dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
1387
share rss forum feed


TheJoker
Premium,VIP,MVM
join:2001-04-26
Charlottesville, VA
kudos:5

2 recommendations

NBC Website Hacked

Looks like NBC's website is the latest to fall victim to a hack, and it was apparently giving an extra unwanted gift of malware. NBC’s home page and others were affected, including the pages of Jay Leno and Jimmy Fallon. See more here:
»nakedsecurity.sophos.com/2013/02···malware/
--
Proud ASAP member since 2005
Microsoft MVP/Consumer Security 2009-2010


siljaline
I'm lovin' that double wide
Premium
join:2002-10-12
Montreal, QC
kudos:17
Some background on the event from ESET:
»www.welivesecurity.com/2013/02/2···4-hours/


Cartel
Premium
join:2006-09-13
Chilliwack, BC
kudos:2
The exploit kit delivered one of two exploit files to try to take control over your browser via a Java vulnerability or a PDF bug

Now FF has PDF built in...so it begins....

moonpuppy

join:2000-08-21
Glen Burnie, MD
reply to TheJoker
Reminds me of the thread I started when Fox News had a similar exploit on their site.

»foxnews.com infected?


jaykaykay
4 Ever Young
Premium,MVM
join:2000-04-13
USA
kudos:24
Reviews:
·Cox HSI
·Speakeasy
reply to TheJoker
As the time goes by and more and more sites are hacked, meaning more and more computers are affected, it just might mean that ultimately we will all have to go back to the way things were before computers! Can anyone remember back that far?


StuartMW
Who Is John Galt?
Premium
join:2000-08-06
Galt's Gulch
kudos:3
reply to Cartel
said by Cartel:

Now FF has PDF built in...so it begins....

Which is why, in about:config, I've set pdfjs.disabled to true in addition to disabling any and all PDF plugins in the Adds-ons Manager.
--
Don't feed trolls--it only makes them grow!


StuartMW
Who Is John Galt?
Premium
join:2000-08-06
Galt's Gulch
kudos:3

3 recommendations

reply to jaykaykay
said by jaykaykay:

...we will all have to go back to the way things were before computers! Can anyone remember back that far?

Yes. I think you mean like above
--
Don't feed trolls--it only makes them grow!


AVD
Respice, Adspice, Prospice
Premium
join:2003-02-06
Onion, NJ
kudos:1
reply to StuartMW
said by StuartMW:

said by Cartel:

Now FF has PDF built in...so it begins....

Which is why, in about:config, I've set pdfjs.disabled to true in addition to disabling any and all PDF plugins in the Adds-ons Manager.

is it a vulnerability in the PDF protocal or the adobe (or foxit) renderer?
--
* seek help if having trouble coping
--Standard disclaimers apply.--


StuartMW
Who Is John Galt?
Premium
join:2000-08-06
Galt's Gulch
kudos:3
said by AVD:

is it a vulnerability in the PDF protocal or the adobe (or foxit) renderer?

No idea but if you don't allow PDF's to be automatically displayed then no vulnerability can be exploited

I manually (right-click, Save As...) files I want (including PDF's). If I noticed a PDF I hadn't downloaded I wouldn't try and open it even if it is called "free prize" or similar. I'm not that naive.
--
Don't feed trolls--it only makes them grow!


Cthen

join:2004-08-01
Detroit, MI
Reviews:
·Verizon Wireless..
reply to jaykaykay
said by jaykaykay:

As the time goes by and more and more sites are hacked, meaning more and more computers are affected, it just might mean that ultimately we will all have to go back to the way things were before computers! Can anyone remember back that far?

How do you figure that might happen? Because of things like this? Sorry but all of you who keep spouting off things like this always forget the one thing that always makes that very untrue.

It's that there are way too many businesses out there making way too much money that will never allow that to happen.... ever.

Cash is king, even on the internet.
--
"I like to refer to myself as an Adult Film Efficienato." - Stuart Bondek

Mele20
Premium
join:2001-06-05
Hilo, HI
kudos:5
reply to Cartel
Mozilla blocked access to nbc.com during the attack (as did Chrome and Facebook). BUT during that window of time before Mozilla began blocking the site, a user with the latest Fx and internal PDF turned on, may have been vulnerable. Plus, not everyone sets their browsers to block reported attack sites. It is not clear to me whether or not Mozilla blocked nbc.com regardless of the user's settings or not.

I have never allowed PDF to be read in a browser. Firefox's internal PDF is using HTML5 so I don't know if it was vulnerable or not to this exploit. Even if not.....what about the next time? I continue to download PDF to disk, scan and THEN open in Evince which is little used on Windows (works great though) so less likely to be attacked by exploits.

»hitmanpro.wordpress.com/2013/02/···malware/
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson


StuartMW
Who Is John Galt?
Premium
join:2000-08-06
Galt's Gulch
kudos:3
said by Mele20:

Plus, not everyone sets their browsers to block reported attack sites.

I turned that feature off since it was constantly reporting a (bookmarked) forum site I visit from time to time as an attack site. I looked into it and it was reported because some posts contained links to malware. Since I'm not dumb enough to click on them anyway I turned off the feature.

It was nice of Mozilla to hold my hand though. I felt all warm'n'fuzzy
--
Don't feed trolls--it only makes them grow!


DownTheShore
RIP tmpchaos
Premium
join:2003-12-02
Beautiful NJ
kudos:14
reply to TheJoker
I have Pale Moon (a FF iteration) set to use PDF-XChange Viewer, and that is set to open up outside the browser, and I don't have javascript enabled in it.

HarryH3
Premium
join:2005-02-21
kudos:3
Reviews:
·Suddenlink
reply to StuartMW
said by StuartMW:

Which is why, in about:config, I've set pdfjs.disabled to true in addition to disabling any and all PDF plugins in the Adds-ons Manager.

Thanks for that. Just made the change here! (I Foxit without its browser plugin to open PDF's).


jaykaykay
4 Ever Young
Premium,MVM
join:2000-04-13
USA
kudos:24
Reviews:
·Cox HSI
·Speakeasy
reply to Cthen
That was never in question, but.... Grrrrrrrr. One of these days, I will wake to find that I am really not who I think I am and that my gender and all I know will be wrong. I will have been hacked! Never did I ever think that I would personally be you or someone else, but thanks to computers and the ease of use as well as the dollars made from what can be done with them, I am now a commodity. How disgusting and most unquieting.

End or rant. I am now off my soap box!
--
JKK

Age is a very high price to pay for my maturity. If I can't stay young, I can at least stay immature!

»www.pbase.com/jaykaykay



AVD
Respice, Adspice, Prospice
Premium
join:2003-02-06
Onion, NJ
kudos:1
reply to StuartMW
said by StuartMW:

said by Mele20:

Plus, not everyone sets their browsers to block reported attack sites.

I turned that feature off since it was constantly reporting a (bookmarked) forum site I visit from time to time as an attack site. I looked into it and it was reported because some posts contained links to malware. Since I'm not dumb enough to click on them anyway I turned off the feature.

It was nice of Mozilla to hold my hand though. I felt all warm'n'fuzzy

should have set it up as an exception instead..
--
* seek help if having trouble coping
--Standard disclaimers apply.--