AVENUE VIET Forum Index AVENUE VIET
An Online Community
 
AlbumAlbum   FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 
The views expressed herein are the writers' own and do not necessarily reflect those of the webmasters, administrators and moderators of this forum. Refer to the complete disclaimer.
The Internet - Info, Tips and Warnings
Goto page Previous  1, 2, 3  Next
 
Post new topic   Reply to topic    AVENUE VIET Forum Index » L'Avenue
View previous topic :: View next topic  
Author Message
inkling7
Admin Pro Tem


Joined: 01 Jun 2008
Posts: 6662
Location: Australia

PostPosted: Tue Jan 16, 2018 2:05 am    Post subject: The Internet - Info, Tips and Warnings Reply with quote

Our govt sends them to us if they have our email addresses so I forward them all on to our
Fearless Leader who can then decide if they are relevant to people outside Australia. Most scams seem worldwide though don’t they... super grin
_________________
The Grumpiest Old Woman on Ave Viet.....
Back to top
View user's profileSend private message
Drifter



Joined: 27 Oct 2005
Posts: 282

PostPosted: Thu Jan 18, 2018 11:34 pm    Post subject: The Apple ‘Text Bomb’ Bug Reply with quote

Found this in Newsweek:

What Is Apple ‘Text Bomb’ Bug? This Simple Message Crashes iPhones and Macs
By Anthony Cuthbertson

A software developer has discovered a new bug within Apple software that causes iPhones and Macs to crash if they receive a message containing a specific website link.

Abraham Masri posted about the flaw, which he named ChaiOS, on Twitter with a copy of the link included in the tweet. Masri added in the post: “Do not use it for bad stuff.”

The link leads to a website that Masri created, which contains hundreds of thousands of unnecessary characters within its metadata. The nature of the link means that it is not necessary for people to click on it for it to cause issues with their device.

Security researchers have noted that despite the bug’s name, it is relatively harmless to iPhone and Mac users and is most useful as a way of “pranking” contacts.

“Something about the so-called ChaiOS bug’s code gives your Apple device a brainstorm,” cybersecurity expert Graham Cluley said in a blogpost detailing the vulnerability. “Ashamed about the mess it gets itself in, Messages decides the least embarrassing thing to do is crash.”

Cluley adds: “Nasty. But, thankfully, more of a nuisance than something that will lead to data being stolen from your computer or a malicious hacker being able to access your files.”

It is possible that the bug could prevent an iPhone user from running Messages on the device, though it is possible to fix this by either deleting the thread that the link was sent in, resetting the iPhone to factory settings, or blocking the domain of the site hosting it.

It is not the first time a developer has discovered a software bug that causes iPhones to crash simply as a result of receiving a text message.

This time last year, YouTube channel Everything Apple Pro published details about a crash message bug that caused iPads and iPhones running iOS 10.1 or below to crash.

Read more: iPhoneX release reveals the human cost of Apple’s most expensive iPhone ever

The four-character message—a white flag symbol, followed by a zero, followed by a rainbow emoji, followed by a hidden character called a variation selector—allowed people to freeze the devices of their contacts by sending the message to people running the older mobile operating system.

“It’s almost scary how much power it puts in your hand,” said the host of the YouTube channel Everything Apple Pro. “You can literally send a text message to any iPhone user on iOS 10 right now, it doesn’t matter if it’s Obama, it doesn’t matter if it’s your best friend…as soon as they receive this text on their phone, their phone will immediately hang, freeze and crash.”

http://www.newsweek.com/what-apple-text-bomb-bug-simple-message-crashes-iphones-and-macs-784325?
_________________
Drifting around the world
Back to top
View user's profileSend private message
Drifter



Joined: 27 Oct 2005
Posts: 282

PostPosted: Mon Jan 22, 2018 3:35 pm    Post subject: Facebook May Bit Be Good for Democracy Reply with quote

This is not about Security on the Net, but, well, it's related. super grin

SORRY ’BOUT THAT
Facebook Admits: ‘Can’t Guarantee’ We’re Good for Democracy

Facebook conceded Monday that social media may not be entirely good for democracy but said it is working to prevent interference in elections by outside actors—from Russia or others. “I wish I could guarantee that the positives are destined to outweigh the negatives, but I can’t,” said Samidh Chakrabarti, Facebook’s product manager for civic engagement, adding that the company has a “moral duty to understand how these technologies are being used and what can be done to make communities like Facebook as representative, civil, and trustworthy as possible.” Facebook has previously admitted that, in advance of the 2016 election, Russian agents created at least 80,000 posts with false or misleading information, which reached about 126 million people in just two years. Despite the company’s attempts to combat such interference, Chakrabarti said the “battle will never end.” He added, “Misinformation campaigns are not amateur operations. They are professionalized and constantly try to game the system. We will always have more work to do.”

https://www.reuters.com/article/us-facebook-politics/facebook-says-it-cant-guarantee-social-media-is-good-for-democracy-idUSKBN1FB14G?via=newsletter&source=CSAMedition
_________________
Drifting around the world
Back to top
View user's profileSend private message
Internaute



Joined: 28 Dec 2007
Posts: 572

PostPosted: Fri Jan 26, 2018 2:26 am    Post subject: Install Windows Updates now to avoid being exploited Reply with quote

Install Windows Updates now to avoid being exploited: Alert Priority High

[b]Install Windows Updates now to avoid being exploited


Microsoft today released a monthly collection of security updates that address vulnerabilities in Windows, Office, Silverlight, Windows Server, Internet Explorer and Edge. Three of the vulnerabilities patched in this update were part of the same group of vulnerabilities stolen from the NSA and exploited to spread the WanaCry ransomware last month.

