Should I deactivate my Mcafee on my new laptop and just use Malwarebytes and Microsoft's internal offerings?


--- WWIV 5.5.1.3261
* Origin: inland utopia * california * iutopia.duckdns.org:2023 (21:4/108)

On 28 Jul 22 11:51:34, Utopian Galt said the following to All:

Should I deactivate my Mcafee on my new laptop and just use Malwarebytes an Microsoft's internal offerings?

If you are smart enough not to click on malware/phishing links and you don't just blindly install whatever from the net, you don't need anything.

Atreyu

--- Renegade vY2Ka2
* Origin: Joey, do you like movies about gladiators? (21:1/176)

Re: Re: Security Suites for computers
By: Atreyu to Utopian Galt on Thu Jul 28 2022 03:24 pm

On 28 Jul 22 11:51:34, Utopian Galt said the following to All:

Should I deactivate my Mcafee on my new laptop and just use Malwarebytes Microsoft's internal offerings?

If you are smart enough not to click on malware/phishing links and you don't just blindly install whatever from the net, you don't need anything.

Atreyu

I usually instal Avira when I set a Windows system, and have some spare rescue DVD around just in case. For Linux and OpenBSD I just run periodical integrity checks.

In general I agree that you need nothing if you are careful, but I don't frown on installing scanners and anti-malwares.

--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

Should I deactivate my Mcafee on my new laptop and just use Malwarebytes and Microsoft's internal offerings?

You have the Mcaffee virus? :P I've stuck with Malwarebytes, and a few other intermittant things for years..... never had a problem...

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: There is no cloud, just someone elses computer! (21:3/101)

Re: Security Suites for computers
By: Spectre to Utopian Galt on Fri Jul 29 2022 07:43 am

You have the Mcaffee virus? :P I've stuck with Malwarebytes, and a few other intermittant things for years..... never had a problem...

They like to infect new dell boxes upon conception. bloody intel/macaffee.
--- SBBSecho 3.15-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (21:1/183)

Should I deactivate my Mcafee on my new laptop and just use Malwarebytes and Microsoft's internal offerings?

Hell yes.



|07p|15AULIE|1142|07o
|08.........

--- Mystic BBS v1.12 A48 2022/07/15 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

They like to infect new dell boxes upon conception. bloody intel/macaffee.

You need a Dell box with an immaculate contraption ;) There was something I had to use... couple of years back now... might've been while I was doing the streaming for the yokal church... that always insisted on installed the
McAfee virus... didn't have any obvious way out either... took a while to figure that one out..

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
* Origin: There is no cloud, just someone elses computer! (21:3/101)

On 28 Jul 2022, Utopian Galt said the following...

Should I deactivate my Mcafee on my new laptop and just use Malwarebytes and Microsoft's internal offerings?

Unless you're doing shady stuff Windows Defender is surprisingly good.

GreenLFC ║ e> greenleaderfanclub@protonmail.com
Infosec / Ham / Retro ║ masto> GLFC@mstdn.starnix.network
Avoids Politics on BBS ║ gem> gemini.greenleader.xyz

--- Mystic BBS v1.12 A48 2022/07/15 (Linux/64)
* Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

On 07-29-22 11:29, Greenlfc wrote to Utopian Galt <=-

Unless you're doing shady stuff Windows Defender is surprisingly good.

Windows Defender also has the advantage that it's written by Microsoft for Windows, so it doesn't have to do dodgy things to intercept file opening calls and the like. I've heard good things about Windows Defender in recent years, and it's included in the price of Windows. :)

_if_ I use an antivirus, Windows Defender is what I tend to use, along with Malwarebytes for an occasional check.


... Anger...fear...aggression. The dark side of the Force are they.
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

At 3:24 PM on 28 Jul 22, Atreyu said to Utopian Galt:

Should I deactivate my Mcafee on my new laptop and just use Malwarebytes an Microsoft's internal offerings?

If you are smart enough not to click on malware/phishing links and you don't just blindly install whatever from the net, you don't need
anything.

I don't mean to sound b***hy, but I think this is very bad advice. There's a war between bad actors and users, and some of the bad actors are very good. Social engineering makes things worse.

Even smart, careful people can get suckered in. Antivirus and anti-malware packages are a must for Windows boxes.

--
Brightening the BBS world since 1990. - Bex <3
--
Rex: I was going for fearsome, but I don't think I'm coming across. I'm
afraid I'm just coming off as annoying.

