Kaspersky Lab Hacked

got a nasty virus a few months ago, downloaded a handful of free anti-virus trials, and kaspersky was the only one to detect anything. PC has been good since. not bad, kaspersky, not bad,
 
cinnamonandgravy said:
got a nasty virus a few months ago, downloaded a handful of free anti-virus trials, and kaspersky was the only one to detect anything. PC has been good since. not bad, kaspersky, not bad,
Click to expand...

I haven't used an antivirus in 10 years. Where do you folks get them viruses anyway? :D
 
B00nie said:
I haven't used an antivirus in 10 years. Where do you folks get them viruses anyway? :D
Click to expand...

Internet porn sites and shady music downloading services. Those seem to be the two biggest from what I have observed. It also seems to largely be a function of impatience on the part of the user(s).
 
Getting hacked with 0-days via Duqu means someone is really pissed-off at Kaspersky. And we have the NSA/CIA and Mossad to thank for it.

Hope we're all feeling much more secure knowing that tax-funded viruses are out there in the wild.
 
Steve said:
Well this must be embarrassing.
Click to expand...
I think it is more embarrassing that some people think anti-virus software makes you invincible and solves all your life' computer problems, and then when they get infected they're all up in rage and "WTF HOW I HAVE ANTIVIRUS THIS IS IMpOSSIBLE"

Maybe it's just a personal issue -- I wish people would be frank and emphasize that anti-virus is not bulletproof and that it is much easier to create destruction and chaos than to reduce or eliminate it. Everything tends toward destruction
 
MrCaffeineX said:
Internet porn sites and shady music downloading services. Those seem to be the two biggest from what I have observed. It also seems to largely be a function of impatience on the part of the user(s).
Click to expand...

I don't know about that. I've seen some things injected into ads on legitimate sites.
 
Cerulean said:
I think it is more embarrassing that some people think anti-virus software makes you invincible and solves all your life' computer problems, and then when they get infected they're all up in rage and "WTF HOW I HAVE ANTIVIRUS THIS IS IMpOSSIBLE"

Maybe it's just a personal issue -- I wish people would be frank and emphasize that anti-virus is not bulletproof and that it is much easier to create destruction and chaos than to reduce or eliminate it. Everything tends toward destruction
Click to expand...

Even with a multilayered approach, with AV, firewall, etc., there are still ways to screw things up. Nothing is 100%. As security gets stronger, the attacks get smarter and bolder. I do what I can, but I know that there is still a chance I can be compromised. Less so than not using what I do, though. Minimize the chances, but know that there is still a chance.
 
I read about this yesterday. The hackers used something similar to STUXNET so there is concern this might be CIA/NSA (or some other intelligence agency).
 
To add, my understanding of STUXNET is that it has to travel through all computers finding the one it needs to infect (and then damage) so, in my opinion, all our computers have been "affected" since "they" went after the IRAN centrifuges. Now, it seems another "STUXNET" has been unleashed and its target was Kaspersky. Or, it was part of the original STUXNET and had a "timer" for Kaspersky. In any case, anti-virus is only good for the "amateur" stuff, it seems.
 
I'm not a target for stuxnet, duqu, Israel, or any intelligence agency.
I run malwarebytes premium (actually lifetime pro, you can still find them on amazon)
Avira AV paid (hate ads on my av) and Malwarebytes Anti-Exploit free and ad-less.
And I recommend my customers do the same.
 
Ur_Mom said:
Even with a multilayered approach, with AV, firewall, etc., there are still ways to screw things up. Nothing is 100%. As security gets stronger, the attacks get smarter and bolder. I do what I can, but I know that there is still a chance I can be compromised. Less so than not using what I do, though. Minimize the chances, but know that there is still a chance.
Click to expand...

This.

Pretty much the same message that is being echoed at all the big name security conferences this year. Prevention is currently impossible. While security fundamentals are still a must, focus needs to shift to detect and respond.
 
amddragonpc said:
To add, my understanding of STUXNET is that it has to travel through all computers finding the one it needs to infect (and then damage) so, in my opinion, all our computers have been "affected" since "they" went after the IRAN centrifuges. Now, it seems another "STUXNET" has been unleashed and its target was Kaspersky. Or, it was part of the original STUXNET and had a "timer" for Kaspersky. In any case, anti-virus is only good for the "amateur" stuff, it seems.
Click to expand...

STUXNET spread through USB drives so I highly doubt much more than a few operatives in Iran has it / had it.
 
B00nie said:
I haven't used an antivirus in 10 years. Where do you folks get them viruses anyway? :D
Click to expand...

And have you done any scans since then? What makes you think you don't have 1 or more virus/malware installed on your system? It's not like before where you system started running like shit to let you know something was wrong, so you very well may have had crap running in the background for years.

And there have been plenty of legit sites the injected malware through the ad networks. Most vulnerabilities now are from java/flash, not the OS. So unless you keep those fully up to date all the time (or better yet, uninstalled), there is a good chance you have something and don't realize it.
 
In my opinion the level of dumb out there is catastrophicly high.

Zero day means your signatures won't detect it.

And huteristics only have a chance.

You NEED things like IDS, and IPS appliances in front, and segregated secured network communications to keep things out.

Right now social engineering through ubiquity is the best way to go.

Drop a handful of infected usb drives of different make and types in the parking lot. Someone is going to pick one up and plug it in to see what it is or whos it is. Then boom.. you are in. In many cases that's all it takes.
 
B00nie said:
STUXNET spread through USB drives so I highly doubt much more than a few operatives in Iran has it / had it.
Click to expand...
Well there is a reason CIA computers have rubber cement over usb ports on their computers. There is always one asshat who doesn't follow security protocol.
 
You must log in or register to reply here.
Back
Top