mindlight

joined 1 year ago
[–] mindlight@lemm.ee 154 points 6 months ago (2 children)

PCWorld:

Microsoft’s latest Windows update breaks VPNs, and there’s no fix

What Microsoft actually said:

Windows devices might face VPN connection failures after installing the April 2024 security update, or KB5036893. We are working on a resolution and will provide an update in an upcoming release

I'm so fed up with everyone trying to make a quick buck on our constant struggle to stay safe.

[–] mindlight@lemm.ee 14 points 6 months ago (1 children)

TIL that Silicon Graphics still exists...

[–] mindlight@lemm.ee 10 points 7 months ago* (last edited 7 months ago) (3 children)

That chart doesn't say anything about system resource usage.

Edit: found the performance chart now. Still no explanation on what performance tests(more than two sentences) they performed and how the scoring was applied.

[–] mindlight@lemm.ee 14 points 7 months ago (5 children)

Interesting. Do you have links that support your claims that I can read up on?

[–] mindlight@lemm.ee 0 points 7 months ago

Yeah, that was you continuing to show how inexperienced you are.

For a remote exploit to work the computer or device has to expose ports to the network your computer is connected to.

"Remote" means that the vulnerability does not require local access. So if your friend connects his infected device to your wifi, all devices connected to the same network essentially are at risk, depending on what's listening on the devices and what vulnerabilities they have.

Your idea about avoiding bad websites is ridiculous. History is full of examples where third party ads had been created to infect one way or another. That's ads that users on legitimate site were exposed to. That's just one little example. There have been numerous examples of malicious sleeping JavaScript code that suddenly wakes up and contacts it's command-and-control server and then download malicious JavaScript code to unknowing site visitors.

Furthermore, you didn't understand my question. Of course antivirus is able to stop malware it recognizes that enters through a remote exploit. The user with antivirus would at least have a chance of knowing that something was up each time and attempt to infect was made.

You on the other hand would sit there clueless with your little zombie computer and laugh at all them script kiddies.

But hey... You just continue trying to infect others around you with bad security advice and have a good day. I'm outta here.

[–] mindlight@lemm.ee 0 points 7 months ago* (last edited 7 months ago) (2 children)

I explained what a remote exploit was and gave examples of remote exploits.

Are you claiming that antivirus isn't able to detect malware entering through an remote exploit?

[–] mindlight@lemm.ee 0 points 7 months ago (4 children)

Either you're just ignorant or your working in the Russian malware industry.

Remote exploits doesn't have anything to do with you running any infected executables. It's about vulnerabilities in executables that you are running. Read up on the zx vulnerability or the log4j vulnerability.

One really really old attack vector is a buffer overflow attack. For example, if you're running a clean VLC to watch a movie and your VLC is older than version 3.0.12 you're at risk. The video file, that you "purchased" on PirateBay, could have been manipulated to crash VLC and force VLC run a specific payload in the video file. If that payload is ransomware it's game over for you.

Yeah, just like wearing a seatbelt doesn't guarantee that you don't get injured, antivirus doesn't guarantee that your computer won't get infected.

But there's no doubt about the usefulness of both seatbelt and antivirus.

[–] mindlight@lemm.ee 2 points 7 months ago* (last edited 7 months ago) (7 children)

I fully agree.

But my main point was that they're taking an extreme risk if they're running without active antivirus and access the network in one or another way.

[–] mindlight@lemm.ee 0 points 7 months ago (9 children)

Yes. But the discussion was about not running any since it killed performance.

[–] mindlight@lemm.ee 1 points 7 months ago* (last edited 7 months ago) (11 children)

If your computer is network connected you really really need antimalware running. In theory, a game server could be exploited and controlled to inject malware into game clients ( = you playing online).

If you use a browser to access internet, there has been malware infected ads that infect your computer when you visit legitimate web sites.

If you get infected, the malware most likely won't do anything that makes you notice it. It all depends what the purpose of the malware is.

Ransomware? Then it stays hidden until it has encrypted all your files and then it pops up telling you to pay or you won't be able to use your computer.

Collecting useful passwords? Getting full access to your Steam account is nice. Got some awesome weapons and armor in the MMORPG you play? That's something they theoretically would script to be able to steal from you.

Or maybe the malware just stays hidden for now, contacting it's control center now and then to see if there is any instructions.

Malware is business. The people behind it are businessmen and you are part of what they sell.

If you have a fairly modern computer there shouldn't be that much impact on the performance.

[–] mindlight@lemm.ee 4 points 7 months ago (13 children)

You don't want to have any active scanning for threats, like antivirus? If so, why?

[–] mindlight@lemm.ee 0 points 7 months ago (1 children)

How do you get new furniture into your house?

Our way, since I'm a Windows and Linux user, of adding applications is a remnant from the old times. We have left the age where computers are maintained by men in white coats and powerful computers took up while buildings.

Apples way is more intuitive since it mimics how it most often works in the real world.

Computers should adapt to humans, not the other way around.

view more: ‹ prev next ›