Not that i'm too worried, but i think i'd prefer info stealers. usually they just search specific files or default browser locations, so if you use portable firefox discord etc then it won't get you, but it would if you were ratted, which no one seems to do anymore.
Hiya just a tip on your thumbnails.. I find your videos so interesting and informative I thought I'd take the time out to give you a suggestion.. that red line at the top, often makes me think I've already watched your video. It's not just you that does it but if I wasn't paying attention I'd scroll right past you thinking that I've already seen it. Just a thought from a good intentioned subscriber
The red line got something to do with RUclips, Even if you go incognito the video keep track of you/info. Only few people here on youtube know about that problem. So got nothing to do with the Channel it self. If we talking about the same thing..
I had no idea the malware scene had changed so much since then. Last time I checked in, ransomware and spyware was all the rage. Now it’s infostealers. Makes me paranoid that I might’ve gotten infected by one and I just haven’t noticed. Thanks for putting this out there man.
Oh just wait until you do get hacked you will become more than paranoid. I hope you don't and not trying to scare you. I recently got hacked and it changed my view of cybercrime, big brother, my computer OS.
I never store payment credentials on any app or website for this exact reason. I also make a point never to click on sponsored links or open any email unless I know EXACTLY what it is. I know these things don’t offer completely failsafe protection, but they will at least make it harder for the bad guys to hit you where it hurts.
But can u really get infected just by a single click on a website? Or email. If you have everything updated. And i mean without you downloading and or executing anything.
@@CasualGuides yes, you can get hacked just by opening a malicious website or by opening a fishy email. Reason- Malicious websites have dangerous scripts which 'come to life' the moment you visit the website. The fix- Use NoScripts plugin And in emails, use ProtonMail, don't ask why, just use it. Fck convenience, we need privacy.
@@CasualGuides It's possible, for example, there could be a vulnerability in the browser that can be used to run code on your computer that infects you. To my understanding, this is extremely rare, but it is possible. Things like ad blockers or NoScript can offer some additional protection.
I wonder if they've modified it to work on newer systems? If there was a way to modify EternalBlue, to run on modern Windows PC's, you'd think it would be front page news by now though. So who knows. 🤷♂
TBF if they are selling your information that doesn't mean they 'hacked' it from you. IMO* and would be willing to put money on it that there are a lot of 'bad actors' out there doing this. They don't need to hack if you've already given them access.
I'm so scared of info stealers since they have no instant symptoms and if the hackers get into important accounts like emails they can take over basically all your accounts plus make recovery a pain I'd guess a 3 month process and a million headaches if your lucky. Also you don't even need to run the info stealer as administrator for it to get everything. Also usually undetected by anti virus
I recently got hacked by a session cookie info stealer, but won the fight. The best thing to do is to first make sure you keep control of your precious email address. Change the password, recovery options, and keep your backup codes ready if you're using Gmail. Next, change ALL your online accounts' passwords, but not only that, but also migrate them to a new email address. This way, you completely cut off any chance for the hacker trying new things. Once the email address has changed, the hacker has lost control. This also diverts attention away from your old email address, because now there's no value in the email address. Make sure all popular online accounts are migrated. You have to think like the hacker - at what point do you lose all control of your account? It's when the hacker successfully changed your online account's email address.
that's because Microsoft had the idiotic idea of allowing users to run encrypted Powershell commands by default. the payload for Lumastealer runs an obfuscated VBS with a base64 encrypted Powershell command. there's a good tutorial on ThioJoe's channel on how to disable Powershell scripts entirely.
It's still out there, XP and Server 2003 (among others) are out in the wild still, and the extended life of Windows embedded and people being cheap or not understanding why they need to upgrade when it's still running.
I was thinking the same thing. Wannacray was pretty bad and I think a router at an ISP I was on had that baked into some of their fiber optic only routers. It was pretty nasty doing DNS hijacks and stuff.
Ransomware is less predominant: STOP is notably absent, so is Dharma and more traditional infostealers (e.g. Azorult, Emotet, Tiny Banker, Nanocore, Dridex), and now I'm noticing that BloomingComputer has even ceased to publish it's A Week In Ransomware series since May of this year. I notice also that the backdoors are mostly long established MaaS/RAT, which was not as pronounced even since 2021 (when most infostealers were at least new), and the return of the IoT theme. Did another extinction event happen in malware?
