Beware Russians Bearing Outdated Ukrainian Software

ByHenry Neufeld December 30, 2016

I have been testing Wordfence as my primary security for WordPress sites, and I have been getting more positive about it as I go along. I will almost certainly use the free version on my more minor sites and probably the Pro version on a couple of major ones. In any case, what they do is security. They study Malware and defend against it, and I have thus far found them competent at that task.

They analyzed the released government data on Russian hacking. One should remain aware that it is unlikely that the government released all data in their possession, but one would assume they would release data that points clearly to the culprits. But we should be aware that any conclusion is based on a subset of the data.

Here is the conclusion of the rather lengthy (and interesting) article on the Wordfence blog:

The IP addresses that DHS provided may have been used for an attack by a state actor like Russia. But they don’t appear to provide any association with Russia. They are probably used by a wide range of other malicious actors, especially the 15% of IP addresses that are Tor exit nodes.

The malware sample is old, widely used and appears to be Ukrainian. It has no apparent relationship with Russian intelligence and it would be an indicator of compromise for any website.

Hmmm.

Computer Security

Good Post on Ransomware

ByHenry Neufeld September 27, 2016

How to beat ransomware: prevent, don’t react, from MalwarebytesLabs. The one thing I would add to this article is further emphasis on backup. I can’t emphasize it enough. No matter how attentive you are, you cannot absolutely be certain that you won’t get hit by ransomware. You can be careful, but most people use their…

Cell Phones | Computer Security

You Need to Deal with Computer Security

ByHenry Neufeld January 16, 2017January 15, 2017

There was a time when cars were few and far between and when car theft was essentially unknown. You could leave your car sitting out in your yard or on the street and generally expect to find it there in the morning. Then the automobile came into its own. Many people owned them, and many…

Computer Security | E-mail

Spoofed or Hacked?

ByHenry Neufeld November 23, 2018November 23, 2018

Spoof emails can be convincing if they contain the right information. Further, how do you know whether you have actually been hacked? Here are some tips.

Computer Security | Information Management

Pay Attention to Site Behavior

ByHenry Neufeld August 6, 2008

There’s a story on MSNBC.com about a security vulnerability discovered in DNS servers. Those are the machines that take the name you type into your address bar and convert it into numbers your computer can comprehend. If it converts it into the wrong set of numbers, you go to the wrong place. It would be…

Computer Security

Link: Malware through Hijacked Chrome Extensions

ByHenry Neufeld August 17, 2017

Wordfence is providing another excellent public service announcement, this time regarding hijacked extensions. While the method of attack is interesting, there are a number of important actions recommended in the post. I’d like to call your attention to a few: Don’t trust links in e-mails. As we become used to search bars being combined with…

Computer Security

Smishing

ByHenry Neufeld November 7, 2019

Smishing is sending a faked text to your phone in an attempt to gain personal information. This personal information can be used to gain access to other accounts. Here’s a link with more information. It’s targeted at me, as a service provider, but it provides you with information you need as well.

M	T	W	T	F	S	S
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

Similar Posts

Leave a ReplyCancel reply