.jpg files cannot give you a virus/malware. Usually it's the site hosting the image that may embed shady code on the page with the picture. Also, sometimes it's code in the various banner/pop up ads.

The SCR (screensaver) file can be exploited into running EXE (executable) code. Hense a malicious person can fake it as an image to display, the web-browser opens it to display and runs code instead, which could place that EXE under your Windows startup to launch each time, etc.

Having an up-to-date Web-browser will prevent this autorun from occuring. These days it will just bring up a prompt to download that image file, with the SCR extention rather than running it. Hense you get a heads up warning and would have to download it manually to your PC, then attempt to run it, in order for it to take any effect. Update your OS and web-browser.

Virus coding can also be stored in images to exploit the viewer. If you are using an old photo viewer, for example, which still has an exploit available in it. Update your photo viewers. Most of the time this is quite harmless these days, commonly just used as a tracker or watermark code. Even the FBI uses this exploit for example injecting a child porn image as bait to see where it goes and who it is shared among.

---

On 11th May 2018 - For several weeks, some readers have complained that clicking on Google Images search results directed them to Web pages that pushed rogue anti-virus scareware via misleading security alerts and warnings. It was being exploited to display fake virus warnings, in an attempt to use scareware tatics to download and purchase a fake anti-virus product.

Google’s Image Search bots eventually will index this bogus content. Currently, ignore any anti-virus download/purchase, and just use trusted anti-virus software.

Messaggio originale di Azza ☠:

The SCR (screensaver) file can be exploited into running EXE (executable) code. Hense a malicious person can fake it as an image to display, the web-browser opens it to display and runs code instead, which could place that EXE under your Windows startup to launch each time, etc.

Having an up-to-date Web-browser will prevent this autorun from occuring. These days it will just bring up a prompt to download that image file, with the SCR extention rather than running it. Hense you get a heads up warning and would have to download it manually to your PC, then attempt to run it, in order for it to take any effect. Update your OS and web-browser.

Virus coding can also be stored in images to exploit the viewer. If you are using an old photo viewer, for example, which still has an exploit available in it. Update your photo viewers. Most of the time this is quite harmless these days, commonly just used as a tracker or watermark code. Even the FBI uses this exploit for example injecting a child porn image as bait to see where it goes and who it is shared among.

---

On 11th May 2018 - For several weeks, some readers have complained that clicking on Google Images search results directed them to Web pages that pushed rogue anti-virus scareware via misleading security alerts and warnings. It was being exploited to display fake virus warnings, in an attempt to use scareware tatics to download and purchase a fake anti-virus product.

Google’s Image Search bots eventually will index this bogus content.

But as long as you don't click on stuff its harmless? What about on android phones?

Messaggio originale di Pee is stored in the balls:

Messaggio originale di Azza ☠:

The SCR (screensaver) file can be exploited into running EXE (executable) code. Hense a malicious person can fake it as an image to display, the web-browser opens it to display and runs code instead, which could place that EXE under your Windows startup to launch each time, etc.

Having an up-to-date Web-browser will prevent this autorun from occuring. These days it will just bring up a prompt to download that image file, with the SCR extention rather than running it. Hense you get a heads up warning and would have to download it manually to your PC, then attempt to run it, in order for it to take any effect. Update your OS and web-browser.

Virus coding can also be stored in images to exploit the viewer. If you are using an old photo viewer, for example, which still has an exploit available in it. Update your photo viewers. Most of the time this is quite harmless these days, commonly just used as a tracker or watermark code. Even the FBI uses this exploit for example injecting a child porn image as bait to see where it goes and who it is shared among.

---

On 11th May 2018 - For several weeks, some readers have complained that clicking on Google Images search results directed them to Web pages that pushed rogue anti-virus scareware via misleading security alerts and warnings. It was being exploited to display fake virus warnings, in an attempt to use scareware tatics to download and purchase a fake anti-virus product.

