settings on Fritz!Box routers)

    Therefore no more devices can connect to wi-fi even if they know the password, except change that setting

    I'll see in the next days if the problem will be solved and I'll update the post

    Thank you for the moment

     

  12. 3 hours ago, treed said:

    First, there could be an infected Windows machine on your network. If you don't have any Windows machines, make sure your network is properly secured and that no neighbors are using your network without your permission or knowledge.

    A windows machine in the network, definitely not. By now we have all converted to  devices and the only old PC is turned on only if you have to look at RX/RMN/TAC for diagnostic tests done or to create a pendrive with some content for the car radio/TV in order to remove the hidden files created by the Mac that on these devices give problems (unless you know how to suggest a method to do it directly from Mac).

    3 hours ago, treed said:

    Second, your internet service provider (ISP) probably assigns you an IP address dynamically, which will change every time your modem reboots. The last person to use the IP address you're using now might have triggered the warning from Google. Try rebooting the modem to get a new IP address. If that doesn't give you a new IP address, talk to your ISP.

    My ISP, Vodafone, I hope to get it off as soon as possible, I've had it since June while the problem has only been occurring for a few days. 
    It assigns me a dynamic IP but my router is restarted very rarely, only when there are problems of slow connection that makes it impossible to use or other problems (it is not restarted for two months) so I would exclude a change of IP with others at least in the last month.

    3 hours ago, treed said:

    Third, it's possible your modem or router is infected with some kind of botnet malware. This is difficult to diagnose and fix, as there are countless different pieces of hardware you could have, with different firmware versions, different vulnerabilities, different capabilities, and different means of fixing. In some cases, there may be no fix, especially with really old hardware. If your network hardware is really old, consider replacing it.

    My router (only device) connected to the phone network on which depend in Wi-Fi my Macs (Air M1 with Monterey) and my Father's (Mid 2012 stopped at Catalina), my iPad mini 2021, two iPhone SE 2020, and, I do not know if it connects to the router because it is a Black Friday purchase as well as an early Christmas, my Apple Watch 7 all updated to the latest available version of their respective OS, plus LG Smart TV and two Printers (Canon Pixma Mx 925, very old, almost never used because it's nearing the end, and an HP LaserJet) is a Fritz! Box 7530 that has been updated a few minutes ago to FRITZ!OS 07.29 purchased in March 2021 (I know there are a lot of new apple devices, but pretty much the old ones died almost all together 😭)

    On the network tab of the control panel of the router there are only known devices apart from a non-removable device called PC-192-168-178-35 with IP address 192.168.178.35 (I premise that the router has the name fritz.box and responds to IP 192.168.178.1) that is unknown to me and I can not understand

    It seems to me the only anomaly

    @treed, sorry I did not thank you at the top of the message, but after setting everything I could not create the space, Ideas about this, given the explanations given

     

  13. I attach screenshot of situation that from some days is visualized from Google sporadically (not every day 1 time but almost)

    I also attach report Malwarebytes Premium Scan (manual scan a few minutes ago)
    I also have Malwarebytes Privacy (latest stable version available) installed on my Mac.
    On Safari are installed 1Blocker, MWB Browser Guard, Super Agent for Safari (for the automatic acceptance of technical/functional cookies only)
    On Firefox only Malwarebytes Browser Guard (I don't use it much and so far the situation has occurred only on Safari)

    There were no changes immediately before the situation began.
    Something was modified afterwards but it didn't change anything

    I may collect and submit any reports necessary for the analyst (as long as I am assured that no personal/sensitive data is included) 

    Meanwhile thank you

    Have a nice day

    Massimiliano

    Google Situation

    158637874_Schermata2021-11-30alle12_10_37.thumb.jpg.061ffc6c896f0488ab02a1370bb9cbfa.jpg

     

    Malwarebytes

    240396991_Schermata2021-11-30alle13_32_14.thumb.png.d81387ed3bc56880670fa6057ef105f2.png960344176_Schermata2021-11-30alle13_32_06.thumb.png.5a43908606764bd8fe2d27e7cab2f604.png

  14. @treed

    ... and Malwarebytes Mobile Security for the Italian market, plus the purchase from your site?