-*- ASTG 1.8

* Q-Blue 2.4 *
--- SBBSecho 3.11-Win32
* Origin: -=[conchaos.synchro.net | ConstructiveChaos BBS]=- (21:4/141)

On 03 Aug 22 19:29:00, Bex said the following to Atreyu:

If you are smart enough not to click on malware/phishing links and you don't just blindly install whatever from the net, you don't need
anything.

I don't mean to sound b***hy, but I think this is very bad advice. There's a war between bad actors and users, and some of the bad actors are very good. Social engineering makes things worse.

Been doing this a long time... I cannot be tricked by a bad actor and stand
by my words, having not used virus protection for 2 decades even with all
the fun of XP.

Most of them all run the same - checking signatures, often times "too late" against zero-day attacks, and todays situations often involve either security problems with OS's or websites. Often times the products themselves are bloated, overpriced, and only present themselves when they detect a false positive or nagging for signature updates or to perform a scan even when nothing has been downloaded. Antivirus software itself is "scare-ware"...

Phishing attacks are so common now, that if you as a user are not educating yourself against what is a real link or not, you clearly get whats
deserved. There have never been situations in my life where I have been tricked into entering credentials or visiting some link that was bogus.

It is also not necessary to run virus protection on dedicated BBS computers or situations where installing software or clicking links just never happens. If you don't want users uploading viruses to your board, don't accept uploads.

Atreyu

--- Renegade vY2Ka2
* Origin: Joey, do you like movies about gladiators? (21:1/176)

Re: Re: Security Suites for c
By: Atreyu to Bex on Thu Aug 04 2022 06:22 am

It is also not necessary to run virus protection on dedicated BBS computers or situations where installing software or clicking links just never happens. If you don't want users uploading viruses to your board, don't accept uploads.

It seems a little extreme to disable uploads just to prevent viruses.. I like that a BBS provides a way to share things (including files). If you don't want to install full virus protection for your system, you can still install a virus scanner and set up something to virus-scan your uploads on your BBS.

Nightfox

On 04 Aug 22 08:24:11, Nightfox said the following to Atreyu:

It seems a little extreme to disable uploads just to prevent viruses.. I li that a BBS provides a way to share things (including files). If you don't want to install full virus protection for your system, you can still install virus scanner and set up something to virus-scan your uploads on your BBS.

Maybe its just me but I see no real reason to have an Uploads section anymore. If someone really wants to send me something there's a file-attach function
in my board or they can just email.

But a long time ago... I think it was THD Pro-scan that was a VERY good anti-virus scanner specifically for BBS's

Atreyu

--- Renegade vY2Ka2
* Origin: Joey, do you like movies about gladiators? (21:1/176)

Re: Re: Security Suites for c
By: Atreyu to Nightfox on Thu Aug 04 2022 12:01 pm

Maybe its just me but I see no real reason to have an Uploads section anymore. If someone really wants to send me something there's a file-attach function in my board or they can just email.

It's not just for sending files to you, but sharing with other users.

Nightfox

On 04 Aug 22 09:12:16, Nightfox said the following to Atreyu:

Maybe its just me but I see no real reason to have an Uploads section anymore. If someone really wants to send me something there's a file-attach function in my board or they can just email.

It's not just for sending files to you, but sharing with other users.

The other users on my board already have access to 6+ gigs of many thousands of files I put up for download. Users can also send files to another user.

Maybe you have users frequently contributing files on yours but on mine the file-section is only accessed maybe a few times per month, by users who mostly cannot figure out that, despite clear instruction, a terminal client capable of supporting a transfer protocol is required. So no... I'm not expecting any sudden demand for uploads anytime soon.

Most of my users just play Lord and Tradewars...

Atreyu

--- Renegade vY2Ka2
* Origin: Joey, do you like movies about gladiators? (21:1/176)

BY: Nightfox(21:1/137)

It seems a little extreme to disable uploads just to prevent viruses..
I like that a BBS provides a way to share things (including files). If
you don't want to install full virus protection for your system, you can still install a virus scanner and set up something to virus-scan your uploads on your BBS.

I remember using THD to scan for viruses from files.


--- WWIV 5.5.1.3261
* Origin: inland utopia * california * iutopia.duckdns.org:2023 (21:4/108)

On 08-03-22 19:29, bex wrote to Atreyu <=-

I don't mean to sound b***hy, but I think this is very bad advice.
There's a war between bad actors and users, and some of the bad actors
are very good. Social engineering makes things worse.

