#malware psa
Text
Attention: There may be a new scam thing (might also not be new)
Okay so I just got a weird notification from drive telling me I got shared a folder. The name of the folder was suspicious as fuck and thank my gods it was but my guess is that if this is a scam it might not always be the case!
Mine was from someone I'd never heard of and I definitely have not recently asked anyone to share any Google Drive folders or documents or anything with me.
Still, had the folder been titled something more innocent or innocuous, I might have been more inclined to click it or look into it.
So, just a PSA/WARNING to be on the look out for something like this. If you get something unsolicited no matter if it's a folder or a Google doc or anything! If you did not ask someone to share something on Google drive with you, DO NOT OPEN IT.
Instead click the three dots on the folder/document/whatever that are to the right of the item. Find report or block. Make sure you click the first option (I think it's called "spam" or something like that as it includes anything from unsolicited things, to malware, viruses, and phishing attempts.
My guess is that this scam most assuredly falls into one of the last three categories and sometimes just opening the thing can cause the bad thing to take place (i.e. you get the virus or malware or it immediately directs you to the phishing scam). Point is, it doesn't matter. Don't tempt the fates. Just get rid of it and don't look back. Doing what I instructed above will clear it from your drive without you having to take any further steps and insures they won't try to send anything further, at just via that particular account. It's my hope that it also blocks IP addresses and not just the account but that's not a guarantee so stay vigilant as they may try multiple times. So just remember, if you're not expecting something, block and report immediately.
PLEASE REBLOG AND SHARE TO GET THE WORD OUT.
#viruses#virus psa#malware#malware psa#phishing#phishing scam#phishing psa#computer science#computer security#security#psa#scam alert#scammers#scam#please reblog#scam psa
28 notes
·
View notes
Text
SCAM ALERT: Cryptocurrency related but can affect trans people buying HRT. I was probably 10 seconds away from having money stolen and I know what I'm doing. (Crypto Clipper)
Today I was helping a trans friend order some DIY HRT. A lot of DIY HRT places only accept cryptocurrency for security reasons. I am not looking to promote cryptocurrency or anything associated with it, but if you may be forced to use it for HRT or other reasons, you need to know this.
In general if you are forced to use crypto, you should use the cheapest coin your supplier will accept. If it is cheap, that means there is not a lot of activity on the chain and energy use will be less. I used one called Zcash as it was the cheapest one the site accepted but that's not really relevant.
I used an old coinbase account I had used for similar situations in the past. I was doing it on her PC. I got the instructions to pay on the HRT site, and I pasted the wallet address into Coinbase and just before I hit send I noticed the wallet address I had pasted didn't match the wallet address I had copied.
I looked it up and found this is from a form of malware called a Crypto Clipper, that detects when you have copied a crypto address, and makes you paste a different one so it can steal your money. I am lucky I noticed. To remedy it, I installed the free trial of Malwarebytes on her PC to remove malware, and completed the crypto transaction on my PC, and confirmed that the wallet address matched what the HRT site had given me.
I managed to avoid falling for it but it's such an easy thing to fall for, especially if you have avoided crypto thus far for extremely understandable reasons. Be careful out there! It could happen to anyone.
#trans#hrt#trans hrt#diy hrt#crypto#cryptocurrency#bitcoin#scam#scams#psa#important psa#important#virus#malware#cybersecurity
190 notes
·
View notes
Text
VERY IMPORTANT PSA. Please share or repost if you can.
There’s some SERIOUS misinformation spreading around and I was considering reblogging the post to clear it up, but I decided to make my own to explain (and avoid giving it more traction). The image being spread and explanation are under the cut; MAJOR TW for mentions of trafficking and wording that could trigger anxiety or paranoia. Please remember that this image is NOT real.
THIS IS NOT A REAL CONCERN. There is NO sex trafficking ring using this spam text, and spyware CANNOT be installed on a phone simply by clicking a link.
This text is a spam message/notification for a defunct social media app called IRL. Clicking the link would simply take you to the App Store page. The unsolicited messages people claim to get are either spam marketing, incentivized invites from friends, or standard notifications regarding engagement on the app.