Due to what Microsoft describes as “an assessment of the current threat landscape” and a “heightened risk of exploitation” they have also released security updates for older, usually unsupported platforms, such as Windows XP. Read the Microsoft Security Advisory guidance for these updates.

What to do now

If these updates haven’t been installed automatically on your Windows computers already, or if you postponed the installation when prompted, install them now.

Note: If you have automatic updates enabled and are using a supported platform such as Windows 7, Windows 8.1 or Windows 10 you should not need to take additional action. Read the guidance from Microsoft for these platforms.

Important: If you are using an older, unsupported platform, such as Windows XP, Vista, Windows 8 or Windows Server 2003, use this guidance to manually download and install the relevant security update. Ideally update your system to use a currently supported version of Windows.

Details

Security updates fix vulnerabilities or weaknesses in computer systems that attackers may try to use to gain unauthorised access or to perform other malicious activity.

Several of the vulnerabilities addressed by this update are ranked 'critical' and could potentially allow an attacker to gain control of an affected system.

In related news, security researchers from SophosLabs have just published research detailing how quickly new Microsoft Office vulnerabilities are exploited by criminals after they become public. Their research illustrates just how important it is to install updates as soon as they become available.

Staying safe

Windows Update provides the latest security and other important updates from Microsoft automatically for supported platforms (including updates for Microsoft Office, Internet Explorer and Edge). Automatic updates are turned on by default in Windows 10, and you can switch automatic updates on for Windows 7 and 8.1. Refer to Windows Update for information on how to do this.

If you are using an older, unsupported version of Windows, such as Vista or XP, we strongly recommend updating to a more recent, and more importantly, supported version. Supported versions of Windows receive free regular security updates that are necessary to keep you safe online.

More information

Stay Smart Online has more information on updating software, including how to automate updates.

The information provided here is of a general nature. Everyone's circumstances are different. If you require specific advice you should contact your local technical support provider.
_________________
Surfing the Web


Last edited by Internaute on Fri Jan 26, 2018 2:30 am; edited 1 time in total
Back to top
View user's profileSend private message
Internaute



Joined: 28 Dec 2007
Posts: 572

PostPosted: Fri Jan 26, 2018 2:29 am    Post subject: Malicious emails impersonate Origin Energy Reply with quote

Malicious emails impersonate Origin Energy: Alert Priority High
Apparently happening all over the world with different energy suppliers too (*)

Malicious emails impersonate Origin Energy

Several media outlets have reported that a new scam email campaign impersonating Origin Energy has been targeting Australians this week.

What to do now

If you think you have received one of these deceptive emails, do not open it and do not click on the orange ‘View bill’ button.

Delete the email and if you are in any way unsure contact Origin Energy using the contact details from their website.

Details

According to security company MailGuard, who wrote about the malicious emails on their blog, they appear to be bills from Origin Energy and feature the utility company’s distinctive branding. These fake bills also feature variable amounts and due dates and attempt to run a malicious script when clicked on.

These emails are well-crafted and appear convincing, possibly making them more likely to persuade well-meaning Origin customers to follow their instructions.

If you did click on the button and you think you may have downloaded the malicious script,run a full scan of your computer using your anti-virus software and consider restoring your computer and its precious data from backup. Learn more about restoring your data and what to do if you’ve been a victim of malicious software.

Origin Energy confirmed that they were also aware of these emails via their Twitter account.

Staying safe

Origin Energy provides detailed information on their website on how to tell a real Origin message from a fake one and what to do if you think you’ve received a fake one.

Stay Smart Online also provides information on how to protect yourself when using email but generally, don’t open or click on links in email from people or organisations you don’t know or are not expecting, and use a spam filter and anti-virus software to protect yourself from being exposed to deceptive and malicious messages.

