Don's Pages and my Music

Tuesday, February 3, 2015

Virus Malware info - Adobe Flash Zero-Day Exploit Used in Malvertisement Adds - Flash Player faces its third zero-day flaw in a month, updates coming 02-03-15


More Vulnerabilities, found int Adobe Flash. Zero-Day Exploits Used in Malvertisement Adds. Flash Player faces its third zero-day flaw in a month, updates coming 02-03-15. These effect Windows, Mac and Linux. I'm thinking... Probably Phone OS's too...

The Screen Shots, above. Will take you through, some of the Settings I did on my System. Maybe, it will help you find them in your System too. And give you some ideas, on how to set up your Adobe Flash, for better Security... If I missed something, let me know, in the comments...

So, after I read through the info I found (links below).
I opened up the Adobe Control App, in my Fedora Linux System (my daily use system). And checked to make sure I have the latest version of Flash available on this machine. Flash is no longer putting out anything, except "Security Updates" for Linux OS's. And I knew, that I had updated Flash, week. But, I wanted to make sure, that I had what ever updates. Adobe has put out, right now. I'll put some screen shots, of the App above and info. It should be pretty much the same in Windows, too. I am up to date, now. And I set Adobe Flash, to Ask, before downloading anything to my System. I also run AdBlock Plus in Firefox and Chrome. So, that should help, by Blocking most of the Adds that could be infected. And I have Firefox and Chrome, set to Ask, before running Flash. There is a New Open Source Flash Player for Linux, called Lightspark. It is supposed to work with the Newer Flash. Lightspark is an LGPLv3 licensed Flash player and browser plugin written in C++/C that runs on Linux. It aims to support Adobe's newer Flash formats and AVM2 virtual machine. I have it installed on my System. But, It may not be in use. Unless I uninstall, Adobe Flash. I believe, that Adobe, is the first App, that Firefox goes to, when it sees a Flash File. I may just try uninstalling Adobe Flash, soon. Since it's security, just keeps on getting worse and worse. Not to mention, how Adobe Flash constantly Slows Down my System, to a crawl. When it runs many of the Flash Files on the Internet. Everything from Adds to Videos, do this... And there is also, Gnash. Which only works with older Flash files. Gnash is based on GameSWF, and supports most SWF v7 features and some SWF v8 and v9. So, Gnash wont play any new Flash Videos. It has stayed behind, Adobe Flash Releases, eve since I found it, in 2005 or 2006. It can be useful for playing Flash Files, Games, that you have on your System. So, I keep it installed, but don't really use it, much, these days...

Don

Adobe FAIL: Yet another Flash 0-day vuln 'sploited in wild | Computerworld

This is the first Article, that I read today on this issue. Notice, in the ScreenShot, below. The Irony of their Web Site Wanting to Run Adobe Flash, on my System!:)

Don



Read the Article (it is a good informative article)...
http://www.computerworld.com/article/2878998/adobe-fail-yet-another-flash-0-day-vuln-sploited-in-wild-itbwcw.html?phint=newt%3Dcomputerworld_dailynews&phint=idg_eid%3Da75ca0c9e9b0ccbcb70fe4bcd3704f1b#tk.CTWNLE_nlt_dailyam_2015-02-03&siteid=&phint=tpcs%3D&phint=idg_eid%3Da75ca0c9e9b0ccbcb70fe4bcd3704f1b


Virus Malware info - Adobe Flash Zero-Day Exploit Used in Malvertisement Adds - Flash Player faces its third zero-day flaw in a month, updates coming 02-03-15


Adobe FAIL: Yet another Flash 0-day vuln 'sploited in wild | Computerworld
adobe flash nes zero day - Google Search
Trend Micro Discovers New Adobe Flash Zero-Day Exploit Used in Malvertisements
Analyzing CVE-2015-0311: Flash Zero Day Vulnerability
CVE - CVE-2015-0311
Hackers Abuse Another Adobe Zero-Day To Attack Thousands Of Web Users - Forbes
News Flash! 3rd time unlucky! New 0-day hits Adobe's browser plug-in… | Naked Security
Another Flash Zero Day Emerges | Threatpost | The first stop for security news
Another Unpatched Adobe Flash Zero-Day vulnerability Exploited in the Wild - Hacker News
Another Flash Zero-Day Found: How to Protect Yourself
Adobe gets second Flash zero-day patch ready 2 days early! | Naked Security
Adobe Update Nixes Flash Player Zero Day — Krebs on Security
adobe flash nes zero day CVE-2015-0313 - Google Search
New Adobe Flash Vulnerability - CVE-2015-0313 - Internet Security | SANS ISC
A Closer Look at the Exploit Kit in CVE-2015-0313 Attack | IT Security News
Exploit Kit | IT Security News
Adobe Security Bulletin
New Flash Player Zero-Day Exploited in the Wild on Dailymotion.com - Softpedia
adobe flash nes zero day CVE-2015-0313 Open Source News - Google Search
Flash Player faces its third zero-day flaw in a month, updates coming | Computerworld