I tried to download a virus like software, and brave was like "No" I wanted to do this for educational purposes, but I had to use Edge instead. Anyways, I couldn't run the software in VBox as it was a bootable software.
Yeah, that's why I rock linux and have one instance of Windows running and it's on it's own VLAN and I have no info saved on that PC that's running Windows.
Also don't use torrenting, don't click random links in spam emails or anywhere for that matter, and don't click sponsored links on google either. They all can contain malware most likely. And if you do need to click on a suspicious link, turn on a VPN and use windows sandbox.
When you say (2:50) that they disappear, does that mean if you've run a Lumma stealer once, that it is no longer on your device? I had one 2 weeks ago, got most of my accounts hacked and stolen, regained access to some, and then they didn't strike again. Does it mean I'm safe as long as I don't run the .exe again?
Sometimes but not always. If you want to have a think about it, imagine you are a hacker looking for info, obviously there will likely be a way for the infostealer to reappear and run. I suggest a clean wipe as it’s better safe than sorry. Next time when downloading a “free software” program involving stuff like ai, put it through anyrun or hatching triage. Used it to help my father avoid atomic stealer in an “OpenAI Sora” program.
@@berendberend702 I did this with a caveat. I don't have a USB stick so just downloaded Windows and did a fresh install that way.. also changed my all my passwords. Am I "safe" now?
The fact these viruses are leaking into the world of modding its scary. Sure modding as a whole is a risk in its self but man its getting a lot more riskier and riskier the more of these stealthy viruses popping up. Even with popular stuff its a risk who knows if the modders haven't snuck in a stealer that isn't detectable yet... fun.
Would be interesting to know how to protect the session token. Sites don't make very easy to check what sessions are active for your account and there are accounts that you don't access every day
Windows Sandbox for the win! I purchased Windows Pro specifically for that reason, and then I used a VPN as well outside of the sandbox, it'll protect you.
About creditcard in sweden we can close internet payments and international payments for the card. Only works physical in the store. Even if it was on u need to verify with your phone before purchase it calls bank id here. Just dont click on links and download shit😅 Be safe!
That sounds so secure and I wish we had that in Finland. I just recently watched a document where common people told about their experience with scams and viruses stealing banking details and the aftermath. Over 90% of the time banks just say that if you get hacked or scammed it is your fault and the banks rarely even help you to get your money back. I think the worst that happened was that some of the hackers even made loans from the banks and the banks never called to the owner of the creditcards/banks accounts and again they never did anything for the victim. Greeting from a Finnish brother!
I guess protecting personal data is not really possible these days, due to countlessm eaks of any databases out there, but keeping ownership of particular accounts is still important.
Older OSes (and hardware) that was not patched. Although I think most OSes (even Windows 10) has measures to fight against WannaCry infections. A bigger one I think was Spectre Meltdown as it targeted at firmware and the processors and less so Oses and software. My guess is that mostp eople have probably upgraded their hardware and software since these came out about 8 years ago.
I would love to hear your rebutal to this one tech i follow. He always says that if you think you need an antivirus then you don't know what security is. He also always trys to imply that antivirues are useless.
The thing is that antivirus software is bad about protecting against new threats. When a new fishing website or a new maleware variant gets created it likely takes a few days to a week for the antivirus to have it in the database. For this a good behavioural detection is needed at which most antivirus software sucks at (see the comparison videos fron Leo). But where they shine is when you download a software which contains a virus or maybe a friend gave you an old USB Stick which has some virusus on it which they didn't know about. Of course activly thinking before entering your details somewhere or opening a random file is really important, but as long as the antivirus doesn't have an exploit its a second layer of defense. My most important strategy is not running any executable file from an unknown source before it wasn't first added to VirusTotal a week ago to give the antivirus companiss time to check if it is malicious.
@@floriegl I mysel just think the techs attitude toward antivirus is produced by a misconception of the purpose of an antivirus. I'd wager if he had no antivrus at all it would be a matter of a couple of minutes an his machine would be infected even without having used the internet. In the end it is him an not others wo does not understand security.