Even if IRL was still available, major spyware cannot be downloaded onto a phone through a link. The worst type of crime committed through spam links is credit card theft, and even that is fully dependent on you typing your personal information into a sketchy website. Your phone cannot be “hacked” through a link, and a “tracker” can’t just be installed on your phone by a random third party. Modern phones are equipped with specific protections to keep these things from happening, and phones can’t download malware like a computer can.
Human trafficking and sexual abuse are SERIOUS ISSUES, and it’s extremely disheartening to see a fake version of this being spread around online. The amount of people in the comments of the original post who were genuinely anxious and afraid breaks my heart. Not only is this misinformation harmful to survivors, but it also has the potential to severely worsen people’s anxiety, paranoia, delusions, etc.
Please be responsible and do your research before reposting shocking material.
#tw trafficking#trafficking awareness#malware#misinformation#important psa#psa#social justice#scam alert
22 notes
·
View notes
Text
"Started saying it years ago and folks thought I was just being a troll, but I meant it then and I mean it now:
Google Chrome is malware."
#google chrome#google ads#billions of google users warned over dangerous ‘info email’ – don’t let your bank be emptied#google warns billions over ‘money transfer’ attack that empties your bank – how to spot dangerous message#google#malware#fyi#psa#internet#browser#software#mobile apps#app store#apps#app#cybersecurity#cybernews#cybernetics#cyberattack#cybercore#cyber y2k#cyberpunk#cyber rants#cyberworld#ausgov#politas#auspol#tasgov#taspol#australia
5 notes
·
View notes
Text
IMPORTANT PSA:
IF YOU USE 9ANIME, WCOFUN, OR ANY OTHER PLATFORM TO STREAM YOUR ANIME THAT HAS THOSE ADS THAT TAKE YOU TO ANOTHER TAB, EXIT OUT IF THE AD TAB IMMEDIATELY, I WAS WATCHING ANIME LIKE NOTMAL AND THEN IT POPPED UP AND MY OHONE STARTED LAGGING LIKE CRAZY TO THE POINT I HAD TO HARD RESET!!! PLEASE BE CAREFUL!
#just a psa#tw caps#fr tho#please be safe when using those websites#Like some of those are not joking about malware!
0 notes
Note
on an unrelated-to-my-last-ask note there's like. malware discovered on curseforge and bukkit recently and they're trying to fix it but since minecraft is the subject i felt like i shoulg mention that. (called fractureiser).
Gods, thanks for telling me! I didn't know!
Please check your computers (or tablets) if you installed a mod recently from any of these places!
This website as a list of confirmed compromised mods!!! Please check!!!
120 notes
·
View notes
Text
YoHoHo, It's a New Era of Pirating
I'm sure a lot of us have been ruminating on this lately, but first I want to draw some parallels.
Picture it, the year is 2005 and you are watching a movie you picked out with your grandma at blockbuster during your weekend visit to give your parents a god damned break from your bullshit. Relatable so far yes? You pop that disk in and sit down as grandma makes the popcorn and an odd little PSA comes up between the previews. It's the infamous pirating PSA that compares downloading films to car jacking. So what do you do? You download copious amounts of pirated music onto the computer under your fathers supervision of course, still pretty relatable right?
You have entered the world of media piracy my friend, an old tradition with a rich culture and history. The early 2000's were some wild times, piracy was at its peak, the internet was a lawless land, and the 2008 housing bubble was just around the corner, truly a glorious time.
Now needless to say, publishing companies hated piracy and were desperately trying to curb it but only through legislation through a government that didn't really care. It was already hard enough to catch one pirate so why waste resources to crack down on it. There was an attempted crackdown by the publishers but that completely failed, one infamous case was a grandma who didn't even have a computer.
This age of piracy was only stopped when Itunes and Netflix made their way online. That was only because everything was on these two websites and later also Hulu. The only people who continued to pirate were kids who didn't have money and anime fans. There were two specialized websites just for them.