Google’s Image Search bots eventually will index this bogus content.

But as long as you don't click on stuff its harmless? What about on android phones?

Apple iOS excels more with the security aspect, as it isolates the OS from what apps can do. However, that also limits it's functionality. So long it's up-to-date, it doesn't really need any anti-virus software.

Android phones on the other hand have much more functionality and can link into the Android OS as a side-effect. It's can help to have an anti-virus, such as Kaspersky Mobile, Avast Mobile, Bitdefender, Trend, etc.

Also, if i switch over to a new phone, can a virus transfer over if i download my contacts from google drive? If i had a virus on my phone would i notice it?

Also does factory resetting get rid of viruses and such?

Messaggio originale di Pee is stored in the balls:

Messaggio originale di Azza ☠:

The SCR (screensaver) file can be exploited into running EXE (executable) code. Hense a malicious person can fake it as an image to display, the web-browser opens it to display and runs code instead, which could place that EXE under your Windows startup to launch each time, etc.

Having an up-to-date Web-browser will prevent this autorun from occuring. These days it will just bring up a prompt to download that image file, with the SCR extention rather than running it. Hense you get a heads up warning and would have to download it manually to your PC, then attempt to run it, in order for it to take any effect. Update your OS and web-browser.

Virus coding can also be stored in images to exploit the viewer. If you are using an old photo viewer, for example, which still has an exploit available in it. Update your photo viewers. Most of the time this is quite harmless these days, commonly just used as a tracker or watermark code. Even the FBI uses this exploit for example injecting a child porn image as bait to see where it goes and who it is shared among.

---

On 11th May 2018 - For several weeks, some readers have complained that clicking on Google Images search results directed them to Web pages that pushed rogue anti-virus scareware via misleading security alerts and warnings. It was being exploited to display fake virus warnings, in an attempt to use scareware tatics to download and purchase a fake anti-virus product.

Google’s Image Search bots eventually will index this bogus content.

But as long as you don't click on stuff its harmless? What about on android phones?

Use script blocker for chrome or firefox. You then have to manually enable scripts and only use authentic scripts for the website not adds. Ghostery blocks trackers most spyware and then windows defender.

For every thing else use malwarebytes antimalware to scan if you're unsure. All of these are free. If you're worried about a website best to not go to it if it looks funny or you're not sure.

I use Firefox with those addons for my android and so far I haven't exploded or lost my phone to hax.

Factory resetting can help, so long the OS itself isn't jailbroken and the apps you then install on top aren't questionable privacy risks.

I'll show you something to be aware of:

Go to the Google Play Store and search up a simple app, such as Flashlight. I just want to turn on my camera lens to use as a flashlight right?

Now click on "view details" for permissions.

This app has access to:

- View network connections
- Pair with Bluetooth devices
- Access bluetooth settings
- Full network access
- Access to photos
- Access to views
- Prevent device from sleeping

Now question, why does it need to access your bluetooth, network, and photos...

No not all apps on the Google Play Store are safe, many cheap ones will invade your privacy. This is something Apple Store wouldn't allow, but you can at least check and see on Google Play store before downloading/installing (if you are aware to check).

For example:

https://play.google.com/store/apps/details?id=com.jiubang.fastestflashlight&hl=en

This app has access to:

Device & app history
retrieve running apps

Contacts
read your contacts

Location
approximate location (network-based)

Phone
directly call phone numbers
reroute outgoing calls <--- like wtf!!!
read phone status and identity
Photos/Media/Files
read the contents of your USB storage
modify or delete the contents of your USB storage

Storage
read the contents of your USB storage
modify or delete the contents of your USB storage

Camera
take pictures and videos
Wi-Fi connection information
view Wi-Fi connections

Device ID & call information
read phone status and identity

Other
Access download manager.
control media playback and metadata access
update component usage statistics
modify app ops statistics
receive data from Internet
view network connections
change network connectivity
connect and disconnect from Wi-Fi
disable your screen lock
expand/collapse status bar
pair with Bluetooth devices
full network access
close other apps
run at startup
draw over other apps <--- WHY?!?!!
control vibration
prevent device from sleeping
modify system settings

... yeah... no thanks... rather install a virus.