It's something one has to weigh up. For most people, running some kind of antivirus/antimalware is a very good idea. I have got away without it, but that's largely a combination of experience and my ability to spot social engineering a mile or ten away - I'm also a telemarketer's nightmare. :D

Even smart, careful people can get suckered in. Antivirus and
anti-malware packages are a must for Windows boxes.

On this Windows box, I use Windows Defender and have Malwarebytes available.


... The person who snores the loudest will fall asleep first
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 08-04-22 06:22, Atreyu wrote to Bex <=-

Most of them all run the same - checking signatures, often times "too late" against zero-day attacks, and todays situations often involve
either security problems with OS's or websites. Often times the
products themselves are bloated, overpriced, and only present
themselves when they detect a false positive or nagging for signature updates or to perform a scan even when nothing has been downloaded. Antivirus software itself is "scare-ware"...

In some cases, the cure is worse than the disease. While this machine does have antivirus (Windows Defender), others have nothing.

Phishing attacks are so common now, that if you as a user are not educating yourself against what is a real link or not, you clearly get whats deserved. There have never been situations in my life where I
have been tricked into entering credentials or visiting some link that
was bogus.

I will qualify that as "it depends on the user". It's likely that a significant proportion of the userbase these days is neurodivergent in some way, and that increases the odds of uncanny pattern recognition (like me). This is the best antiviros of all. If it was possible to convert that ability to code, computer viruses wouldn't propagate at all.

Another advantage of this ability is that it gets better of time, one can make use of the accumulated data of decades of experience to recognise even totally new scams, phishing or whatever.

It is also not necessary to run virus protection on dedicated BBS computers or situations where installing software or clicking links
just never happens. If you don't want users uploading viruses to your board, don't accept uploads.

Agree totally. My BBS machine is Linux on ARM, so a Windows virus is nothing more than a harmless bit of junk that needs to be deleted. :)



... My opinions are my own; mistakes are the computer's fault.
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 08-04-22 08:24, Nightfox wrote to Atreyu <=-

It seems a little extreme to disable uploads just to prevent viruses..
I like that a BBS provides a way to share things (including files). If you don't want to install full virus protection for your system, you
can still install a virus scanner and set up something to virus-scan
your uploads on your BBS.

Given that the Internet is often a bigger source of files and BBS specific stuff often arrives in file echos, there's not a lot of reasons to allow uploads. But you do need to restrict uploads to your most trusted users these days.


... See if you can guess which drink will make me love you.
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 05 Aug 22 19:27:00, Vk3Jed said the following to Atreyu:

Another advantage of this ability is that it gets better of time, one can ma use of the accumulated data of decades of experience to recognise even total new scams, phishing or whatever.

Some of them ARE getting creative, I'll give it that, but maybe it comes with being on IT for many years that one knows what to look for .... you would think that of all the phishing/malware scams they would at least get the spelling and grammar right!

It is also not necessary to run virus protection on dedicated BBS computers or situations where installing software or clicking links just never happens. If you don't want users uploading viruses to your board, don't accept uploads.

Agree totally. My BBS machine is Linux on ARM, so a Windows virus is nothin more than a harmless bit of junk that needs to be deleted. :)

I made the decision a long time ago that my BBS will live the rest of its days on Windows until either I or the hardware expires.

Atreyu

--- Renegade vY2Ka2
* Origin: Joey, do you like movies about gladiators? (21:1/176)

At 6:22 AM on 4 Aug 22, Atreyu said to Bex:

On 03 Aug 22 19:29:00, Bex said the following to Atreyu:

I don't mean to sound b***hy, but I think this is very bad advice. There's a war between bad actors and users, and some of the bad actors are very good. Social engineering makes things worse.

Been doing this a long time... I cannot be tricked by a bad actor and
stand by my words, having not used virus protection for 2 decades even
with all the fun of XP.

Me too! I started working at HP a month before the original Windows 95 was released. We had to use it all the time so we would have experience for when users started calling about '95. I remember being both blown away by how
much better '95 was than 3.1.1, but also scoffed because it was nowhere near
as good as Workbench 2.x.

But the thing is, most people using computers - even professionals - don't
have as much experience as we do (I'm an old lady after all). The average
user has always had anti-virus on their systems and assume it will always be there. GenZers have also always had malware protection on their computers.

And that's a good thing.