Everything was going smoothly, until we get to today, now every studio has at least one streaming service and even then there is no guarantee that their own shows would even be up and they're all owned by the same five corporations. Discovery got in trouble not too long ago for deleting their own shows from their own streaming service. Disney still has a backlog to upload onto Disney+, and there are many exclusives between each site. It's very similar to what cable and satellite television was, gotta pay over a hundred dollars and you don't even watch half the channels. These streaming services are getting too specialized, sure it makes business sense especially when you already have a large library or you're just Disney, but when there are obscure TV channels trying to get their own service, you know something's wrong.
Somehow the music industry didn't go the same path, yes Spotify has its problems, especially for musicians, but it is far better than purchasing entire albums or the old piracy methods that always put your computer at risk.
The obvious consequence of all this is that piracy is once again going up once again. Why? Because it is far easier to pirate than it is to figure out which steaming service that Disney owned show you want to watch is on. The only reason Itunes and Netflix originally won was because it was more convenient to actually pay for the things you wanted to see and not have to worry about malware. That's a lesson that these corporations could benefit from again, but they are if anything stubborn.
Now because of the stubbornness of these corporations I will have a lot to talk about, specifically with all sorts of pirating methods, and some fun stories. I already talked about Tengen and their massive swinging balls of steel as they walked into the patent office to steal from Nintendo, but there is so much more. So plenty of legally dubious fun to be had!
31 notes
·
View notes
Text
small psa - do not download any mods for the sims atm, a bunch of ts4script files have been found to contain malware
9 notes
·
View notes
Text
PSA about the .mov/.zip information hazard Google released
If you aunt sent you an email TEN years ago, that contains the sentence, "I put the photos into 'family-photos.🤐.' I hope it worked"
That email can now resolve 'family-photos.🤐' in the text body of the email as a clickable URL link
A malicious actor can (and probably already has) bought the domain 'family-photos.🤐' and configured it to auto-download a malware file titled 'family-photos.🤐'
So now you may go find a 10 year old email, click on a link instead of the attachment, download a file with the expected filename, open it, and BOOM. You have malware
THIS IS ALREADY IMPLEMENTED. THIS CAN HAPPEN TODAY
There should be relatively simple fixes to prevent this exact occurance in old communiques. All you'd need to do is resolve .zip/.mov URL links based on time stamps, but it's a very real new hazard for all new communication.
From a security standpoint so much I can't find a good analogy.
It's like if a real highway did the ACME tunnel and that got approved for construction and finished.
literally this https://youtu.be/4iWvedIhWjM getting approved and finished irl without the comic book physics
Yes the emoji's are deliberate. I don't want those resolving into malicious .zip links if this gets picked up.
36 notes
·
View notes
Text
PSA
I am not kidding.
If you have a blank blog and interact with my posts in any way, I'm blocking you.
If you have a sketchy wierd photo and nothing else on your blog, I'm blocking you.
If you have a sketchy wierd photo and rando bio details with emojis and nothing else on your blog, I'm ... say it with me now ... blocking you.
Okay?
I don't have the patience and I will not risk the possibility of contributing to malware, sketchy links, whatever the fuck ever.
Please set yourself up for success out there.
#i'm so tired of it#this is not what i come here for#i don't need the false follow count or bloated note counts#thanks
27 notes
·
View notes
Text
CURSEFORGE FRACTUREISER MALWARE PSA
For ALL LATEST INFORMATION PLEASE LOOK AT THIS GITHUB PAGE!
tl;dr:
Check that github page on how to see if your PC is infected with malware that has recently been uploaded to Curseforge, and what to do. As of this post it is unclear how far this malware has spread throughout the mods.
Longer version:
on 07/06/2023 it was found that several mods and plugins uploaded to curseforge contained incredibly dangerous malware. This was immediately reported publically by Lunapixelstudio (Responsible for mods such as 'When dungeons arise' and more)
As of right now, they are further investigating the amount of mods affected and are handling the situation. It is recommended to NOT UPDATE YOUR MINECRAFT MODS THROUGH CURSEFORGE FOR THE NEXT COUPLE OF DAYS.
