Topic 'NBC Website Hacked' in forum 'Security' - dslreports.com

Re: NBC Website Hacked

Sat, 23 Feb 2013 20:10:22 EDT

AVD posted :

said by Mele20:

Plus, not everyone sets their browsers to block reported attack sites.

I turned that feature off since it was constantly reporting a (bookmarked) forum site I visit from time to time as an attack site. I looked into it and it was reported because some posts contained links to malware. Since I'm not dumb enough to click on them anyway I turned off the feature.

It was nice of Mozilla to hold my hand though. I felt all warm'n'fuzzy ;)

should have set it up as an exception instead..
--
* seek help if having trouble coping
--Standard disclaimers apply.--

Re: NBC Website Hacked

Sat, 23 Feb 2013 16:14:01 EDT

jaykaykay posted : That was never in question, but.... Grrrrrrrr. One of these days, I will wake to find that I am really not who I think I am and that my gender and all I know will be wrong. I will have been hacked! :( Never did I ever think that I would personally be you or someone else, but thanks to computers and the ease of use as well as the dollars made from what can be done with them, I am now a commodity. How disgusting and most unquieting.

End or rant. I am now off my soap box!
--
JKK:-)

Age is a very high price to pay for my maturity. If I can't stay young, I can at least stay immature!

»www.pbase.com/jaykaykay

Re: NBC Website Hacked

Sat, 23 Feb 2013 12:06:21 EDT

HarryH3 posted :

said by StuartMW:

Which is why, in about:config, I've set pdfjs.disabled to true in addition to disabling any and all PDF plugins in the Adds-ons Manager.

Thanks for that. Just made the change here! (I Foxit without its browser plugin to open PDF's).

Re: NBC Website Hacked

Sat, 23 Feb 2013 09:48:17 EDT

DownTheShore posted : I have Pale Moon (a FF iteration) set to use PDF-XChange Viewer, and that is set to open up outside the browser, and I don't have javascript enabled in it.

Re: NBC Website Hacked

Fri, 22 Feb 2013 18:56:02 EDT

StuartMW posted :

said by Mele20:

Plus, not everyone sets their browsers to block reported attack sites.

Re: NBC Website Hacked

Fri, 22 Feb 2013 18:46:07 EDT

Mele20 posted : Mozilla blocked access to nbc.com during the attack (as did Chrome and Facebook). BUT during that window of time before Mozilla began blocking the site, a user with the latest Fx and internal PDF turned on, may have been vulnerable. Plus, not everyone sets their browsers to block reported attack sites. It is not clear to me whether or not Mozilla blocked nbc.com regardless of the user's settings or not.

I have never allowed PDF to be read in a browser. Firefox's internal PDF is using HTML5 so I don't know if it was vulnerable or not to this exploit. Even if not.....what about the next time? I continue to download PDF to disk, scan and THEN open in Evince which is little used on Windows (works great though) so less likely to be attacked by exploits.

»hitmanpro.wordpress.com/2013/02/···malware/
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson

Re: NBC Website Hacked

Fri, 22 Feb 2013 17:52:02 EDT

Cthen posted :

said by jaykaykay:

:uhh: As the time goes by and more and more sites are hacked, meaning more and more computers are affected, it just might mean that ultimately we will all have to go back to the way things were before computers! Can anyone remember back that far?

How do you figure that might happen? Because of things like this? Sorry but all of you who keep spouting off things like this always forget the one thing that always makes that very untrue.

It's that there are way too many businesses out there making way too much money that will never allow that to happen.... ever.

Cash is king, even on the internet. ;)
--
"I like to refer to myself as an Adult Film Efficienato." - Stuart Bondek

Re: NBC Website Hacked

Fri, 22 Feb 2013 14:48:03 EDT

StuartMW posted :

said by AVD:

is it a vulnerability in the PDF protocal or the adobe (or foxit) renderer?

No idea but if you don't allow PDF's to be automatically displayed then no vulnerability can be exploited :D

I manually (right-click, Save As...) files I want (including PDF's). If I noticed a PDF I hadn't downloaded I wouldn't try and open it even if it is called "free prize" or similar. I'm not that naive.
--
Don't feed trolls--it only makes them grow!

Re: NBC Website Hacked

Fri, 22 Feb 2013 14:35:31 EDT

AVD posted :

said by StuartMW:

said by Sindows 7:

Now FF has PDF built in...so it begins....

Which is why, in about:config, I've set pdfjs.disabled to true in addition to disabling any and all PDF plugins in the Adds-ons Manager.

is it a vulnerability in the PDF protocal or the adobe (or foxit) renderer?
--
* seek help if having trouble coping
--Standard disclaimers apply.--

Re: NBC Website Hacked

Fri, 22 Feb 2013 14:30:25 EDT

StuartMW posted :

said by jaykaykay:

...we will all have to go back to the way things were before computers! Can anyone remember back that far?

Yes. I think you mean like above :D
--
Don't feed trolls--it only makes them grow!

Re: NBC Website Hacked

Fri, 22 Feb 2013 14:22:32 EDT

StuartMW posted :

said by Sindows 7:

Now FF has PDF built in...so it begins....

Which is why, in about:config, I've set pdfjs.disabled to true in addition to disabling any and all PDF plugins in the Adds-ons Manager.
--
Don't feed trolls--it only makes them grow!

Re: NBC Website Hacked

Fri, 22 Feb 2013 14:13:17 EDT

jaykaykay posted : :uhh: As the time goes by and more and more sites are hacked, meaning more and more computers are affected, it just might mean that ultimately we will all have to go back to the way things were before computers! Can anyone remember back that far?

Re: NBC Website Hacked

Fri, 22 Feb 2013 13:42:05 EDT

moonpuppy posted : Reminds me of the thread I started when Fox News had a similar exploit on their site.

»foxnews.com infected?

Re: NBC Website Hacked

Fri, 22 Feb 2013 13:31:09 EDT

Sindows 7 posted : The exploit kit delivered one of two exploit files to try to take control over your browser via a Java vulnerability or a PDF bug

Now FF has PDF built in...so it begins....

Re: NBC Website Hacked

Fri, 22 Feb 2013 09:55:55 EDT

siljaline posted : Some background on the event from ESET:
»www.welivesecurity.com/2013/02/2···4-hours/

NBC Website Hacked

Fri, 22 Feb 2013 07:53:47 EDT

TheJoker posted : Looks like NBC's website is the latest to fall victim to a hack, and it was apparently giving an extra unwanted gift of malware. NBC’s home page and others were affected, including the pages of Jay Leno and Jimmy Fallon. See more here:
»nakedsecurity.sophos.com/2013/02···malware/
--
Proud ASAP member since 2005
Microsoft MVP/Consumer Security 2009-2010