I have paid antivirus because I am the one who is going to make mistakes. Am I likely to run across some 0-day that it can't protect me against? Probably not, and I'm not in many situations where I'm going to exposed to emerging threats. But I am someone who uses my computer in a half-awake or drunken state, and an additional layer of anti-idiot security is always good. Virustotal is not protection software. Simple changes obfuscation changes can bring a 20/72 down to a 5/72. I have been in situations where for a moment I thought that a 3/72 detection rate was an all clear, and it was only my better judgement that kept me from actually getting infected
@@pootispiker2866 right antivirus is just one of many security layers but i don't most folks realize just how big of a difference it actually makes. Without an antivirus a person can literally go to bed an everything is fine yet still wake up in the morning to find everything is screwed up.
@@florieglYou should know from watching Leo that good antiviruses will have both decent signature and behavioral protection. Most antivirus softwares will have a signature for a new malware in a few days sometimes hours, but you’re right about it being a weakness, that’s why behavioral protection will be effective against zero-day exploits. Antiviruses can be good and bad, just like anything, it is all about picking the right solution. Kaspersky is Leo’s top choice of solutions, and his tests about the product is always impressive, as it detects both new and older threats, as it has different forms of protection mechanisms. People saying that antiviruses are bad are the same people who says that the earth is flat, they don’t understand basic facts about malware.
Great analysis, thank you! A bit off-topic, but I wanted to ask: My OKX wallet holds some USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). Could you explain how to move them to Binance?
I was wondering how secure modern browsers and the websurfing is, can u get infected from just clicking a link (visiting a website) without any interaction. While having newest version of browser , windows and antivirus like norton installed. Or is it only possible to get infected by a zero day in this case?
It's always possible but really really unlikely if you are not a person of interest. Why would anyone waste a million dollar 0day on random people if they could just keep it under the radar and use it for high value targets (more in regard to espionage)?
@ so that means when surfing these days , you dont have to be scared getting infected especially when i talk about smaller shop sites blogs or anything?
In theory, if your password manager uses strong encryption, then no. But of course password managers themselves sometimes get their backend infrastructure hacked.
I have Windows 10 Firewall Control from Sphinx Software. Have been using it for many years, but I can't find any detailed examples of how to use the By-Name Rules. Why has no one made a video about this or for that matter one on the Firewall itself other than the sellers two videos. I like this firewall it has an interesting way to use the Windows Filtering Platform.
@@kreeves1459 Remember that VirusTotal detections are signature based. Most of the modern malware including infostealers operates with zero-day exploits to avoid signature detection, which will make VirusTotal in many cases unreliable.
Do any of the common info stealers sniff or dump the ram? If so, what would be the value of memory encryption for cookies, password managers, authenticators, etc and how effective would it be?
@@pootispiker2866 Okay, maybe the question isn't applicable to session tokens, but it's still applicable for things like password managers and authenticators. Yeah Windows can detect cross-application memory reading, but there aren't exactly any measures in place to prevent or thwart it. What good is detecting it if all that happens is a whistle is blown? That's why I'm asking these questions.
@Damariobros Yes, there are actually ways of thwarting it. When the kernel detects a process reading memory that it doesn't have access to, it kills the process with a segmentation fault. This has been in windows for at least 30 years. Google is your best friend. Passwords that get stolen are not stored in ram. That would be wasteful. They're also stored on the hard drive. The authenticator apps are almost never pried at our broken into. The most widespread way of bad actors getting those codes is by tricking you into giving it to them. Other times they just disable 2fa after they get your session keys or RAT your system to get direct access to your screen. Password managers get cracked by the backend being compromised. Lastpass is an example. Otherwise, they are THE way of staying secure.
So, this was an interesting video, but didn't show how to prevent this beyond they typical cyber security behaviors and didn't show you how to detect if you're compromised.
@@pootispiker2866 No I am not. I never use any kind of "Cloud", you dedrater tnuc. My 'phone only does 'phone calls and texts and my desktop has hard drives for my own storage, as well as some external drives. I will never use _any_ "Cloud". It's just somebody else's computer. But then, I am probably several decades older than you so I actually know what I am doing. {:o:O:}
hello, what foundational courses or certifications would you suggest to start a career in cybersecurity? what are some good sources to start on? Thanks, cheers from Brazil
hello im new to pc if any one could help me my friend told me to scan all files in virus total so thats what i do soo i got to scaning the nvidia app installer and one of 90 something said it was malware.32.gencric or something i got the files from the official nvidia app when i saw there was malware i deleted the files but i need my gpu drivers is there a virus or am i fine to install the app thanks
If it was 1 in 90 then very likely safe. Virus Total is great. Just scan the exe before you run, but first check the url of the site and you should be good.