    I'm in fact waiting for a reply to my ticket 3636709 precisely because on 17/12 my license expires, for which I had disabled auto-renewal due to the change in the number of users, and I need to understand how to make the new purchase. (If you read the ticket you can see the forecast I have in mind, although nothing is final yet for both MWB and  devices).

    There will be some device changes due to obsolete devices and also changes in family setup.

    Thanks

    Good evening (at least in Italy)

    Massimiliano

     

  15. 15 hours ago, AdvancedSetup said:

    How one tracks or goes out of the way to track is more so the issue. I too am not a fan of aggressive tracking

     

    I don't dispute minimal tracking to improve sales.

    I challenge aggressive tracking and the use of it to peddle scams or questionable content with possible scam attached.

    I object to tracking in particular from the Menlo Park group.

    And that's why I don't use anything they do. 

    On Facebook I had an account because people I knew insisted; I closed it after 3 days and at the same time I closed the email address used. I also have no other social

    On WhatsApp I lasted less than a year. Now only Phone/SMS/E-mail and for those who have Apple devices I use iMessage (fortunately for me most of the contacts or at least those to whom I have to send something written)

    My situation is very unlikely to change over time.

    Translated from Italian to English with automatic online translator. Sorry for any inaccuracies

  16. 1 minute ago, AdvancedSetup said:

    Correct. We only link to our page on Facebook. There is no special code from us behind that link for tracking or anything else.

     

    That your site is secure I have no doubt (It would be strange otherwise from a security software company). But that's not the case for everyone.

  17. @alvarnell

    What I was referring to is what you see in the Manage Website Data screen in the Safari Preferences - Privacy Tab

    This makes me think that Apple's ITP (and also MBG) doesn't really block everything third-party. I'm not a developer 

    Apart from this, that we all know to be traced to the marrow, the thing that I hate (and that I have experienced for the first, and I hope last time, only yesterday) is the fact that there are these redirects due to compromise of some website and it seems that nothing can be done

    1004169481_Schermata2021-10-29alle20_51_15.thumb.png.c0bc582aec0c3e3fd732c8f2de88da8e.png

  18. Thank you @treed for your reply

    1 hour ago, treed said:

    However, if you're encountering this kind of content unwillingly, via redirects from malicious websites or ads, those are definitely things that we should be blocking. If you're encountering things like this that aren't getting blocked, I'd recommend posting information in the IP or URL threats forum:

     

    Unfortunately, I can't help you. It never happened to me when I was still using Windows (but I'm talking about years ago and it probably wasn't so widespread), much less since I've been using Mac.
    Unfortunately I can't give you the URL because I'd rather not end up in that crap again. I've even deleted history, cache, cookies and flush DNS cache for extra security.
     

    1 hour ago, treed said:

    If you can identify what site caused the redirect, report it there. If you think it's from an advertisement that was not blocked, report the site and give details about the fact that there are ads there that aren't getting blocked.

    Of course, if you encounter content that appears to be a scam - even if it is related to adult or violent content - that is something we'd want to hear about. Scam sites are definitely of interest to us.

