Początkowo opublikowane przez Azza ☠:

Początkowo opublikowane przez Generation X:

Maybe I can agree with u on this, but id rather have russian spy onme then a american lol, maybe norton spys on ppl? THey says NSA created bit coin and all that crap. Look up 2008 white paper on cryptocurrency that can go back to 3 nsa employees from 1996 theorized.... Japanese guys name translates to central intelligence. NExt question is why would they create this? Simple answer if you have the intelligence...

I'm a security expert (it's my job) and even I use Kaspersky (traced it's packets) and there was zero proof or concern.

Kaspersky has a Cloud Network Protection, which you need to 'enable' (disabled by default). That calls it's home server, checking your files, allowing zero day protection of new virus threats. That's the only security/privacy concern. It's a joke that US Government bans Kaspersky for that. When Microsoft themselves has their own cloud network enabled by default (and you have to go via 10 pages of privacy settings to disable it in Win 10).

Talk about bias.

I dont use any cloud ♥♥♥♥, I dont mind Dr Web. But i turn off all other stuff MS, everything, google

Początkowo opublikowane przez Generation X:

Początkowo opublikowane przez Azza ☠:

I'm a security expert (it's my job) and even I use Kaspersky (traced it's packets) and there was zero proof or concern.

Kaspersky has a Cloud Network Protection, which you need to 'enable' (disabled by default). That calls it's home server, checking your files, allowing zero day protection of new virus threats. That's the only security/privacy concern. It's a joke that US Government bans Kaspersky for that. When Microsoft themselves has their own cloud network enabled by default (and you have to go via 10 pages of privacy settings to disable it in Win 10).

Talk about bias.

I dont use any cloud ♥♥♥♥, I dont mind Dr Web. But i turn off all other stuff MS, everything, google

I just find it extremely amusing...

I have to go: Settings > Additional > Additional protection tools settings

Enable "Kaspersky Security Network"

(where there's a big block of text telling you what it is and what it does, plus links to a privacy page and learn more about cloud protection page)

Even claims - "Kaspersky Security Network does not collect or process user's personal data."

Click "Enable" button will popup with another confirm box, with a "Kaspersky Security Network Statement". This clearly tells you about every single piece of information they will be collecting from your PC and the reasons why. Stuff such as file names, sizes, paths, checksums (MD5, SHA2-256, SHA1), vendors, signatures, and files integrity, etc.

Then you have to "Agree" to that. Only after I do all that, do I notice data packets going off to their home base.

It's like the most clearest possible privacy warning I've ever seen. Then you compare that to US morals and privacy.... Blahahhaaa you gotta be joking. Yeah, lets ban Kaspersky, they are the real threat of privacy.

ps: Kaspersky has a vulnerability scanner which checks other apps/plugins/etc, which detected CCleaner's 5.33 issue and provided the solution too:
https://threats.kaspersky.com/en/vulnerability/KLA11105/

Uh-oh...

Well, I hope I had 64-bit version running, because it was 5.33.

What a BonziBuddy of cleaning software...

Początkowo opublikowane przez OCDavid:

Uh-oh...

Well, I hope I had 64-bit version running, because it was 5.33.

What a BonziBuddy of cleaning software...

oh this infection only present on the 32 bit version.
XD

i did not read that, i saw the ver. compare it with mine, and i rush to update it.

i was using CCleaner 64 bit, no wonder Eset did not pick anything up.

Początkowo opublikowane przez Azza ☠:

Początkowo opublikowane przez Generation X:

I dont use any cloud ♥♥♥♥, I dont mind Dr Web. But i turn off all other stuff MS, everything, google

I just find it extremely amusing...

I have to go: Settings > Additional > Additional protection tools settings

Enable "Kaspersky Security Network"

(where there's a big block of text telling you what it is and what it does, plus links to a privacy page and learn more about cloud protection page)

Even claims - "Kaspersky Security Network does not collect or process user's personal data."

Click "Enable" button will popup with another confirm box, with a "Kaspersky Security Network Statement". This clearly tells you about every single piece of information they will be collecting from your PC and the reasons why. Stuff such as file names, sizes, paths, checksums (MD5, SHA2-256, SHA1), vendors, signatures, and files integrity, etc.

Then you have to "Agree" to that. Only after I do all that, do I notice data packets going off to their home base.

It's like the most clearest possible privacy warning I've ever seen. Then you compare that to US morals and privacy.... Blahahhaaa you gotta be joking. Yeah, lets ban Kaspersky, they are the real threat of privacy.

ps: Kaspersky has a vulnerability scanner which checks other apps/plugins/etc, which detected CCleaner's 5.33 issue and provided the solution too:
https://threats.kaspersky.com/en/vulnerability/KLA11105/

I dont use kasp anyways

No advertising allowed

Początkowo opublikowane przez Penguin Thing:

No advertising allowed

WHo is advertising?
No backseat modding especially if your clueless

Początkowo opublikowane przez Penguin Thing:

No advertising allowed

No, no, no. Wrong use here.