Please review the ACE anti-cheat, Delta force's new kernel level anti-cheat on Steam, which just dropped a day ago. People have been saying that uninstalling the game doesn't uninstall the anti-cheat, and that it conflicts with other anti-cheats. This game has been a huge part of any 90s kid and I feel like a lot of people are going to play it, since it is free to play and it just came out 12 hours ago.
Didn't you mean to say VM snapshot and revert after every session. Doing it weekly seems lazy and belies smart security practices. This way you'll always be using the fastest Windows install. The VM snapshot facility also doesn't tie you to Windows, the exploit fly paper.
I installed a fortnite skin swapper like 3 months ago two or three days later i get emails with 2fa codes and stuff, ca. 2 weeks later i get an email to all my email Accounts telling me my passwords turns out i installed a rat. Also after that i did a clean windows reinstall. Also great vid
The world's severs run Linux and get hacked every single day. I've no idea why people cling to the belief Linux is immune, but I'm sure hackers love it because it makes them easy targets lol.
I hate infostealers, i miss ransomware era
The good old days ❤
You can also get a combination and ransomware is not death at all but I agree with what Leo states here.
Youareanidiot looking like professional software compared to infostealers
This is like quitting crack for cocaine
Not that i'm too worried, but i think i'd prefer info stealers. usually they just search specific files or default browser locations, so if you use portable firefox discord etc then it won't get you, but it would if you were ratted, which no one seems to do anymore.
Hiya just a tip on your thumbnails.. I find your videos so interesting and informative I thought I'd take the time out to give you a suggestion.. that red line at the top, often makes me think I've already watched your video. It's not just you that does it but if I wasn't paying attention I'd scroll right past you thinking that I've already seen it. Just a thought from a good intentioned subscriber
agreed
+1
The red line got something to do with RUclips, Even if you go incognito the video keep track of you/info. Only few people here on youtube know about that problem. So got nothing to do with the Channel it self. If we talking about the same thing..
I had no idea the malware scene had changed so much since then. Last time I checked in, ransomware and spyware was all the rage. Now it’s infostealers. Makes me paranoid that I might’ve gotten infected by one and I just haven’t noticed.
Thanks for putting this out there man.
Im paranoid too. My bank account hasn't been drained yet so I think im good (I hope 🙏)
Oh just wait until you do get hacked you will become more than paranoid. I hope you don't and not trying to scare you. I recently got hacked and it changed my view of cybercrime, big brother, my computer OS.
I never store payment credentials on any app or website for this exact reason. I also make a point never to click on sponsored links or open any email unless I know EXACTLY what it is. I know these things don’t offer completely failsafe protection, but they will at least make it harder for the bad guys to hit you where it hurts.
But can u really get infected just by a single click on a website? Or email. If you have everything updated. And i mean without you downloading and or executing anything.
No, unless you're targeted by a state organization. lol
@@CasualGuides yes, you can get hacked just by opening a malicious website or by opening a fishy email. Reason- Malicious websites have dangerous scripts which 'come to life' the moment you visit the website. The fix- Use NoScripts plugin
And in emails, use ProtonMail, don't ask why, just use it. Fck convenience, we need privacy.
It may be unlikely, but it’s still not a risk you want to take needlessly. There’s a reason why the FBI now recommends using an adblocker.
@@CasualGuides It's possible, for example, there could be a vulnerability in the browser that can be used to run code on your computer that infects you. To my understanding, this is extremely rare, but it is possible. Things like ad blockers or NoScript can offer some additional protection.
That's crazy that WannaCry is No 2 on that list you had all these years later.
I wonder if they've modified it to work on newer systems? If there was a way to modify EternalBlue, to run on modern Windows PC's, you'd think it would be front page news by now though. So who knows. 🤷♂
Informative video as always. Crazy how times have changed so much in just the last decade
TBF if they are selling your information that doesn't mean they 'hacked' it from you. IMO* and would be willing to put money on it that there are a lot of 'bad actors' out there doing this. They don't need to hack if you've already given them access.