Flash Players - Open Source Lightspark aims to support Adobe's newer Flash formats and AVM2 virtual machine - Gnash Plays Older Flash Files


lightspark | SourceForge.net
lightspark | SourceForge.net
Lightspark
Site Support · lightspark/lightspark Wiki · GitHub
Lightspark project files : Lightspark
GNU Gnash - GNU Project - Free Software Foundation (FSF)
Questions : Lightspark
Adobe info
Adobe - Flash Player : Settings Manager
Adobe - Flash Player : Settings Manager - Website Storage Settings panel
Flash Player by Adobe
Adobe - Adobe Flash Player
Flash Player by Adobe
Adobe - Adobe Flash Player
Adobe - Adobe Flash Player
Flash Player for Linux will only be available through a new "Pepper" API as a part of Google Chrome
[chrome] Index of /trunk/src/ppapi
ppapi - Pepper Plugin API - Google Project Hosting
NPAPI:Pepper - MozillaWiki
Adobe Flash For Linux Will Only Be Available For Chrome ~ Web Upd8: Ubuntu / Linux blog

Virus info Linux and Windows
'Neverquest' trojan threatens online banking users - Computerworld
A First Look at the Target Intrusion, Malware — Krebs on Security
Abusing JSONP with Rosetta Flash
Adobe patches critical flaws in Flash Player and AIR - Computerworld
Adobe Releases Fix for Two Shockwave Player Vulnerabilities | Digital Trends
Anti-rootkit utility TDSSKiller
Anti-rootkit utility TDSSKiller
Antivirus scan for 5cb14d0745d7b09bcbeba3114cc06c5f at UTC - VirusTotal
Antivirus scan for 90d519d99771363325b6bc5c7e9a9a6e5b8e04092053d24fa362aca6e33523f8 at UTC - VirusTotal
Antivirus scan for aca4fc340cb1530ec41ddddc832833dd0d777d7d44f1b66205675d6f8ec29197 at UTC - VirusTotal
Apple patches OS X to protect against POODLE | Computerworld
aswMBR
AVAST 2014 | Download Free Antivirus Software for Virus Protection
AVAST 2014 | Download Free Antivirus Software for Virus Protection
avast! blog » Linux Trojan "Hand of Thief" ungloved
avast! Linux Home Edition
Best Free Antivirus Software
Best Free Antivirus Software
Best Free Antivirus Software
Best Free Antivirus Software
Best Free Intrusion Prevention and Detection Utility for Home Use (HIPS)
Best Free Rootkit Scanner and Remover
Best Free Rootkit Scanner and Remover
Best Free Rootkit Scanner and Remover
Best Free Rootkit Scanner and Remover
Best Security List - Google Custom Search on DonsDeals Blog
best security list 2013 - Search on DonsDeals Blog
best secutriy list - Google Custom Search on DonsDeals Blog
Bug bounty program outs 7-month-old IE zero-day - Computerworld
cd00r - Google Search
cD00r Knocking backdoor (improved) | Fun Over IP
Clam AntiVirus
Clam AntiVirus
ClamWin CD/USB - HowTo
COMMUNITY - Free access - CLOUD ANTIVIRUS
Comodo - Google Search
Computer worm - Wikipedia, the free encyclopedia
crafted.win32file.ols - Google Search
CrowdStrike: HTTP iframe Injecting Linux Rootkit
CryptoLocker - Wikipedia, the free encyclopedia
CryptoLocker Encryption Cracked. How To Get Your Files Back.
Cyberspies Posing As Hacktivists Waged Cyberattacks To Steal South Korean, U.S. Military Intel
DEFCON 16: Malware RCE: Debuggers and Decryptor Development - YouTube
DonsDeals: Avast! AntiVirus For Both Window and Linux Home Edition
DonsDeals: BBC NEWS | Programmes | Click | BBC team exposes cyber crime risk
DonsDeals: Best Free Rootkit Scanner/Remover
DonsDeals: Conficker Worm Called An Epidemic
DonsDeals: CrowdStrike - HTTP iframe Injecting Linux Rootkit (Vrius info)
DonsDeals: Download Comodo System-Cleaner
DonsDeals: Facebook Users Targeted By Fake Virus Alert
DonsDeals: Firewall & Antivirus Software Suite - Internet Security | Comodo
DonsDeals: Free Agent: Linux Firewalls and Antivirus--Needed or Not? - PCWorld
DonsDeals: Free Desktop PC Security - Free Downloads Keep your PC Safe | Comodo
DonsDeals: Immunet v2 update on the way: adds multi-engine malware and virus scanning to cloud-powered core
DonsDeals: Jotti's malware scan
DonsDeals: Linux users be Aware of this Trojan - Hand of Thief malware could be dangerous (if you install it) - TechRepublic
DonsDeals: M86 Security Finds URL Filters Anti Virus Scanners Ineffective
DonsDeals: New Kneber Botnet Tied To 75 000 Systems
DonsDeals: PC Hell: Free RootKit Removal Tools and Software
DonsDeals: Privacy = Security and Security = Privacy...
DonsDeals: Probably the best free security list in the world
DonsDeals: Probably the Best Free Security List in the World
DonsDeals: Probably the Best Free Security List in the World - Updated 28. August 2012
DonsDeals: Re: Viruses now penetrating deeper | Tech News on ZDNet