(*) Yes it does happen all over the world. I've seen it in the US and in France, among others. Here in the States, ConEdison and other power companies have warned their customers against responding to call, letters, emails, or opening the door to someone claiming to be from them (the power company) without calling for confirmation first. Calling the number on your genuine bill, not the number given by the scammers.
_________________
Surfing the Web
Back to top
View user's profileSend private message
inkling7
Admin Pro Tem


Joined: 01 Jun 2008
Posts: 6662
Location: Australia

PostPosted: Fri Jan 26, 2018 3:32 am    Post subject: Power company and vendors scams Reply with quote

I don’t have an account with them but I derived some shares in the company but I never open emails lo,e this as they are usually from companies that I don’t have an account with and realise they are just fishing in case I do... Australia Post was also suffering from a a scam where an email saying your had an uncollected package waiting and to call them but they don’t do that.They leave a card if you are not home telling to to come with I’d to the post office to collect it.. if you have ordered something and they get your email address they will send an email saying which day it will be delivered etc. which convenient as you also get a tracking number. This has been convenient for me just recently so I know to have someone here to get the parcel if I need to go out for a bit.
_________________
The Grumpiest Old Woman on Ave Viet.....
Back to top
View user's profileSend private message
Internaute



Joined: 28 Dec 2007
Posts: 572

PostPosted: Sat Jan 27, 2018 2:42 am    Post subject: Telephone scams Reply with quote

We talked about on-line Internet scams, but let's not forget Telephone scams, which we covered in this thread:

http://www.avenueviet.com/forums/viewtopic.php?t=5352
_________________
Surfing the Web
Back to top
View user's profileSend private message
Internaute



Joined: 28 Dec 2007
Posts: 572

PostPosted: Sat Jan 27, 2018 2:45 am    Post subject: Beware ransomware Reply with quote

Beware ransomware. Keep safe by applying software updates and backing up offline and offsite regularly: Alert Priority High

A ransomware campaign has impacted a number of organisations globally, including the UK’s National Health Service.

Ransomware is malicious software that makes data or systems unusable until the victim makes a payment.

We are continuing to monitor the situation closely. If you have been affected by the Wanacry ransomware, you can report the incident to the Australian Cybercrime Online Reporting Network (ACORN).

ACORN provides information on how to recognise and avoid common forms of cybercrime, such as hacking, online scams, online fraud, identity theft, attacks on computer systems and illegal or prohibited content, as well as offering advice to those who have fallen victim.

ACORN makes it easier and more convenient to report cybercrime to a law enforcement agency.

More information

You can find more information about the Wanacry ransomware at https://www.acsc.gov.au/ransomware-campaign-impacting-organisations-globally.html

For more information about protecting yourself from ransomware, please visit www.staysmartonline.gov.au.

Businesses

Individuals

The information provided here is of a general nature. Everyone's circumstances are different. If you require specific advice you should contact your local technical support provider.
_________________
Surfing the Web
Back to top
View user's profileSend private message
Internaute



Joined: 28 Dec 2007
Posts: 572

PostPosted: Sat Jan 27, 2018 2:47 am    Post subject: Update on WanaCry global ransomware incident Reply with quote

Update on WanaCry global ransomware incident
Alert Priority High

The Australian Government is aware of a large-scale ransomware campaign that has impacted organisations globally.

We recommend Australian businesses, households and individuals take steps now to protect their computers, networks and devices.

The Australian Cyber Security Centre (ACSC) has been engaging with Australian businesses and industry sectors over the weekend to ensure they are aware of the threat and have taken appropriate measures.

A small number of businesses have reported likely infection and there will likely be more cases in days to come.

The situation continues to be monitored closely and advice for individuals and organisations will be updated on the ACSC website (www.acsc.gov.au) as required.

Recommended action:
    Immediately install the latest updates for applications and operating systems, especially Microsoft Windows.
    Confirm that backups are available and working.
    If you have been affected by the WanaCry ransomware, report the incident to the Australian Cybercrime Online Reporting Network (ACORN).

What is ransomware?
Ransomware is a type of malicious software (malware) that makes your computer or its files unusable unless you pay a fee (a ransom).

Ransomware is one of the most frequent and damaging types of malware affecting people today. It can affect both individuals and organisations alike, and can impose significant costs – in both recovery and down time.
_________________
Surfing the Web
Back to top
View user's profileSend private message
Internaute



Joined: 28 Dec 2007
Posts: 572

PostPosted: Sat Jan 27, 2018 2:49 am    Post subject: Does your business use Intel’s AMT? Then keep reading! Reply with quote

Does your business use Intel’s AMT? Then keep reading!

Last week we reported on Intel, ARM and AMD processor vulnerabilities that could allow cybercriminals to steal personal data from computer systems.

Now researchers have discovered a new flaw that affects devices using Intel’s Active Management Technology (AMT). The flaw could allow security controls such as BIOS or Bitlocker passwords to be bypassed if someone got physical access to a device using AMT. This would allow a cybercriminal to later gain remote access to the compromised laptop.

AMT is a management feature of Intel products that enables administrators to remotely manage devices. The feature is found on devices such as laptops, desktops and servers.

Staying safe
If you don’t need AMT, you should disable it in the device BIOS straightaway.

If you do need it, change the default ‘admin’ password to something that is hard to guess. Read our tips for creating strong passwords.

We also recommend corporate laptops are never left out of a user's sight, especially in public places such as airports.

More information
For more information on keeping your business safe visit Stay Smart Online
_________________
Surfing the Web
Back to top
View user's profileSend private message
Display posts from previous:   
Post new topic   Reply to topic    AVENUE VIET Forum Index » L'Avenue All times are GMT - 5 Hours
Goto page Previous  1, 2, 3  Next
Page 2 of 3

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © phpBB Group