I'm so scared of info stealers since they have no instant symptoms and if the hackers get into important accounts like emails they can take over basically all your accounts plus make recovery a pain I'd guess a 3 month process and a million headaches if your lucky. Also you don't even need to run the info stealer as administrator for it to get everything. Also usually undetected by anti virus
I recently got hacked by a session cookie info stealer, but won the fight. The best thing to do is to first make sure you keep control of your precious email address.
Change the password, recovery options, and keep your backup codes ready if you're using Gmail.
Next, change ALL your online accounts' passwords, but not only that, but also migrate them to a new email address. This way, you completely cut off any chance for the hacker trying new things. Once the email address has changed, the hacker has lost control. This also diverts attention away from your old email address, because now there's no value in the email address.
Make sure all popular online accounts are migrated.
You have to think like the hacker - at what point do you lose all control of your account? It's when the hacker successfully changed your online account's email address.
that's because Microsoft had the idiotic idea of allowing users to run encrypted Powershell commands by default. the payload for Lumastealer runs an obfuscated VBS with a base64 encrypted Powershell command.
there's a good tutorial on ThioJoe's channel on how to disable Powershell scripts entirely.
I ran a stealer on a real computer once and it does literally nothing that you can see. It just appears to not run.
1:21 why is wannacry on 2nd? I thought it was pretty much outdated
That’s just how huge it was back in the day. It still gets spread in secret but much less viral than it used to be
It's still out there, XP and Server 2003 (among others) are out in the wild still, and the extended life of Windows embedded and people being cheap or not understanding why they need to upgrade when it's still running.
I was thinking the same thing. Wannacray was pretty bad and I think a router at an ISP I was on had that baked into some of their fiber optic only routers. It was pretty nasty doing DNS hijacks and stuff.
Knowledgeable video.
I thought windows was the most common malware.
old joke
Hilarious. Go back to red dit
#LinuxFTW
@@thatzaliasguyLinux master race 2025 for sure
Still 5%
Absolutely it is!!
Ransomware is less predominant: STOP is notably absent, so is Dharma and more traditional infostealers (e.g. Azorult, Emotet, Tiny Banker, Nanocore, Dridex), and now I'm noticing that BloomingComputer has even ceased to publish it's A Week In Ransomware series since May of this year. I notice also that the backdoors are mostly long established MaaS/RAT, which was not as pronounced even since 2021 (when most infostealers were at least new), and the return of the IoT theme. Did another extinction event happen in malware?
make longer videos more details
I tried to download a virus like software, and brave was like "No" I wanted to do this for educational purposes, but I had to use Edge instead. Anyways, I couldn't run the software in VBox as it was a bootable software.
So using Windows in a VM (any VM) is this useful? I have just installed one in my Linux for future use.
@@D.von.N Usually it is good for testing viruses, or previous versions such as XP. Windows Sandbox works fine though.
i was a victim of racoon stealer
Womp womp stop clicking shit maybe
Yeah, that's why I rock linux and have one instance of Windows running and it's on it's own VLAN and I have no info saved on that PC that's running Windows.
Also don't use torrenting, don't click random links in spam emails or anywhere for that matter, and don't click sponsored links on google either. They all can contain malware most likely. And if you do need to click on a suspicious link, turn on a VPN and use windows sandbox.
When you say (2:50) that they disappear, does that mean if you've run a Lumma stealer once, that it is no longer on your device? I had one 2 weeks ago, got most of my accounts hacked and stolen, regained access to some, and then they didn't strike again. Does it mean I'm safe as long as I don't run the .exe again?
LOL
Sometimes but not always. If you want to have a think about it, imagine you are a hacker looking for info, obviously there will likely be a way for the infostealer to reappear and run. I suggest a clean wipe as it’s better safe than sorry. Next time when downloading a “free software” program involving stuff like ai, put it through anyrun or hatching triage. Used it to help my father avoid atomic stealer in an “OpenAI Sora” program.
Reinstall windows from scratch please, and change all your passwords
How did you get infected?
@@berendberend702 I did this with a caveat. I don't have a USB stick so just downloaded Windows and did a fresh install that way.. also changed my all my passwords. Am I "safe" now?