What this virus does is the following:
It hides its code into its target .jar files so that it runs malicious code upon being loaded (stage 0)
It then tries to contact its domain page to download the files necessary for stage 2. (stage 1)
It then opens a port and launches a loop to connect to a server, creating/overwriting a client.jar file. (stage 2)
Stage 3 is the one where the all the malicious things happens. Stage 3 does the following:
Attempts to read clipboard contents
steal microsoft account credentials
scan all .jar files on systems that look like minecraft mods and attempts to infect them with stage 0.
steal cookies & login information
steal cryptocurrency wallets
steal discord credentials
steal microsoft & minecraft credentials
It also will attempt to escape virtual-machine environments when it notices that it is being ran inside one.
Please read the github link at the very top of this post for live updated information on the virus.
14 notes
·
View notes
Text
BOTS
The bots are back. Had to heartstake several lovely ladies today even before finishing my morning coffee.
But there was engagement with one that was different and interesting, so I thought I'd share it.
I reblogged a post about Alexandria's Genesis (the online myth about some disease or condition that causes purple eyes) and at the bottom there was a link to the source, that looked innocuous enough.
Except that it wasn't the source of the post or info – it was a link to a Tumblr blog ("Wives & Girlfriends") that was empty except for a link to what I can only imagine is some kind of porn site ("viasexcams.com").
So it's another way the bots are getting legit users to generate traffic on their dodgy websites I suppose, if a proportion of us click on the second link. More info on my reblog linked here.
A summary of their process:
They first create a harmless-looking blogpost.
There will be a link on that blogpost to another Tumblr blog, purportedly its source.
But that Tumblr blog is only to entice people to click on the link it contains.
Clicking on that (second) link generates traffic for the website it links to, making the website more visible on Google (or worse – clicking on that link could also be a gateway to malware).
I guess I'll be looking out for more sourcelinks at the bottom of reblogs. (That link to the Tumblr blog "Wives & Girlfriends" couldn't be removed as far as I could tell – it wouldn't appear while I was editing the reblog, so I couldn't delete it. But I'm reporting it to Tumblr admin after I post this so dunno if it'll still be up later.)
It's sus that there should be a link to the source anyway, since normally you'd just click on the first Tumblr link in the thread. But the original Tumblr blog account was deactivated, so maybe that's how they send you to a different blog with only one link to a dodgy website, via a sourcelink at the bottom.
Anyway, PSA for this. Anybody else with more info please feel free to weigh in.
The bots are back!
10 notes
·
View notes
Text
hey just a mini piracy PSA but utorrent has malware in it (a bitcoin miner that will fuck w ur CPU) and so im just looking at stuff to get away from torrenting cos i don’t have the time to bother with all that anymore when i can just stick to streaming
and so i thought i should list some really good resources if you’re getting into pirating media or just hate ads/capitalism (as you should)
fmovies - has all the verified fmovies mirror sites
oligopoly - another streaming site
virustotal - check files/urls for malware
ublock origin - the GOAT of adblockers
riseup vpn - free vpn funded by donations
beginner’s guide to piracy - got this from r/freemediaheckyeah which is also a good subreddit it’s more beginner friendly than r/piracy. highly recommend if you want to look into piracy further
anyways no need to be afraid of piracy with these sites they’re already verified by loads of users on r/piracy, windows defender should be enough to protect you. stop paying corporations for media!!!!!
7 notes
·
View notes
Text
cuter than bombarding me w autoplay video ads for sexual exploitation and personal assult games/malware.
Ipm part of #maturecomunity as in explicite kissing in romantic fanfiction and softspoken conversations about goodness and vice.
neither of these things are good for marketing to me on though bc they immediately turn unto neurotoxin when comodified.
but like. idk, memes and psa's. maybe get a gov psa contract for public health info or ODOT or something and u'll have some ad content worth clicking on.
0 notes
Last Seen Blogs
the-dangerous-mute-lunatic
You Dangerous Mute Lunatic
qamera
Qamera
girlsbtrs
Girls Behind the Rock Show
nuggies69
nug_gies