I use Opera because Internet Explorer brought me a virus. I downloaded Google Chrome, and a few many hours ago, it said that I have a threat and that I’m not connected to the Internet. The same happens when I open a program that I downloaded.

Sincerelly,
Marie

People use Windows because consumer software and hardware is geared towards the MS world. Life is too short for Linux.

Keep your OS up to date and be careful what sites you visit.

“So it appears Gumblar was downloaded on a Mac of ours. It doesn’t appear to show any adverse affects. But when we started using that machine to access webservers, Gumblar got into these remote servers and infected multiple websites. Affected sites apparently crashed user’s computers (only HP products for some reason) and they had to have them revived by service techs. Which I’m paying for. I need to make a report about our situation. Any feedback on how this Gumblar can get from a Mac to a remote server yet not be evident on the host Mac?” http://news.cnet.com/8301-1009_3-10244529-83.html

Not a solid source on information as it is just a forum post on Cnet.com. But there could well be a risk. Using Firefox and having all your software up to date is still the best security measure though – this applies to all operating systems not just Windows.

Plus the most important security measure – never allow software to store FTP logins and passwords – not even text editors, but especially Dreamweaver etc. It is a lot safer to have the password on a bit of paper stuck on your wall than somewhere on your computer.

How bleedin’ secure is that eh?

So far only used IE, and it works a treat. Feel tempted to seek out dodgy sites to see what happens. Must be a list of sites with trojans/viruses on that I can test the system with.

The only reason I have XP running is for IE6 which seems to always screw up my CSS floats. And so many people still use IE6. When Google control all computers, and everyone uses Chrome, then life will be easier. Until then, VM’s are the way to go.

I will write a dedicate post for this at some point….

“In Gumblar, hackers only wanted to load the script on Windows machines with version of Windows prior Vista (NT 6). In Martuz, they added a new check and no longer load the external script in a Google Chrome browser. I guess hackers read multiple forums and noticed that many webmasters used Google Chrome to detect the malicious code (Chrome detects calls to blacklisted sites and warns users). Now, if a webmaster loads an infected web sites in Chrome, there will be no warning since the external code won’t load. And the webmaster may mistakenly think that the site is clean and no additional removal action is required.

Don’t count on Google Chrome (and Safari) warnings. As you can see, hackers can make their code unnoticeable. And they can use new domain names every day, so that even if Chrome detects calls to the new malicious sites, it won’t warn you since those site are not blacklisted yet.

Make sure to check the source code of web pages. Or check web pages with my Unmask Parasites – it detects suspicious scripts without executing them.” Source: Martuz .cn – New Incarnation of the Gumblar Exploit. So What’s New?

Readers may want an explanation on running VM in Linux/Ubuntu …. if you could give us some pointers, that would be greatly appreciated.

Some suggestions to avoid getting infected with a trojan of any kind (not just gumblar):

1. Use a proper OS rather than Windows – OSX, Linux (Ubuntu is v. windows friendly)
2. Manage websites through a dedicated VM (and, have a dedicated VM for ebanking)
3. Turn on auto-update on all software
4. Subscribe to email updates for software to ensure you have the latest patch installed
5. Turn on auto-updates for Windows
6. Make regular remote backups

Any one of the first three would have prevented a user being infected, the fourth would have made recovering from the attack trivial. Most PC users fail to take responsibility for their own machines, and end up spending far more time trying to eradicate viruses, trojans, spyware etc. than they would ever have to spend on actually making the PC secure in the first place.

Saying that, I still wonder why so many people continue to use Windows. Apart from some good games, you can do everything on Linux for free. And it is safer. For those that really want to continue to use a Windows operating system, as long as any Windows machines are running in a VM within Ubuntu, you can keep them pretty safe, even if they are not up to date with the latest security patches.