this post was submitted on 22 Feb 2024
1227 points (97.2% liked)

memes

10375 readers
3629 users here now

Community rules

1. Be civilNo trolling, bigotry or other insulting / annoying behaviour

2. No politicsThis is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent repostsCheck for reposts when posting a meme, you can only repost after 1 month

4. No botsNo bots without the express approval of the mods or the admins

5. No Spam/AdsNo advertisements or spam. This is an instance rule and the only way to live.

Sister communities

founded 1 year ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] empireOfLove2@lemmy.dbzer0.com 280 points 9 months ago (6 children)

McAfee is actual malware at this point anyway

[–] TxzK@lemmy.zip 84 points 9 months ago* (last edited 9 months ago) (3 children)

Imagine needing an antivirus

This comment was made by Linux gang

[–] empireOfLove2@lemmy.dbzer0.com 158 points 9 months ago* (last edited 9 months ago) (4 children)

Even Windows doesn't really even need a 3rd party anti-virus anymore. The built in windows defender has gotten so good as to really be all you need for active protection unless you're insanely stupid and keep bypassing it. Use Malwarebytes for deep file scans once in a blue moon, and you're golden.

[–] KoalaUnknown@lemmy.world 7 points 9 months ago (1 children)

I don’t even use windows defender. Never had any issues. (My windows PC is primarily for gaming)

[–] empireOfLove2@lemmy.dbzer0.com 8 points 9 months ago (2 children)

Do you have windows 8, 10 or 11?

Defender has been on in the background this entire time and you don't even know it. It is on by default and incredibly hard to truly disable.

[–] KoalaUnknown@lemmy.world 3 points 9 months ago* (last edited 9 months ago) (1 children)

Windows 11. It’s not that hard to completely remove. I have also removed Bluetooth and lots of other non essential functions. There are plenty of tools on GitHub that can do it. You can also just use a custom ISO.

[–] MonkderZweite@feddit.ch 1 points 9 months ago

All of them use the wim_uninstall thing, right?

[–] Ziglin@lemmy.world 2 points 9 months ago
[–] drathvedro@lemm.ee 4 points 9 months ago

windows defender has gotten so good

It's only good at detecting windows&office activation tools. I have never ever seen it detect anything other than those.

[–] PalmTreeIsBestTree@lemmy.world 4 points 9 months ago

It’s been good since Windows 7. The reason Windows has so many updates is for security.

[–] TxzK@lemmy.zip 2 points 9 months ago (2 children)

first party antivirus is still antivirus

[–] cm0002@lemmy.world 65 points 9 months ago (2 children)

Hate to tell you this, but Linux nor MacOS are safe without AV

It's just Windows, by far, has the largest share of active systems so everyone targets it. Both MacOS and Linux have their own share of bonafide viruses though

[–] thefartographer@lemm.ee 65 points 9 months ago

Hate to tell you this, but nuh-uh! My Linux server is just going through a phase where it likes to collect porn ads and share credit card info with Russia!

[–] corsicanguppy@lemmy.ca 1 points 6 months ago

have their own share

for Reeeeeeeeeeally small values of 'share'.

"Wait! There was Lion! And .. .. .. "

[–] Perfide@reddthat.com 14 points 9 months ago* (last edited 9 months ago) (1 children)

It's still not actually needed for experienced users though, I haven't had a virus in over 10 years, so it hasn't had anything to catch.

Boy oh boy did it freak the fuck out about the exe I compiled myself from a python script I wrote myself, though. Had to specifically exclude it from defender to stop it from quarantining it every time it ran. All it does is check to see if a link on a website has been updated since last look...

[–] pivot_root@lemmy.world 15 points 9 months ago* (last edited 9 months ago) (1 children)

This is the main takeaway that people seem to be missing: follow good computer hygiene, and you'll be fine.

Keep your shit updated, and don't download/run things you don't trust. Keep an unintrusive anti-virus running in the background as a backup just in case there's a supply chain attack, but don't rely on it to make your decisions on whether to open a file or not.

[–] shneancy@lemmy.world 15 points 9 months ago

golden rules of PC hygine:

don't use an admin account as your main account

if you haven't directly triggered it yourself, the answer to that pop-up is "no"

[–] sebinspace@lemmy.world 49 points 9 months ago (2 children)

Imagine thinking you’re immune to malware

[–] pivot_root@lemmy.world 14 points 9 months ago

Nobody is immune to it, but it's a lot less common for sketchy websites to provide malware downloads specifically targeting Linux PCs. The market share is nonexistent, the average user is more technically inclined, and the desktop environment ecosystem is full of variations that make it difficult to develop a one-size-fits-all solution.

It simply isn't worth it for most malware creators to focus on Linux desktops. Servers are a different story, but that malware is planted by humans or automated intrustion tools.

That being said, none of this precludes stupidity. If somebody downloads Oppenheimer-1080p.mkv.exe and opens it in WINE, you can bet your ass that the ransomware malware will do its job just fine.

[–] dangblingus@lemmy.dbzer0.com 2 points 9 months ago (1 children)

Don't download shady exes, run ublock origin, force https, use a vpn, and reroute your DNS lookups. It's super easy to not download viruses and malware.

[–] pivot_root@lemmy.world 15 points 9 months ago (2 children)

I agreed with you up to the "use a vpn" part. That's just wasting money and adding extra steps for the sake of paranoia.

If you're using SSL/TLS and not blindly bypassing invalid certificate warnings, you're not going to have your device or accounts compromised by the hacker boogeyman.

[–] lightnsfw@reddthat.com 6 points 9 months ago (1 children)

My VPN saves me 100s of dollars a year I would otherwise be spending on subscription services.