Początkowo opublikowane przez Anna Kist:

But... I trusted you, CCleaner! :-(

Oh well, I had the 64-bit version installed, so my computer should be STD-free.

same, i was panicking for nothing. XDDD

i didn't realize it was only for 32 bit version XD

Początkowo opublikowane przez 888 SIH is malware now:

Początkowo opublikowane przez Anna Kist:

But... I trusted you, CCleaner! :-(

Oh well, I had the 64-bit version installed, so my computer should be STD-free.

same, i was panicking for nothing. XDDD

i didn't realize it was only for 32 bit version XD

It's probably actually how they bypassed the check.

A malicous middle man just fudged the 32-bit version, then added a 600 second delay to it's execution too, as well as having speccy.piriform (IP: 216.126.225.148) as a faked trusted host under the SSL certificate.

The checks: 32-bit only > 600 second delay (10 minutes) > User must be admin

That would affect only a very small percentage. Any lazy testing on security however, it would go unnoticed.

ps: The traced malicious host (now secured) was a server is the USA. I'm gonna assume it was the malcious NSA and ban them from my dumbass government, haha.

Początkowo opublikowane przez Azza ☠:

Początkowo opublikowane przez 888 SIH is malware now:

same, i was panicking for nothing. XDDD

i didn't realize it was only for 32 bit version XD

It's probably actually how they bypassed the check.

A malicous middle man just fudged the 32-bit version, then added a 600 second delay to it's execution too, as well as having speccy.piriform (IP: 216.126.225.148) as a faked trusted host under the SSL certificate.

The checks: 32-bit only > 600 second delay > User must be admin

That would affect only a very small percentage.

ps: The traced malicious host (now secured) was a server is the USA. I'm gonna assume it was the malcious NSA and ban them from my dumbass government, haha.

hmm... or it was an inside job went wrong.
cos kinda weird only 32bit got infected.

Początkowo opublikowane przez 888 SIH is malware now:

Początkowo opublikowane przez Azza ☠:

It's probably actually how they bypassed the check.

A malicous middle man just fudged the 32-bit version, then added a 600 second delay to it's execution too, as well as having speccy.piriform (IP: 216.126.225.148) as a faked trusted host under the SSL certificate.

The checks: 32-bit only > 600 second delay > User must be admin

That would affect only a very small percentage.

ps: The traced malicious host (now secured) was a server is the USA. I'm gonna assume it was the malcious NSA and ban them from my dumbass government, haha.

hmm... or it was an inside job went wrong.
cos kinda weird only 32bit got infected.

Like I was saying... it's not wierd, rather a smart way of trying to hide it's detecting during the security checks before distributing.

It's nothing new either. A trusted companies software can be infected by it's software distributors. It's normally a malicious employee of the distributor involved, just near the final stages of public release. In this case, it appears to of been bypassed by an Avast distributor (the backdoor was signed off by their own SSL certificate).

A company like themselves would have little to no reason. Unless they don't wish to be a company for long. Why bite the hand that feeds you?

Początkowo opublikowane przez Azza ☠:

Początkowo opublikowane przez 888 SIH is malware now:

hmm... or it was an inside job went wrong.
cos kinda weird only 32bit got infected.

Like I was saying... it's not wierd, rather a smart way of trying to hide it's detecting during the security checks before distributing.

It's nothing new either. A trusted companies software can be infected by it's software distributors. It's normally a malicious employee of the distributor involved, just near the final stages of public release.

A company like themselves would have little to no reason. Unless they don't wish to be a company for long. Why bite the hand that feeds you?

yeah, that's what i mean, without a malicious employee, how can the files get infected from official download link.

Początkowo opublikowane przez 888 SIH is malware now:

Początkowo opublikowane przez Azza ☠:

Like I was saying... it's not wierd, rather a smart way of trying to hide it's detecting during the security checks before distributing.

It's nothing new either. A trusted companies software can be infected by it's software distributors. It's normally a malicious employee of the distributor involved, just near the final stages of public release.

A company like themselves would have little to no reason. Unless they don't wish to be a company for long. Why bite the hand that feeds you?

yeah, that's what i mean, without a malicious employee, how can the files get infected from official download link.

Back not so long ago, it was Chinese programmers affected... They actually used an illegal priated version of development software, infecting their own apps on the Apple Store. The software developers themselves where compromised (giving the hacker full access to compilation tools and signing off certificates, applying software update, etc). Slaps forehead.

The employee wasn't himself malicious, but rather due to questionable downloads he had done for the tools he uses regularly. That was pretty popular software too, RIP. Saved $1000 off software development tools, lost $280,000 or more due to it.

Początkowo opublikowane przez Azza ☠:

Początkowo opublikowane przez 888 SIH is malware now:

yeah, that's what i mean, without a malicious employee, how can the files get infected from official download link.

Back not so long ago, it was Chinese programmers affected... They actually used an illegal priated version of development software, infecting their own apps on the Apple Store. The software developers themselves where compromised (giving the hacker full access to compilation tools and signing off certificates, applying software update, etc). Slaps forehead.

The employee wasn't himself malicious, but rather due to questionable downloads he had done for the tools he uses regularly. That was pretty popular software too, RIP.

never used iphone, but yeah RIP.

a lost trust is harder to regain.