The fact these viruses are leaking into the world of modding its scary. Sure modding as a whole is a risk in its self but man its getting a lot more riskier and riskier the more of these stealthy viruses popping up.
Even with popular stuff its a risk who knows if the modders haven't snuck in a stealer that isn't detectable yet... fun.
Would be interesting to know how to protect the session token. Sites don't make very easy to check what sessions are active for your account and there are accounts that you don't access every day
at this point someone might be cooking a ransomware that only asks to like instagram posts to get your files back
Should you use windows sandbox to use Microsoft edge to broswe the internet?
Windows Sandbox for the win! I purchased Windows Pro specifically for that reason, and then I used a VPN as well outside of the sandbox, it'll protect you.
@BrennanWest85 how long does it take to startup the sandbox?
@@GTSongwriter within 10 seconds of clicking the sandbox in the start menu, it's extremely useful and it starts straight into the desktop
About creditcard in sweden we can close internet payments and international payments for the card. Only works physical in the store. Even if it was on u need to verify with your phone before purchase it calls bank id here.
Just dont click on links and download shit😅
Be safe!
That sounds so secure and I wish we had that in Finland. I just recently watched a document where common people told about their experience with scams and viruses stealing banking details and the aftermath. Over 90% of the time banks just say that if you get hacked or scammed it is your fault and the banks rarely even help you to get your money back. I think the worst that happened was that some of the hackers even made loans from the banks and the banks never called to the owner of the creditcards/banks accounts and again they never did anything for the victim. Greeting from a Finnish brother!
I miss the old days it was either for espionage or more likely just bragging rights :( worlds become so money focused :(
I guess protecting personal data is not really possible these days, due to countlessm eaks of any databases out there, but keeping ownership of particular accounts is still important.
How tf people still infected by WannaCry?
Update lacking older OSes are very common
Older OSes (and hardware) that was not patched. Although I think most OSes (even Windows 10) has measures to fight against WannaCry infections. A bigger one I think was Spectre Meltdown as it targeted at firmware and the processors and less so Oses and software. My guess is that mostp eople have probably upgraded their hardware and software since these came out about 8 years ago.
@@HR-wd6cw why did you include windows 10 as "even" 😭😭🙏 windows 10 was released before wanna cry and was the main OS during the attack
It is also very common to find people who get extremely annoyed at updates, and don't patch their systems.
I would love to hear your rebutal to this one tech i follow. He always says that if you think you need an antivirus then you don't know what security is. He also always trys to imply that antivirues are useless.
The thing is that antivirus software is bad about protecting against new threats. When a new fishing website or a new maleware variant gets created it likely takes a few days to a week for the antivirus to have it in the database. For this a good behavioural detection is needed at which most antivirus software sucks at (see the comparison videos fron Leo). But where they shine is when you download a software which contains a virus or maybe a friend gave you an old USB Stick which has some virusus on it which they didn't know about. Of course activly thinking before entering your details somewhere or opening a random file is really important, but as long as the antivirus doesn't have an exploit its a second layer of defense. My most important strategy is not running any executable file from an unknown source before it wasn't first added to VirusTotal a week ago to give the antivirus companiss time to check if it is malicious.
@@floriegl I mysel just think the techs attitude toward antivirus is produced by a misconception of the purpose of an antivirus. I'd wager if he had no antivrus at all it would be a matter of a couple of minutes an his machine would be infected even without having used the internet. In the end it is him an not others wo does not understand security.
I have paid antivirus because I am the one who is going to make mistakes. Am I likely to run across some 0-day that it can't protect me against? Probably not, and I'm not in many situations where I'm going to exposed to emerging threats. But I am someone who uses my computer in a half-awake or drunken state, and an additional layer of anti-idiot security is always good. Virustotal is not protection software. Simple changes obfuscation changes can bring a 20/72 down to a 5/72. I have been in situations where for a moment I thought that a 3/72 detection rate was an all clear, and it was only my better judgement that kept me from actually getting infected
@@pootispiker2866 right antivirus is just one of many security layers but i don't most folks realize just how big of a difference it actually makes. Without an antivirus a person can literally go to bed an everything is fine yet still wake up in the morning to find everything is screwed up.