(I should also note that I run Linux on all my boxes, so I don't worry about viruses or malware.)

either security problems with OS's or websites. Often times the products

Those are the exact reasons that it's a good idea to have AV and anti-
malware on a system.

whats deserved. There have never been situations in my life where I have been tricked into entering credentials or visiting some link that was bogus.

You are making the logical mistake of not seeing that your experience is
much difference than others.


Gob: I've made a huge mistake.

-*- ASTG 1.8

* Q-Blue 2.4 *
--- SBBSecho 3.11-Win32
* Origin: -=[conchaos.synchro.net | ConstructiveChaos BBS]=- (21:4/141)

On 08-05-22 08:08, Atreyu wrote to Vk3Jed <=-

Some of them ARE getting creative, I'll give it that, but maybe it
comes with being on IT for many years that one knows what to look for
.... you would think that of all the phishing/malware scams they would
at least get the spelling and grammar right!

Yeah, they sure are, and a couple of times I have thought "That's clever - nice try!" :D

I made the decision a long time ago that my BBS will live the rest of
its days on Windows until either I or the hardware expires.

I avoid Windows, especially desktop versions, for server tasks these days. Not a bad client/end user OS though.


... Don't argue with he who buys ink by the gallon.
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

Re: Re: Security Suites for c
By: Atreyu to Vk3Jed on Fri Aug 05 2022 08:08 am

Some of them ARE getting creative, I'll give it that, but maybe it comes wit being on IT for many years that one knows what to look for .... you would think that of all the phishing/malware scams they would at least get the spelling and grammar right!

The spellchecker filter is no longer the main defense.

I recently had to help somebody make it through his anti-phishing training course and, while I think the material is not abyssmal, I think it was obsolete.

Carpet bombing attacks in which they send thousands of phishing emails with a generic story which would apply to most people, attempting to get the dumbest of users to fall for them, are very easy to spot. However, as of late I have spotted very good targeted attemtps. Most people is not ready to deal with those, and that is frightening.

The worst of them all are those who are crafted from stolen information only a reduced group of people is used to have. For example, I have seen cases in which some medical asociation we colaborate with had a data breach, and the data thieves used the stolen information to impersonate members of the asociation and try to get Doctors to provide them with secret information or with funds.

You don't have to be a freak of nature to identify phishing attempts, but the new generation of attacks I see these days... I am sure it is VERY good at stealing money and data from people who is not familiar with the digital environment. A grandpa who has just made his first online purchase ever won't be worried if the "parcel delivery agency" (aka phisher who has compromised the delivery agency's IT) asks him for extra information to deliver the order.


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (21:2/138)

On 08-09-22 18:17, Arelor wrote to Atreyu <=-

I recently had to help somebody make it through his anti-phishing
training course and, while I think the material is not abyssmal, I
think it was obsolete.

While there will always be some carpet bombers, I can see the increasing sophistication of phishing attacks. It's an arms race, but I try and keep my awareness up to date. I rely more on context these days - that parcel delivery when I've ordered nothing, anything suspiciously "generic", password reset notifications to the wrong email address (I have several for historic reasons), and so on.

The worst of them all are those who are crafted from stolen information only a reduced group of people is used to have. For example, I have
seen cases in which some medical asociation we colaborate with had a
data breach, and the data thieves used the stolen information to impersonate members of the asociation and try to get Doctors to provide them with secret information or with funds.

That's getting very sophisticated and worrying.

You don't have to be a freak of nature to identify phishing attempts,

But it sure helps! :)

but the new generation of attacks I see these days... I am sure it is
VERY good at stealing money and data from people who is not familiar
with the digital environment. A grandpa who has just made his first
online purchase ever won't be worried if the "parcel delivery agency"
(aka phisher who has compromised the delivery agency's IT) asks him for extra information to deliver the order.

Mowst people are security issues waiting to happen, sadly.


... All wiyht. Rho sritched mg kegtops awound?
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

Arelor wrote to Atreyu <=-

Carpet bombing attacks in which they send thousands of phishing emails with a generic story which would apply to most people, attempting to
get the dumbest of users to fall for them, are very easy to spot.
However, as of late I have spotted very good targeted attemtps. Most people is not ready to deal with those, and that is frightening.

I've seen two attacks recently where Microsoft365 credentials were exposed
and a user's account used to send phishing emails. They set up a filter that routed any email with their subject line to the Deleted Items folder.

They were monitoring that folder and replying to emails in realtime.

