Serious Discussion What are the most common attack vectors for Home users?

L

LennyFox

Level 7
Jan 18, 2024
307
TairikuOkami said:
Click on the link! Followed by VBScript and PowerShell 5. At least MS is finally deprecating VBScript, if only they would do the same with PS5.
Click to expand...
I understand your complaint about keeping obsolete scriptors alive in Windows so long for backward compatibility reasons.

In SWH the default for SRP to block risky file extensions running (vbs, hta, jar, etc) was to apply to standard users only. In WHHL the deafult is to apply these to Admins also. This proofs no home user needs them anymore (otherwise @Andy Ful would not have made this change).

Therefor I fully agree with you. In stead of keeping all those old version scriptors alive for backward compatibility reasons, the default should be to disable them for home users and allow admins to enable them through group policy when they need it.
 
  • Like
  • +Reputation
Reactions: I Walk MY Way, TairikuOkami, Gandalf_The_Grey and 1 other person
Azazel

Azazel

Level 5
Thread author
Jun 15, 2023
226
LennyFox said:
@Azazel

The low paranoia solution is blocking risky file extensions in user folders (old SWH). When you add this to Defender or Avast free, it is really hard to get infected.
Click to expand...
Do you believe cyberlock will be sufficient for these or simple windows hardening could a good addition to cyberlock?
 
Digmor Crusher

Digmor Crusher

Level 23
Verified
Top Poster
Well-known
Jan 27, 2018
1,265
Do not use Cyberlock and Simple Windows Hardening at the same time. One or the other is all you need.
 
Practical Response

Practical Response

Level 7
Mar 10, 2024
339
Azazel said:
What it's best to look out for.
Click to expand...
Social Engineering. This sums it up now days. The perps need to "and the key words are " (trick you/allow) their infection privileges.
Be diligent in scanning documents and files that you have downloaded before execution, check those website addresses before clicking them, same with links/URLs on social media, email, ect, upload them to Virus Total and check them.

Keep all your personal stuff backed up on external devices, do this incrementally. Create system images store offline as well as a "just in case".

Chances that Trinity from Matrix will hack your network and router as a home user are quite slim, you are not lucrative enough for a skilled hacker to chance on you.

As another forum member around here states "stay safe but not paranoid" ;)
 
  • Like
  • +Reputation
Reactions: roger_m, wat0114, Azazel and 2 others

Similar threads

MuzzMelbourne
    • Like
    • +Reputation
3 Common Initial Attack Vectors Account for Most Ransomware Campaigns
Replies
0
Views
1,069
News Archive
MuzzMelbourne
MuzzMelbourne
Andy Ful
    • Like
    • +Reputation
    • Thanks
  • Sticky
Serious Discussion WHHLight - simplified application control for Windows Home and Pro.
Replies
255
Views
17,441
Hard_Configurator Tools
Andy Ful
Andy Ful
O
Ask about Crypto What are the most common ways cryptocurrency accounts are hacked and ways of protection?
Replies
1
Views
482
Cryptocurrency Discussions
Bot
Bot

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top