Thanks Admin. Looks like I should be OK. I do get email from Google when I log in on a previously unknown device. No, there is nothing in the G Drive that granny wouldn't approve of. Thanks again.
- Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
- Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!
Have I been hacked here?
Collapse
X
-
Public Service Posting by the BBC - Bloggs Bulls**t Corp.
Officially CUK certified - Thick as f**k. -
Originally posted by Lance View Postthere's some new malware that extracts passwords from your browser. I've not read into it too much yet as been busy.
https://www.us-cert.gov/ncas/alerts/TA18-201ADown with racism. Long live miscegenation!Comment
-
Originally posted by NotAllThere View PostBest to not allow your browser save your passwords for that reason. Lastpass and keypass seem ok free password managers.Public Service Posting by the BBC - Bloggs Bulls**t Corp.
Officially CUK certified - Thick as f**k.Comment
-
Originally posted by NotAllThere View PostBest to not allow your browser save your passwords for that reason. Lastpass and keypass seem ok free password managers.
I downloaded a tool called WebBrowserPassView. It's one of the tools used by the malware I posted.
I was surprised to see that it slurped, and displayed in clear text, all my browser passwords without challenging me for admin rights. At the very least I'd expected UAC to prompt me.
Only Edge browser wasn't available for this tool. whether that's due to improved security or the tool not having been altered yet I don't know.
Not sure about password managers that keep the data in the cloud though. I'm a huge fan of cloud except for storing passwords. I use 1Password as that keeps me in control of the encrypted DB.
Either way though don't store passwords in the browser....See You Next TuesdayComment
-
The desire to watch porn died with my boyish good looksbloggoth
If everything isn't black and white, I say, 'Why the hell not?'
John Wayne (My guru, not to be confused with my beloved prophet Jeremy Clarkson)Comment
-
Best to not allow your browser save your passwords for that reasonbloggoth
If everything isn't black and white, I say, 'Why the hell not?'
John Wayne (My guru, not to be confused with my beloved prophet Jeremy Clarkson)Comment
-
Originally posted by NotAllThere View PostBest to not allow your browser save your passwords for that reason. Lastpass and keypass seem ok free password managers.
So I assume the malware described works for browsers that try to reuse the same password-saving mechanism across platforms, such as Firefox and maybe Chrome.
Or perhaps it affects IE and/or Edge, though I would have thought they integrate with Windows' equivalent of the system keychain after the manner of MacOS.Comment
-
I could be wrong and talking complete balls. But I'm sure when I installed LastPass it imported my login/passwords from my browser. I remember thinking that doesn't seem very secure.
It could just be one of those cool story bro moments though.Comment
-
Originally posted by woohoo View PostI could be wrong and talking complete balls. But I'm sure when I installed LastPass it imported my login/passwords from my browser. I remember thinking that doesn't seem very secure.
It could just be one of those cool story bro moments though.'CUK forum personality of 2011 - Winner - Yes really!!!!Comment
-
Originally posted by woohoo View PostI could be wrong and talking complete balls. But I'm sure when I installed LastPass it imported my login/passwords from my browser. I remember thinking that doesn't seem very secure.
It could just be one of those cool story bro moments though.
https://www.theverge.com/2017/3/22/1...flaw-passwords
And just for giggles:
https://www.securityweek.com/macos-h...in-access-flaw
If it isn't nailed down, somebody's gonna nab it.Don't believe it, until you see it!Comment
- Home
- News & Features
- First Timers
- IR35 / S660 / BN66
- Employee Benefit Trusts
- Agency Workers Regulations
- MSC Legislation
- Limited Companies
- Dividends
- Umbrella Company
- VAT / Flat Rate VAT
- Job News & Guides
- Money News & Guides
- Guide to Contracts
- Successful Contracting
- Contracting Overseas
- Contractor Calculators
- MVL
- Contractor Expenses
Advertisers
Contractor Services
CUK News
- Streamline Your Retirement with iSIPP: A Solution for Contractor Pensions Sep 1 09:13
- Making the most of pension lump sums: overview for contractors Sep 1 08:36
- Umbrella company tribunal cases are opening up; are your wages subject to unlawful deductions, too? Aug 31 08:38
- Contractors, relabelling 'labour' as 'services' to appear 'fully contracted out' won't dupe IR35 inspectors Aug 31 08:30
- How often does HMRC check tax returns? Aug 30 08:27
- Work-life balance as an IT contractor: 5 top tips from a tech recruiter Aug 30 08:20
- Autumn Statement 2023 tipped to prioritise mental health, in a boost for UK workplaces Aug 29 08:33
- Final reminder for contractors to respond to the umbrella consultation (closing today) Aug 29 08:09
- Top 5 most in demand cyber security contract roles Aug 25 08:38
- Changes to the right to request flexible working are incoming, but how will contractors be affected? Aug 24 08:25
Comment