DonsDeals: Setting up Avast Antivirus to Protect your Windows PC...
DonsDeals: ‪TDL4 MBR Rootkit Virus Alureon TDSS Removal by Britec‬‏ - YouTube
DonsDeals: The first Linux botnet? | ITworld
DonsDeals: There are Viruses, Trojans, Worms and Rootkits, that can infect a Linux OS
DonsDeals: Trinityhome : New TRK 3.4: easier than ever before
DonsDeals: Updated Conficker Ropes Victims into Rogue Antivirus Scam
DonsDeals: VirSCAN.org - Free Multi-Engine Online Virus Scanner v1.02, Supports 37 AntiVirus Engines!
Download Enhanced Mitigation Experience Toolkit 4.1 from Official Microsoft Download Center
download rescue iso - Search results on kapersky.com
Download RogueKiller (Official website)
Download System-Cleaner
Dr.Web Virusscan [CureIt!]
Edit - Nimbus Screen Capture
EMET mitigations guidelines
Empathy | Michal Strehovský: home
Fake Antivirus Targets Firefox | PCWorld
FAQ - VirusTotal
File scan results from Metascan Online | Free virus scanning tool
File scan results from Metascan Online | Free virus scanning tool
FireEye - Fox IT Scanner
Firewall & Antivirus Software Suite - Internet Security | Comodo
Firewall | Download Free Firewall Software From Comodo
Free AntiVirus & Anti-Rootkit & Anti-Malware | Free Web Filtering | Free VPN | Free IPSec | Free FortiClient
Free Antivirus | Download Free Virus Protection Software from Comodo
Free Antivirus for Windows - Open source GPL virus scanner
Free Antivirus Software - Download Bitdefender Antivirus Free
Free Virus Scan, Free Virus Protection, Antivirus Software | McAfee Security Scan
Gizmo's - Best Free Intrusion Prevention and Detection Utility for Home Use (HIPS) | Gizmo's Freeware
GMER - Rootkit Detector and Remover
Google Translate - http://www.chkrootkit.org/download.htm
Hand of a Thief malware targets Linux users' bank accounts | Apps and Software | Geek.com
Hand of Thief malware could be dangerous (if you install it) - TechRepublic
Heartbleed was just the beginning as more vulnerabilities appear - TechRepublic
How do you tell if your computer has a virus
How to create a Kaspersky Rescue Disk using Kaspersky Internet Security 2014
How to Detect Rootkits on a Computer | eHow.com
How to Protect Your Linksys Router from TheMoon Malware | Digital Trends
How to secure your ISPConfig 3 server against the poodle SSL attack | HowtoForge - Linux Howtos and Tutorials
IE10 under attack as hackers exploit zero-day bug - Computerworld
Java gets sneaky with Ask Toolbar piggyback install | WindowsObserver.com
Jotti's malware scan
KlamAV
KlamAV - ClamAV for KDE | Free Development software downloads at SourceForge.net
klamav - Google Search
KlamAV GUI Screen Animation
Linux Today - Hand of a Thief malware targets Linux users' bank accounts
Linux Virus - Google Custom Search on DonsDeals Blog
Lynis
Malware in Ad Networks Infects Visitors and Jeopardizes Brands
Massive botnet takedown stops spread of Cryptolocker ransomware - Computerworld
McAfee Security Scan Plus | McAfee Free Tools
Metascan Online | Free file scanning with multiple antivirus engines
Microsoft misses Windows bug, hackers slip past patch | Computerworld
Microsoft plans monster security update for next week | Computerworld
Microsoft Rushes to Fix Browser After Attacks; No Fix for XP Users - NYTimes.com
Microsoft tells Windows 10 users to uninstall Office | Computerworld
More than 30 vulnerabilities found in Google App Engine | Computerworld
Network Security – Virus Alerts | McAfee Threat Center
Neverquest banking malware more dangerous than Zeus trojan - TechRepublic
Neverquest Trojan: Built to Steal from Hundreds of Banks | We use words to save the world | Kaspersky Lab Official Blog
New Flavor of Ransomware Is More User Friendly
New Linux Rootkit Emerges | threatpost
New Malware Targets Linksys Routers
News | VirusBlokAda
Online banking faces a new threat - Securelist
online virus scan file upload - Google Search
Outpost Security Suite FREE — The first Free Complete Internet Security Suite
Panda Cloud Antivirus – Download the best free antivirus and the first free antivirus from the cloud
Patch alert: Update browsers' Flash ASAP to block log-on theft - Computerworld
PATCH NOW: NTP vulns remotely exploitable. Sploits in wild already | Computerworld
Patch Tuesday updates aim for Exchange and Explorer flaws | Computerworld
PC Security, PC Internet Security, Free Desktop PC Security Protection
Powerful Free Microsoft Security Tool EMET has Been Updated
Powerful Free Microsoft Security Tool EMET Now in Version 4.1 Update
Probably the Best Free Security List in the World