Site Security
Moderators: DJKeefy, 4u Network
- Chris
- Senior Member
- Posts: 341
- Joined: Sun Feb 20, 2005 12:50 pm
- Location: Luxor
- Has thanked: 1 time
- Been thanked: 35 times
Site Security
I have started to get security warnings, from my Norton Antivirus progam, about the Luxor4u website being unsafe. Each time I log in I get the message from Norton that it has blocked an attack by “Web Attack JS Coinminer download 56” I note that luxor4u is not https://www.luxor4u.com - does that it is not protected?
- DJKeefy
- Site Administrator
- Posts: 11025
- Joined: Thu Jan 13, 2005 4:08 pm
- Location: UK
- Has thanked: 654 times
- Been thanked: 1222 times
- Gender:
- Contact:
Re: Site Security
No idea what Web Attack JS Coinminer download 56 is, but definitely not from usChris wrote:I have started to get security warnings, from my Norton Antivirus progam, about the Luxor4u website being unsafe. Each time I log in I get the message from Norton that it has blocked an attack by “Web Attack JS Coinminer download 56” I note that luxor4u is not https://www.luxor4u.com - does that it is not protected?
We don't need to be a secure HTTPS site, you are not sending your credit card or any important information through our site
- Horus
- Egyptian God
- Posts: 7933
- Joined: Tue Oct 10, 2006 11:59 pm
- Location: UK
- Has thanked: 2431 times
- Been thanked: 1870 times
- Gender:
- Contact:
Re: Site Security
Web Attack: JSCoinminer Download 56
Severity: Medium
This attack could pose a moderate security threat. It does not require immediate action.
Description
This signature detects suspicious activities associated with JScoinminer
Additional Information
JScoinminer is a detection for a JavaScript cryptocurrency miner that runs in web browsers. The javascript coin miner consumes enormous CPU resources, making computer use sluggish. The JavaScript is loaded in the browser when the user visits a web page hosting the JavaScript. If you haven't opened the detected website on your own, you are possibly redirected to the detected website via redirection mechanisms like malicious advertisement or a compromised website hosting an iframe or JavaScript which redirects to the detected website. The JavaScript runs as long as the user stays on the web page. As long as the website being visited is injected with the coin mining javascript, the website will be blocked by this signature. The computer system is not actually "infected" when this detection triggers.
Affected
Various Windows platforms.
Response
The browser tab in which the detected URL is open,should be closed. User should avoid visiting the detected website. More information on browser-based coin mining is available at https://www.symantec.com/blogs/threat-i ... tocurrency
If you are a Norton user and wish to access a website blocked by Intrusion Prevention, please go through the exclusion process listed at https://support.norton.com/sp/en/us/hom ... tail_en_us to exclude the Intrusion Prevention detection blocking the given website.
If you are an Enterprise Product user, please go through the exclusion process listed at https://support.symantec.com/en_US/arti ... 80883.html to exclude the Intrusion Prevention detection.
Severity: Medium
This attack could pose a moderate security threat. It does not require immediate action.
Description
This signature detects suspicious activities associated with JScoinminer
Additional Information
JScoinminer is a detection for a JavaScript cryptocurrency miner that runs in web browsers. The javascript coin miner consumes enormous CPU resources, making computer use sluggish. The JavaScript is loaded in the browser when the user visits a web page hosting the JavaScript. If you haven't opened the detected website on your own, you are possibly redirected to the detected website via redirection mechanisms like malicious advertisement or a compromised website hosting an iframe or JavaScript which redirects to the detected website. The JavaScript runs as long as the user stays on the web page. As long as the website being visited is injected with the coin mining javascript, the website will be blocked by this signature. The computer system is not actually "infected" when this detection triggers.
Affected
Various Windows platforms.
Response
The browser tab in which the detected URL is open,should be closed. User should avoid visiting the detected website. More information on browser-based coin mining is available at https://www.symantec.com/blogs/threat-i ... tocurrency
If you are a Norton user and wish to access a website blocked by Intrusion Prevention, please go through the exclusion process listed at https://support.norton.com/sp/en/us/hom ... tail_en_us to exclude the Intrusion Prevention detection blocking the given website.
If you are an Enterprise Product user, please go through the exclusion process listed at https://support.symantec.com/en_US/arti ... 80883.html to exclude the Intrusion Prevention detection.
- Winged Isis
- Egyptian Pharaoh
- Posts: 3867
- Joined: Thu Jul 05, 2007 2:38 pm
- Location: Australia
- Has thanked: 824 times
- Been thanked: 766 times
- Gender:
Re: Site Security
Recently I was getting a red Not Secure at the top when I logged on, but thought maybe it was because I had just been in Egypt last month using my other computer, though I had never noticed this after previous trips. Keefy reassured me with the same reply.
Carpe diem!
-
- Similar Topics
- Replies
- Views
- Last post
-
- 1 Replies
- 704 Views
-
Last post by A-Four
-
- 8 Replies
- 1156 Views
-
Last post by Kaiserbernese