Your PC is infected, but is it your fault?

Do you think that malware infection is mostly "your fault" ?

  • Yes

    Votes: 46 70.8%

  • No

    Votes: 12 18.5%

  • I don't have a clear opinion on this

    Votes: 7 10.8%
  • Total voters
    65
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,146
What we call a paranoia for home users, becomes the standard precaution for Enterprises. For example, when we have 1000 computers (one for each employee) connected to Enterprise network, the probability of Wannacry like infection can be, in the worse scenario, 1000*999 times greater than in the case of one home user.

Edit1.
Even more that 1000*999, because of the possibility of targeted attacks.

Edit2.
Even more, when home user is security paranoid one (because other people are not).:)
 
Last edited:
  • Like
Reactions: simmerskool, frogboy and Sunshine-boy
5

509322

Andy Ful said:
What we call a paranoia for home users, becomes the standard precaution for Enterprises.
Click to expand...

Precaution level at Enterprises is all over the place, just like with individual users. The level of "paranoia" (precaution using best practices) is directly tied to $$$ and to a greater extent the person responsible for security and their staff. You would sometimes be mortified by what you see in the field.

Ask @Umbra about his experiences with small-medium businesses.
 
  • Like
Reactions: simmerskool, Deleted member 178 and Andy Ful
5

509322

Andy Ful said:
Edit1.
Even more that 1000*999, because of the possibility of targeted attacks.

Edit2.
Even more, when home user is security paranoid one (because other people are not).:)
Click to expand...

1. Persistent targeted attack is very difficult to defend against

2. Success of such an attack increases significantly when the number of systems increases - even with security softs installed and adherence to best practices

3. Patient persistence will always win - eventually - because sooner or later the defender will make a mistake
 
  • Like
Reactions: simmerskool, Sunshine-boy, Parsh and 1 other person
BoraMurdar

BoraMurdar

Community Manager
Thread author
Verified
Staff Member
Well-known
Aug 30, 2012
6,598
Andy Ful said:
confidential data in Government institution
Click to expand...
4396a44abf489b26eeef1debb3c4e4a5.jpg
 
  • Like
Reactions: brambedkar59, simmerskool, Rengar and 5 others
5

509322

Let's make super pen-testing project.

Everybody bring their best security config and let an army of pen-testers hack away. Give the hacker army 30 days to bork your system.

Surprise ! - every single security config ultimately fails and the system is badly compromised. Some security configs will protect the system longer than others - but all will ultimately fail.

It's still your fault. Read the EULA. :rolleyes:

Did you know that if your system is hacked, and the hacker uses your hacked system to commit a crime, because it is your system you can be held criminally responsible as well in many countries ?

BoraMurdar said:
4396a44abf489b26eeef1debb3c4e4a5.jpg
Click to expand...

Looooooooool, Awesome !

Andy Ful said:
And Umbra could ask me, about my experiences with highly confidential data in Government institution. But sadly, I could not answer.:)
Click to expand...

There is witch somewhere online that, for a price, will conduct on-site blessing, light a black candle or two, read spells from a big crusty book, sprinkle ground-up bat wings and rat tails around the systems -- all with a 100 % guarantee "You are protected !"

Afterwards, the government agents would have to shoot her cuz she has seen the goods.

This one here - against my better judgment - I'd get her phone number and let her go...

9747D69D8E11D305BA0E2837B8A6EBFE.jpg
 
Last edited by a moderator:
  • Like
Reactions: simmerskool, Deleted member 178, BoraMurdar and 2 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,146
Lockdown said:
Let's make super pen-testing project.
...
Give the hacker army 30 days to bork your system.
...
Click to expand...
You underestimate hackers. Most systems will be hacked after one day.:(
But fortunately, hackers are not interested to hack you (if you are a home user).:)

Lockdown said:
There is witch somewhere online that, for a price, will conduct on-site blessing, read spells from a big book, sprinkle ground-up bat wings and rat tails around the systems -- all with a 100 % guarantee "You are protected !"

Afterwards, the government agents would have to shoot her cuz she has seen the goods.

This one here - against my better judgment - I'd get her phone number and let her go...

View attachment 158614
Click to expand...

Many Government institutions can be hacked easily, not due to holes in the security software, but simply due to careless and security uneducated employees.:(

Edit.
Phishing and Social Engineering Cause Over Half of Cyber Incidents
 
Last edited:
  • Like
Reactions: roger_m and simmerskool
5

509322

Andy Ful said:
You underestimate hackers. Most systems will be hacked after one day.:(
But fortunately, hackers are not interested to hack you (if you are a home user).:)
Click to expand...

Just threw a number out there, but you are correct.

The threat landscape is never as bad as it seems from IT security reports, but at the same time security configs are never as good as their users think

Andy Ful said:
careless and security uneducated employees.:(
Click to expand...

They'll kill us all...

WARNING ! = "Don't push the red button !"

"Oh man... what'd he\she just do ?"

"Pushed the red button..."
 
Last edited by a moderator:
  • Like
Reactions: roger_m, simmerskool, Andy Ful and 1 other person
cruelsister

cruelsister

Level 42
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,149
You guys are really being too hard on yourselves! Aside from ransomware I think you will agree that the harvesting of financial info (like credit card data) is an important issue. And although you may have a "Lockdown" security solution on your personal machine that will totally protect you from such breaches, are you safe?