Messaggio originale di Pee is stored in the balls:

Also, if i switch over to a new phone, can a virus transfer over if i download my contacts from google drive? If i had a virus on my phone would i notice it?

Messaggio originale di Pee is stored in the balls:

Also does factory resetting get rid of viruses and such?

Factory wipes do NOT guaran tee removing a root kit usually but removes most other malware. If things are backed up on Google as long as it's not an executable code you're going to be fine. If you're thinking paranoid I recommend d getting an old rotary phone. No more virus problems.

Messaggio originale di Azza ☠:

Factory resetting can help, so long the OS itself isn't jailbroken and the apps you then install on top aren't questionable privacy risks.

I'll show you something to be aware of:

Go to the Google Play Store and search up a simple app, such as Flashlight. I just want to turn on my camera lens to use as a flashlight right?

Now click on "view details" for permissions.

This app has access to:

- View network connections
- Pair with Bluetooth devices
- Access bluetooth settings
- Full network access
- Access to photos
- Access to views
- Prevent device from sleeping

Now question, why does it need to access your bluetooth, network, and photos...

No not all apps on the Google Play Store are safe, many cheap ones will invade your privacy. This is something Apple Store wouldn't allow, but you can at least check and see on Google Play store before downloading/installing (if you are aware to check).

For example:

https://play.google.com/store/apps/details?id=com.jiubang.fastestflashlight&hl=en

This app has access to:

Device & app history
retrieve running apps

Contacts
read your contacts

Location
approximate location (network-based)

Phone
directly call phone numbers
reroute outgoing calls <--- like wtf!!!
read phone status and identity
Photos/Media/Files
read the contents of your USB storage
modify or delete the contents of your USB storage

Storage
read the contents of your USB storage
modify or delete the contents of your USB storage

Camera
take pictures and videos
Wi-Fi connection information
view Wi-Fi connections

Device ID & call information
read phone status and identity

Other
Access download manager.
control media playback and metadata access
update component usage statistics
modify app ops statistics
receive data from Internet
view network connections
change network connectivity
connect and disconnect from Wi-Fi
disable your screen lock
expand/collapse status bar
pair with Bluetooth devices
full network access
close other apps
run at startup
draw over other apps <--- WHY?!?!!
control vibration
prevent device from sleeping
modify system settings

... yeah... no thanks... rather install a virus.

You basically did and gave it permission lmao

Messaggio originale di Azza ☠:

---

On 11th May 2018 - For several weeks, some readers have complained that clicking on Google Images search results directed them to Web pages that pushed rogue anti-virus scareware via misleading security alerts and warnings. It was being exploited to display fake virus warnings, in an attempt to use scareware tatics to download and purchase a fake anti-virus product.

Google’s Image Search bots eventually will index this bogus content. Currently, ignore any anti-virus download/purchase, and just use trusted anti-virus software.

Wow must be nice to be able to see into the future.

Messaggio originale di Dr. Sam Beckett:

Messaggio originale di Azza ☠:

---

On 11th May 2018 - For several weeks, some readers have complained that clicking on Google Images search results directed them to Web pages that pushed rogue anti-virus scareware via misleading security alerts and warnings. It was being exploited to display fake virus warnings, in an attempt to use scareware tatics to download and purchase a fake anti-virus product.

Google’s Image Search bots eventually will index this bogus content. Currently, ignore any anti-virus download/purchase, and just use trusted anti-virus software.

Wow must be nice to be able to see into the future.

Got the date wrong, sorry typo. It was around last month and should of already been addressed so should no longer be any issues. Good spot thou, cheers.

ps: I do however live a day in the future, UTC +12 timezone here in New Zealand.