11 replies to this topic

[Fozzies]

just a little warning, there is a major issue with chrome atm. I wouldnt advise you do the following at all, as the attack happens before you have even clicked on the website. I googled farpointe data, at which point my various security bits went mad. just that, no further interaction needed. some kind of a java exploit it tells me

 

TLDR : google chrome is broken atm, don't use

[Azerra]

is it chrome or java? if you run with no script add on it should stop scripts running through dodgy sites and ads. you can then manually enable them, if you trust site

Edited by Azerra, 14 December 2016 - 05:33 pm.

[Fozzies]

its chrome. if you do the same search using edge, but via google.com, nothing happens

 

 

Edit: and you don't actually need to click on the site, this is purely a google search using google chrome

Edited by Fozzies, 14 December 2016 - 06:01 pm.

[Aumento]

Hi Fozzies

Thanks for this. Can you explain in layman terms for me please? Consequences etc.

Cheers

Edited by Aumento, 15 December 2016 - 10:03 am.

[blackice8r]

I didn't notice it, does this affect chrome on linux too ?

decided microshit and windows can s^ck my b0IIs and been on ubuntu for a month now

[Fozzies]

im no security expert, however these things do interest me, so my explanation may get corrected by someone else here. 

 

Essentially, if you happen to google one of these compromised sites, using google chrome as your browser, you pc will be attacked by a nasty. I have no idea what the nasty will do, likely it will be a trojan type and allow someone remote control of your pc. I also have no idea whether your internet security will pick it up, in my case a symantec business version did, whereas norton, and also bitdefender, didn't. however, malwarebytes pro did protect me on both personal pcs i tried it with

i couldn't replicate it using Microsoft edge as my browser, and google as my search engine, therefore i the nasty is targeting chrome as opposed to just the google search engine

 

Up until recently, malware has mainly infected pc's via infected adverts. That means that to get infected you had to be on an actual website that had a nasty advert appear as you were using it.  This new attack changes the game significantly

[nidriks]

Not saying I don't believe you, but can't find a thing on the internet. Would have thought it'd have been reported somewhere by now.

[Fozzies]

Then do the Google search I mentioned. It was still active 4 hours ago

[blackice8r]

so, we need to google "farpointe data" to trigger this, correct? I tried it now, but got no reaction from my non existent anti-virus (linux)

 

But, I think I know what you are experiencing, the first search result is www.farpointedata.com which has been hacked , if you try to open it the tab closes automatically (chrome protection I believe)

 

Most anti-viruses/anti-malware will have a extension embedded in your browser that does some scanning, it is possible that it will recognise your search result and act on it

Since this is specific for this search result (farpointedata.com  - hacked website) , I believe this is not an issue with Chrome, its just your search result/target and your local protection acting on it.

 

That is not to say any browser is perfect and impossible to exploit/hack, Chrome the least out of them.

[Fozzies]

Nope. As soon as that listing appears in chrome, without clicking on the hacked website, I am attacked

[Insathius]

Shouldn't really affect linux, chromium isn't chrome after all

[blackice8r]

Shouldn't really affect linux, chromium isn't chrome after all

there is chrome for linux man https://www.google.c...rowser/desktop/