[–] pivot_root@lemmy.world 9 points 9 months ago* (last edited 9 months ago)

You have a good reason to use a VPN: bypassing region restrictions (or piracy). The people subscribed to a VPN service for security reasons usually don't*.

* Excluding those living under a censorship heavy government.

[–] Chriswild@lemmy.world 2 points 9 months ago (1 children)

Some VPNs advertise they stop malware so I get why they say that but you're right.

[–] psud@lemmy.world 1 points 9 months ago (1 children)

They hide your browsing from your ISP (and probably your government)

They hide your origin and substitute another for web sites.

I'd say a VPN is only useful to people engaging in crime, or things that look like crime and those buying services that are priced differently around the world

That provide no protection against things you might click on

[–] Chriswild@lemmy.world 2 points 9 months ago (1 children)

There are far more uses for a VPN. For instance if I want to access my NAS while outside my home.

[–] psud@lemmy.world 1 points 9 months ago (1 children)

Sure, but that's not generally a thing the commercial VPNs offer, and I thought we were talking about commercial VPNs

[–] Chriswild@lemmy.world 1 points 9 months ago (1 children)

But some VPNs do provide you a little protection on things you might click on. Ublock and not being a dummy will get you around most of that use but for general users it is more safe.

[–] psud@lemmy.world 1 points 9 months ago (1 children)

Sure, but that's not VPN action, it's routing or filtering

[–] Chriswild@lemmy.world 1 points 9 months ago

Sure but when I'm not on my network a VPN doing that is good.

[–] SchmidtGenetics@lemmy.world 28 points 9 months ago (2 children)

Hasn’t a bunch of malware spyware and other malicious shit been found all over decades old Linux stuff the last couple months?

[–] MotoAsh@lemmy.world 34 points 9 months ago* (last edited 9 months ago) (1 children)

IIRC, that was more about auditing the "supply chain" of apps and Linux. Some college kids were purposefully trying to get malware on the mainline Linux repo and obviously got themselves banned from touching Linux.

Otherwise it's just been normal security vulnerability type stuff? There was also a long-existing bug found in a very common library recently, but that's very solidly in the normal flow of security research, the bug just happened to be sitting there a while.

Linux of course is a target and has malware. It'd be completely stupid of attackers to ignore Linux because the vast majority of servers run it. It's a readily available target with lots of goodies on those servers.

[–] thefartographer@lemm.ee 9 points 9 months ago (1 children)

I don't think it was just some college kids, I could have sworn their professor was specifically getting his students to perform as bad actors to support some super-biased research papers he was trying to publish.

[–] Pika@sh.itjust.works 8 points 9 months ago (1 children)

Yeah but this wasn't recent, this one was like 4 or 5 years ago unless it happened again. If I remember correctly it got the entire University's email address banned from contributing to the kernel

[–] thefartographer@lemm.ee 5 points 9 months ago

Oh yeah, I get what you're saying. Yeah, two completely separate instances. Although, from the sound of it, there are a surprising number of people who seem to think that sabotaging Linux and hacking Linux are the same thing. I mean, I guess a pirate can sail on any ship, right?

[–] TWeaK@lemm.ee 13 points 9 months ago (1 children)

Yeah but antivirus software doesn't pick up zero days, which is what you should really be concerned about.

I had some Chinese radios a few years ago, they were proper radios that you could program for all sorts of stuff. I had the software on a USB stick, then plugged it in about 5 years later - pinged up with all sorts of viruses that weren't detected previously.

[–] SchmidtGenetics@lemmy.world 7 points 9 months ago (1 children)

They don’t pick up anything that they don’t know about, so once the zero day is known the antivirus/malware can find and remove it I thought.

[–] pivot_root@lemmy.world 3 points 9 months ago

They don't catch zero-day exploits, as those are vulnerabilities in programs that were discovered to be used in the wild. They will eventually catch the malware dropped through those exploits, though.

[–] kryptonianCodeMonkey@lemmy.world 47 points 9 months ago

CCleaner is too nowadays. How far it it has fallen...

[–] otacon239@feddit.de 36 points 9 months ago (2 children)

CCleaner also hasn’t been necessary since at least Windows 7. I remember working in a PC repair shop when people would just arbitrarily run CCleaner on its most aggressive settings whether it was needed or not and it would always break more things than it fixed.

[–] empireOfLove2@lemmy.dbzer0.com 18 points 9 months ago

And even if it was, why tf have it open on startup? It should be run like, manually once a month at most.

[–] GregorGizeh@lemmy.zip 3 points 9 months ago

I mostly used it to clear out various caches and cookies, and invalid or no longer necessary file type extensions, folders and so on.

Was very handy for that, and usually freed up a surprising amount of disk space (back when a few gigs more or less made a huge difference)

[–] cm0002@lemmy.world 9 points 9 months ago (1 children)

And almost Every. Fucking. Manufacturer. Installs it as bloatware :/

[–] dual_sport_dork@lemmy.world 14 points 9 months ago (1 children)

They get paid to do so. It's not like they just install McAfee at random.

[–] cm0002@lemmy.world 1 points 9 months ago

Oh I know, but still they couldn't find some other software to get paid by? Like damn diversify already, find something fresh and interesting you can get paid to install lol

Like WebTangent or whatever it was called, it was bloatware, but it was bloatware games that were kinda fun. I would always play a few games before I purged that one, but I haven't seen it in years now

[–] CrabAndBroom@lemmy.ml 5 points 9 months ago

I almost felt the same way about MalwareBytes. I know it's actually useful but it hassled me so much about upgrading to premium that it was more annoying than having actual malware.

[–] Risk@feddit.uk 3 points 9 months ago

What do you mean at this point?! It's been malware for almost two decades!