@@florieglYou should know from watching Leo that good antiviruses will have both decent signature and behavioral protection. Most antivirus softwares will have a signature for a new malware in a few days sometimes hours, but you’re right about it being a weakness, that’s why behavioral protection will be effective against zero-day exploits. Antiviruses can be good and bad, just like anything, it is all about picking the right solution. Kaspersky is Leo’s top choice of solutions, and his tests about the product is always impressive, as it detects both new and older threats, as it has different forms of protection mechanisms. People saying that antiviruses are bad are the same people who says that the earth is flat, they don’t understand basic facts about malware.
NSA has the resources to put an end to dark web.
Great analysis, thank you! A bit off-topic, but I wanted to ask: My OKX wallet holds some USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). Could you explain how to move them to Binance?
What's your wallet?
Those monsters stole my subway points 😭😭😭
NOOOOOOO
I was wondering how secure modern browsers and the websurfing is, can u get infected from just clicking a link (visiting a website) without any interaction. While having newest version of browser , windows and antivirus like norton installed. Or is it only possible to get infected by a zero day in this case?
It's always possible but really really unlikely if you are not a person of interest. Why would anyone waste a million dollar 0day on random people if they could just keep it under the radar and use it for high value targets (more in regard to espionage)?
@ i was wondering if an infection just by visiting the website (0 interactions) is only doable with a zero day exploit these days.
@ and ye no one would burn a zero day on a normal person for no reason
@@CasualGuides Well, as you likely know browsers update pretty regularly. Which implies that all working exploits need to be a 0day.
@ so that means when surfing these days , you dont have to be scared getting infected especially when i talk about smaller shop sites blogs or anything?
Not far off throwing it all in the bin and going to live on a mountain 🤔
can infostealer attack password manager? like nordpass 1pass or even onenote etc and steal your data out of it?
In theory, if your password manager uses strong encryption, then no. But of course password managers themselves sometimes get their backend infrastructure hacked.
@amritlohia8240 thank you!!
@slopes. You're very welcome, even though this was rather basic I thought
I have Windows 10 Firewall Control from Sphinx Software. Have been using it for many years, but I can't find any detailed examples of how to use the By-Name Rules. Why has no one made a video about this or for that matter one on the Firewall itself other than the sellers two videos. I like this firewall it has an interesting way to use the Windows Filtering Platform.
sites that important for security info and learn
install a crypto wallet onto your pc with like $50 in it, you'll know if you ever get hacked
I'd rather kill myself than become crypto bro
Hmmm time to go back to LINUX!!!
Linux gets malware too.
so how do you detect these?
a free website called VirusTotal is good to scan files for malware, I use it often
@@kreeves1459 Remember that VirusTotal detections are signature based. Most of the modern malware including infostealers operates with zero-day exploits to avoid signature detection, which will make VirusTotal in many cases unreliable.
AI is such a huge gold mine for info stealers nowadays
Do any of the common info stealers sniff or dump the ram? If so, what would be the value of memory encryption for cookies, password managers, authenticators, etc and how effective would it be?
Neither. Your session tokens are stored on your hard drive. Looking into other applications' memory is easily detectable by windows.
@@pootispiker2866 Okay, maybe the question isn't applicable to session tokens, but it's still applicable for things like password managers and authenticators. Yeah Windows can detect cross-application memory reading, but there aren't exactly any measures in place to prevent or thwart it. What good is detecting it if all that happens is a whistle is blown? That's why I'm asking these questions.
@Damariobros Yes, there are actually ways of thwarting it. When the kernel detects a process reading memory that it doesn't have access to, it kills the process with a segmentation fault. This has been in windows for at least 30 years. Google is your best friend.
Passwords that get stolen are not stored in ram. That would be wasteful. They're also stored on the hard drive.
The authenticator apps are almost never pried at our broken into. The most widespread way of bad actors getting those codes is by tricking you into giving it to them. Other times they just disable 2fa after they get your session keys or RAT your system to get direct access to your screen.
Password managers get cracked by the backend being compromised. Lastpass is an example. Otherwise, they are THE way of staying secure.
@@Damariobros i posted a rebuttal to all of this but this shitass platform deleted my comment.