I got an email with a pdf of an invoice, sent by our accounting person. I replied back and got a nebulous response. Walked over to the sender and
asked the question. She hadn't sent the invoice of responded to me. We found hundreds of emails in her deleted items folder and dozens of responses in
Sent Mail.



... Back in the stream that feeds the ocean that feeds the stream.
--- MultiMail/DOS v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

Vk3jed wrote to Arelor <=-

While there will always be some carpet bombers, I can see the
increasing sophistication of phishing attacks. It's an arms race, but
I try and keep my awareness up to date. I rely more on context these
days - that parcel delivery when I've ordered nothing, anything suspiciously "generic", password reset notifications to the wrong email address (I have several for historic reasons), and so on.

We're all able to keep up, it's the parents that I worry about. My mom gets emails and most of the time calls me.

What I've told her is that if an email makes her feel like she needs to act immediately, call me to confirm before you click anything.

Most scams rely on you acting on an impulse or panic to cloud your
judgement.


... Back in the stream that feeds the ocean that feeds the stream.
--- MultiMail/DOS v0.52
* Origin: realitycheckBBS.org -- information is power. (21:4/122)

On 08-11-22 08:01, poindexter FORTRAN wrote to Vk3jed <=-

We're all able to keep up, it's the parents that I worry about. My mom gets emails and most of the time calls me.

My parents are probably so low profile on the Internet, no spammer has their address. :)

What I've told her is that if an email makes her feel like she needs to act immediately, call me to confirm before you click anything.

I used to have to do that for a whole office.

Most scams rely on you acting on an impulse or panic to cloud your judgement.

True. My own self taught "reflex action" is to start a logical analysis of the situation. :)


... File not found, I'll load something *I* think is interesting.
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

Re: Re: Security Suites for c
By: Vk3jed to poindexter FORTRAN on Fri Aug 12 2022 07:38 pm

We're all able to keep up, it's the parents that I worry about. My
mom gets emails and most of the time calls me.

My parents are probably so low profile on the Internet, no spammer has their address. :)

I'm not sure if that really matters. Years ago, I created a new email address but didn't use it or share it anywhere. Eventually that email address started receiving spam emails.

On 08-12-22 09:09, Nightfox wrote to Vk3jed <=-

I'm not sure if that really matters. Years ago, I created a new email address but didn't use it or share it anywhere. Eventually that email address started receiving spam emails.

Interesting. Yet I have addresses that don't get spam. :)


... Cats - the ultimate stress reliever
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

Re: Re: Security Suites for c
By: Vk3jed to Nightfox on Sat Aug 13 2022 11:02 am

I'm not sure if that really matters. Years ago, I created a new
email address but didn't use it or share it anywhere. Eventually
that email address started receiving spam emails.

Interesting. Yet I have addresses that don't get spam. :)

I find that interesting.. I figured there were bots crawling the internet trying to figure out what email addresses exist, and possibly email providers (and ISPs?) selling data, allowing spammers to discover new email addresses.

Nightfox

On 13 Aug 2022, Nightfox said the following...

I find that interesting.. I figured there were bots crawling the
internet trying to figure out what email addresses exist, and possibly

any common first name @ any domain will be discovered fairly quickly. if the email doesn't bounce they go from there.

one of the domains i had this happen.. gets chinese spam and only about once every 3-6 months. not entirely sure what the objective is there.. you'd think
they'd hammer every new email they find.

perhaps the "rate of return" on custom/non public domains is really low.

... Everyone has a photographic memory. Some don't have film.

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: cold fusion - cfbbs.net - grand rapids, mi (21:1/616)

poindexter FORTRAN said to Vk3jed: <=-

We're all able to keep up, it's the parents that I worry about. My mom
gets emails and most of the time calls me.

What I've told her is that if an email makes her feel like she needs to
act immediately, call me to confirm before you click anything.

- Bex <3
George Sr.: You should have seen the face he made when - well, he's my twin brother, I'll show you.
-*- ASTG 1.8 (via Q-Blue 2.4)

On 08-13-22 09:16, Nightfox wrote to Vk3jed <=-

Interesting. Yet I have addresses that don't get spam. :)

I find that interesting.. I figured there were bots crawling the
internet trying to figure out what email addresses exist, and possibly email providers (and ISPs?) selling data, allowing spammers to discover new email addresses.

Maybe I have spam repallant? :D


... Anything is possible if you don't know what you're talking about
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)