Topic: Beware of Increasingly Sophisticated Malware Infection Attempts - page 45. (Read 860900 times)

Best thing would be to setup a PC to use only for Bitcoin transactions?   

may be one is just forwarding the posts of malware without distinguish, we have to differ according to this article.

So just to be clear, I can hacked without downloading anything but just by visiting a naughty site?  And I should uninstall acrobat, java and flash altogether?  Wow thanks for this information.

Another question, I have Norton 360, but is malwarebytes that much better? 

And thanks for this thread.  Many of us don't know all that much about these threats so thanks for educating us.

Thanks everyone alot of great informative and useful information here! excellent job

How to keep your home computer malware free.
 
How could it happen?
Clicking a link or attachment in email.
Visiting a website that has malware installed. Depending on your browser settings and what plug-ins you have installed (Flash, Java, Acrobat Reader) malicious software could be installed on your computer without out you knowledge.
 
What could happen?
You could loose all the data on your computer.
All the data on your computer could be held for ransom.
Your computer could be used to commit crimes.
Your personal information could be stolen.
Someone could access all of your accounts.
Someone could log everything you type.
Someone could access all the files on your computer.
 
Prevention
Update your operating system and third party applications.
http://secunia.com/vulnerability_scanning/personal/
 
Disable auto run for Plug-Ins
In Google Chrome navigate to chrome://settings/content.
Under Plug-ins select Click to play.
You can add exceptions by going to chrome://settings/content, Plug-ins, and clicking "Manage exceptions..."
 
Use a DNS server that blocks known malicious sites
Symantec https://dns.norton.com/
Comodo https://www.comodo.com/secure-dns/
 
Use Windows Defender on Windows 8 or Microsoft Security Essentials on Windows 7
They are free and affective.
 
Buy and install MalwareBytes Premium and Malware Bytes Anti-Exploit Premium ($25 Each)
 
Be suspicious about links and attachments in emails. Don't click them.
 
Backup your data
Use BitTorrent Sync to sync your data with another computer.
Use and application like Acronis TruImage to make a scheduled backup to an external drive. Get two external drives and rotate them regularly. Keep one copy at a different location.
Use a cloud based backup service like Carbonite, Crashplan or Backblaze.
 
Consider replacing your current router with with a UTM (Unified Threat Management) firewall that has security software built in. Note that most of these are relatively expensive and require ongoing subscriptions.
Example http://www.asus.com/support/FAQ/1008719/

Be careful with remote access to your PC
Don't use VNC to remotely access your PC. Passwords are easily brute forced via automated scanning scripts. For best security consider two-factor authentication.

Yes.. say NO to Java and.. very sneaky redirects.

I get about 1-3 emails a month with a RAT as an attachment. The most recent of which seems to be smart enough to detect they are in a vm. Mostly java based meaning they effect Unix/Linux machines as well as Windows

Keep java off any machine you store crypto on. That should be a no brainer

What makes you say that ?

Is there a way to detect files that have malware binded to them ?

I'm surprised we haven't seen a more concerted effort, honestly.

Or any noob with access to it.

How to detect RAT (remote admin tool) --> https://youtu.be/btn9nWE3X7o

Thanks this was very informative. I guess this forum is a big target for malware developers who want to steal easy crypto money.

Please check your "program files(x86) and the youruser/appdata/local/TEMP folders ! The ASN client is a remote desktop hack !

https://bitcointalksearch.org/topic/m.10951987

I just received something like this an hour ago.  I was surfing Ebay and laughed when I saw PimpCash.  Having to see if it was real, I went to pimpcash.com. Immediately something like what you showed came up.  However, for me, it pretended to be my service provider and gave me a number to call.  I confess I did try to call but the ring didn't sound right.  Sounded like an old telephone.  I hung up and rebooted my computer.  Things seem to be ok now.  I ran a quick scan and all seems to be okay.  Is there anything else I should do to check to see if my computer is okay?

Lol, this was just the beginning, If I can put a keylogger in my 64mb lappy bios.. I can do it with anyone..

Keep in mind this hack was released solely by them to LOCKDOWN your bios so you cant tamper with overclocking your machine.. the security they released after this demonstration is exactly how they get into your bios as only the NSA would LOVE.

Edit: There is need for a new style of bios security, like anti virus, which, when your bios gets bigger, can load in bios FIRST, before bios is loaded.. it's not as hard as you think, but I'm not THAT good..

Thanks for being on top of this and keeping us informed, we do appreciate it!

http://events.ccc.de/congress/2014/Fahrplan/system/attachments/2565/original/speed_racer_whitepaper.pdf

Wow.. this is like so pointless (not the thread, the 'hack') nowadays.. why not just place a keylogger in bios, then no matter what os folks use, you have 100% access to whatever machines are connected?

Edit: Hint: Speedracer.

Yes, that would be one solution.

Would running each wallet/miner in a different virtual machine with virtualbox prevent the effects of this kind of malware?

That's terrible. Anyone of you encountered the ransom cryptolocker? I heard about it not long ago. What is wrong with people?