    Like I said my request came in today because of my bad experience last night and it had never happened to me. Surely there was something compromised in some website linked to the one I entered to look for more information about this doctor (probably some advertising circuit that had been hacked); research that I am doing having to undergo a delicate surgery that should solve a situation that has lasted for over 20 years.
    Definitely if it happens again I will pay more attention to what I see in the address bar (the only thing I remember was the first switch from a .it domain to a .nl domain)

    Honestly as far as ad blocking goes, I've reported it twice here in the Safari versions section since the beginning, there are very few that are blocked from MBG

    I report the links and quotes and I realize now with the reverse translation to reconstruct the whole and quote only the necessary parts made with a new online translator, that the previous one was bad but unfortunately my knowledge of English is reduced to a minimum

    Again on August 11 (https://forums.malwarebytes.com/topic/277525-feedback/

    Quote

    I cannot say more than the Firefox versions (very little use this browser to be able to give an evaluation) or Chrome (I avoid this browser)

    I'm noticing that at least in Safari the blocked advertisements are just a few 

    If I haven't 1BLOCKER together I would like to virtually see at least 90% of the announcements on the sites you visit regularly

    However, if the function of the extension is not to block advertisements in a total way - which is rather than legitimate - I think should be better clarified to make the user to make a conscious choice

    Actually I meant to say that at least 90% of the total are displayed, not that I want to display them

     

    In my feedback on August 18 (https://forums.malwarebytes.com/topic/277744-difference-in-the-allow-list-why/)

    Quote

    As I wrote earlier, Malwarebytes Browser Guard alone blocks very few ads, but is more likely to be detected as an Ad-Blocker by sites that require it to be disabled than 1blocker (paid) or Ka-Block! (free like yours)

    and I also said that without 1blocker (which unfortunately at this moment I had to delete, despite the perennial purchase, because since the new versions of apple OS came out it nails too many sites and makes it impossible to use Safari and I'm waiting for a response from their support) practically all the ads are displayed.

    As for the trackers, I was talking about Facebook not by chance. In spite of Apple's blocks, FACEBOOK is present among the data of the websites always and comnque with cache and alternative HTTP services; I premise that I don't have an account on Facebook or other social networks (not even WhatsApp) and the same is true for a myriad of other domains that have the same entries.

    Then there are websites that have requests where to disable all possible tracking item by item because they do not have a cumulative one (unfortunately, among these is one of our local newspapers) you have to work about ten minutes (for this I solved it by blocking their domain in the hosts file)

     

    I accept suggestions about this, both to be able to reduce online tracking as much as possible (which is now at absurd levels, at least in my opinion) and to avoid any security problems or close encounters with this type of content that are certainly not among those I'm looking for, ON THE CONTRARY.

  19. 4 hours ago, AdvancedSetup said:

    you need to work with one of the malware removal experts to have them help you review and clean your system

     

    • uBlockorigin does not exist for Safari
    • This is the first time this has happened to me
    • The system was reinstalled from 0 after formatting yesterday afternoon and the situation occurred last night. Malwarebytes Premium reports 0 items detected and Malwarebytes Browser guard didn't block anything even though I only the pharmacy booking system whitelisted. In the whitelist of the browser (therefore on which no type of block can interact) there are only the websites of the bank, of the Certified Electronic Mail and of the SPID provider (Sistema Pubblico Identità Digitale - Public Digital Identity System) which is used only to authenticate in the websites of the Public Administration. Looking for information on the above mentioned doctor I stumbled into an endless series of passages between porn sites and scam sites.After several attempts I managed to restart my Mac and immediately after the manual scan (I have one scheduled every day as indicated by the instructions) considered the system clean.

    If you think that a scan should be done you can kindly ask @treed  for an opinion on what to do

    Thanks

  20. @Porthos , @AdvancedSetup

    Apart from the fact that I didn't request a preventive censorship operation but the addition of blocking functions that can be activated with a free choice of the user, if it would be at least possible to block unsolicited redirects to sites of this type (both for certain contents and for those containing typical scams) as well as blocking indiscriminate cross-site tracking would already be fantastic.

    My request came up today only because I was looking for news about a doctor who has to do surgery on me (he's a top doctor in his particular field with several international publications) probably due to the compromise of some website or advertising networks I found myself in a compulsive redirect of sites with these contents (none excluded) that had even blocked the ability to close the browser (and I use macOS with Malwarebytes Premium and Browser Guard installed with only Safari)

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.