@@Damariobros I posted a rebuttal to all this but the reply got deleted
put on speed 1.25 to make it listenable
So, this was an interesting video, but didn't show how to prevent this beyond they typical cyber security behaviors and didn't show you how to detect if you're compromised.
I use arch btw
Wow you're the coolest person to ever live.
Thank the maker I am on Linux and I don't have a problem.
Just change all your password once a year to be safe.
Once a year? What are you talking about?
Any way to find out if there is one of those on a mac ?
Im an artist so i despise sll types of ai that are used for the sake of stealing actual content to be refurbished in a shitty way
top malware famililes seems to missing redline stealer
8 minutes
And how they bypass login from new place/ip? I get email every time I login with vpn.
hi guys
hi buddy, how's ur day today
hey can you buy me flare plz?
hi youtube user LachCrafter
Bye see you later
See you later guys
I will never use any "Cloud". It's just somebody else's computer.
{:o:O:}
You're using one now. Or is that somehow different?
@@pootispiker2866
No I am not. I never use any kind of "Cloud", you dedrater tnuc. My 'phone only does 'phone calls and texts and my desktop has hard drives for my own storage, as well as some external drives.
I will never use _any_ "Cloud". It's just somebody else's computer. But then, I am probably several decades older than you so I actually know what I am doing.
{:o:O:}
hello, what foundational courses or certifications would you suggest to start a career in cybersecurity? what are some good sources to start on? Thanks, cheers from Brazil
hello im new to pc if any one could help me
my friend told me to scan all files in virus total so thats what i do soo i got to scaning the nvidia app installer and one of 90 something said it was malware.32.gencric or something i got the files from the official nvidia app when i saw there was malware i deleted the files but i need my gpu drivers
is there a virus or am i fine to install the app
thanks
If it was 1 in 90 then very likely safe. Virus Total is great. Just scan the exe before you run, but first check the url of the site and you should be good.
Please review the ACE anti-cheat, Delta force's new kernel level anti-cheat on Steam, which just dropped a day ago.
People have been saying that uninstalling the game doesn't uninstall the anti-cheat, and that it conflicts with other anti-cheats.
This game has been a huge part of any 90s kid and I feel like a lot of people are going to play it, since it is free to play and it just came out 12 hours ago.
I got a hack for you and you and you everybody gets a hack
Hmm, interesting
Windows and MacOS only LOL... Use a linux distro.. No software packages with malware or any that bad crap in it.
I hope you’re sarcastic. Malware operates on all operating systems including Linux.
👍👍👍
Run your OS in a VM, create a restore point when it's perfect, and restore it weekly to avoid any issues with infections.
Restore points don't un-do rootkits lmfao. Just stop using Windows, and stop downloading dumb shit.
@@thatzaliasguy never stop using windows 👍
Didn't you mean to say VM snapshot and revert after every session. Doing it weekly seems lazy and belies smart security practices. This way you'll always be using the fastest Windows install. The VM snapshot facility also doesn't tie you to Windows, the exploit fly paper.
@@maxwellsmart3156 Thank you for this comment. Sure, you should run Windows inside your Linux Host.
@@thatzaliasguy Using your Windows VM inside a Linux Host.
I installed a fortnite skin swapper like 3 months ago two or three days later i get emails with 2fa codes and stuff, ca. 2 weeks later i get an email to all my email Accounts telling me my passwords turns out i installed a rat. Also after that i did a clean windows reinstall. Also great vid
“Popular” 😂
Hahahhahahahahababba Buying more encryption Memory
FB app
🎖🎖🎖🎖🎖🎖🎖
(joke dont take it seriously)
Linux users be like 🗿🗿
Linux users when I show them a useful spreadsheet application: 🥺
Who else did a full system scan and malware scan after watching this?
If I was going to setup a family member, would certainly get them a chromebook with some security extensions and a security dns such as q9 or next.
No bro, it's a crazy ☠
Linux user watching this will be like : Nyah im not affected :)
The world's severs run Linux and get hacked every single day. I've no idea why people cling to the belief Linux is immune, but I'm sure hackers love it because it makes them easy targets lol.
You certainly look like a linux user. I’ll give you that
@@MTGeomancerLmao you summarized Linux users in a nutshell very well.
How about Linux?
LOL
Linux for the win once again. 💯
Linux is not immune and if you think it is you probably don't know enough about computers to be using linux