Absolutely not! And no fault on your part at all. As an example:

You shopped at the major retailer Home Depot a few years back and paid for your purchase with a credit card, Some time passed and all of a sudden you find charges on your card for Emerald Bracelets. Your fault? No- turns out that among the numerous stupidities Home Depot was using SEP and didn't have the Network Threat Protection box checked. Home Depot's IT folks fault? No- the system was set up by Symantec Engineers with the HD IT people nodding like a bobble head dogs on the dashboard of your car ("We didn't want to implement that as it would have generated too many data points that would have been confusing..."). If only the IT folk would have used any of their 60 IQ the whole thing could have been prevented. And I won't even get into the fact that as Enterprise solutions can't distinguish good scripts from bad they don't bother with them at all.

Oh God! I normally have a point to my posts instead of a stream of consciousness ramble.

Note to self- never post when waking up hungover...
 
  • Like
Reactions: roger_m, simmerskool, Andy Ful and 3 others
ispx

ispx

Level 13
Verified
Well-known
Jun 21, 2017
616
cruelsister said:
Aside from ransomware I think you will agree that the harvesting of financial info (like credit card data) is an important issue
Click to expand...

i do agree, completely agree which is why i personally feel the need for zal more than zam on my computer.
 
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,146
cruelsister said:
You guys are really being too hard on yourselves! Aside from ransomware I think you will agree that the harvesting of financial info (like credit card data) is an important issue. And although you may have a "Lockdown" security solution on your personal machine that will totally protect you from such breaches, are you safe?

Absolutely not! And no fault on your part at all. As an example:

You shopped at the major retailer Home Depot a few years back and paid for your purchase with a credit card, Some time passed and all of a sudden you find charges on your card for Emerald Bracelets. Your fault? No- turns out that among the numerous stupidities Home Depot was using SEP and didn't have the Network Threat Protection box checked. Home Depot's IT folks fault? No- the system was set up by Symantec Engineers with the HD IT people nodding like a bobble head dogs on the dashboard of your car ("We didn't want to implement that as it would have generated too many data points that would have been confusing..."). If only the IT folk would have used any of their 60 IQ the whole thing could have been prevented. And I won't even get into the fact that as Enterprise solutions can't distinguish good scripts from bad they don't bother with them at all.

Oh God! I normally have a point to my posts instead of a stream of consciousness ramble.

Note to self- never post when waking up hungover...
Click to expand...
That is a good example of shared security issue (home users & Enterprises). It shows how Enterprises can be careless about customers' data. But, paranoid home users like us, can make some precautions:
1. Do not use a debit card when shopping online.
2. Use something like PayPal.
3. Use a virtual credit card which is fed only with the concrete sum required to buy a concrete product.

Edit1.
I must admit, that my wife is not paranoid about it.:(

Edit2.
Medicare card details of every Australian up for sale on the dark web
 
Last edited:
  • Like
Reactions: simmerskool and Sunshine-boy
mekelek

mekelek

Level 28
Verified
Well-known
Feb 24, 2017
1,661
imo it's your fault if you don't even attempt to protect yourself and act stupid.
it's not your fault from the point when you actually try to protect yourself, the Universe is out to get you at that point.
 
  • Like
Reactions: frogboy, BoraMurdar and Andy Ful
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,146
My brother still uses an old laptop with Windows XP + ESET for browsing, banking and shopping. I tried to convince him that this is a stupid thing. He ignored my advice, and is still uninfected.:confused:

Edit.
He says, that the hacker has to be very lucky to find anything on his bank account. So, maybe he was hacked, and disappointed the hacker?
 
Last edited:
  • Like
Reactions: frogboy, Sunshine-boy, Deleted member 178 and 2 others
R

roger_m

Level 41
Verified
Top Poster
Content Creator
Dec 4, 2014
3,029
On my own computers, every time I've been infected, it's been because I've opened an infected file. So it's been my fault. If I had been more careful about what I'd opened, my computers would not have been infected. These days, I take more care, and don't get infected. I don't do anything more to secure my computers, I'm just more careful.

I have been infected twice on a work computer, just by browsing websites, without opening any downloads. However this computer did not have the latest updates on it. For example Flash and Java were outdated. I didn't have admin access, and without that was unable to update them. In this instance, I would say it's not my fault. On my own computers I keep any vulnerable software updated, and can't recall ever being infected by an exploit.
 
  • Like
Reactions: BoraMurdar, Andy Ful, simmerskool and 2 others
You must log in or register to reply here.

Similar threads

Victor M
    • Like
NixOS it's strengths, weaknesses and how to fix them
Replies
4
Views
258
ChromeOS & Linux
Brahman
Brahman
Brownie2019
On Sale! Avast AntiTrack 2023 [1-PC] 10,00€
Replies
2
Views
358
Discounts and Deals
TairikuOkami
TairikuOkami
tanner_doriano
  • Locked
No Reply PC Infected with Persistent Malware Downloading Files Hourly
Replies
7
Views
370
Windows Malware Removal Help & Support
icotonev
icotonev

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top