Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firewall settings on Kaspersky Total Security 2015......


  • Please log in to reply
13 replies to this topic

#1 Star_Slight

Star_Slight

  • Members
  • 205 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:01 PM

Posted 27 February 2015 - 03:31 PM

So I was just looking at that settings on Kaspersky Total Security 2015 and stumbled upon this..

Block and warn about insecure transmission of passwords over the Internet.
With this option enabled, Kaspersky Internet Security will block an attempt to send a password within a none secure public or home Wi-Fi network.



Does anyone use this feature or know about it? It's off by default..

I mainly use my laptop at home but sometimes use public Wi-Fi such as cafes, hotels etc. or round other people's houses.. 

Is it really necessary? Or will it just limit me?



BC AdBot (Login to Remove)

 


#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,607 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:01 PM

Posted 27 February 2015 - 03:51 PM

Hi Star :)

It's a good thing to have it enabled by default if you asks me, since it could prevent your passwords from being sent over a network that have been compromised if a MiTM (Man in the Middle) attack have been setup. I suggest you to leave it enabled and if you have issues browing the web on your own network(s), then you can disable it and see if it works or add these networks as exceptions under Networks. Kaspersky posted a small article on their blog about Kaspersky Internet Security WiFi features, here:

http://usblog.kaspersky.com/tip-stay-safe-wifi/

Also, a review on 7Tutorials.com suggests you to enable that feature (at the end of it):

http://www.7tutorials.com/security-everyone-reviewing-kaspersky-internet-security-2015

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:01 AM

Posted 27 February 2015 - 07:01 PM

Does somebody have an idea how this detection works? From a technical point of view, how can Kaspersky recognize a password?

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#4 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,607 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:01 PM

Posted 27 February 2015 - 11:26 PM

Well I guess that it grabs that a login form is being sent and it comes into play. So it might not only affect "passwords", but every kind of "form" you fill and you send to a server.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#5 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:01 AM

Posted 28 February 2015 - 06:21 AM

I'm asking because I remember there's a security product (totally forgot the name) that asks you to initialize it with your credentials and other confidential data, like SSN and CC.

Then it monitors the network and alerts you when it detects these strings in cleartext.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#6 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,607 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:01 PM

Posted 28 February 2015 - 11:38 AM

Is that security product an Antivirus, Antimalware, Firewall? Because that would be a real first for me, never heard of that. I would like to know more about it however.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#7 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:11:01 PM

Posted 28 February 2015 - 11:48 AM

Is that security product an Antivirus, Antimalware, Firewall? Because that would be a real first for me, never heard of that. I would like to know more about it however.

Kaspersky Total Security appears to be some sort of *upgrade* from Internet Security, with additional functionalities.

AFAIK Emsisoft and Malwarebytes still outdo Kaspersky in terms of AM protection.

Alex

#8 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,607 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:01 PM

Posted 28 February 2015 - 11:50 AM

I know that Alex, I'm a Kaspersky user don't forget :P I was asking information about the product Didier is talking about, which is most likely not a Kaspersky product.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#9 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:01 AM

Posted 28 February 2015 - 12:36 PM

Is that security product an Antivirus, Antimalware, Firewall? Because that would be a real first for me, never heard of that. I would like to know more about it however.

 

It's one of those all-in-one security suites.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#10 Star_Slight

Star_Slight
  • Topic Starter

  • Members
  • 205 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:01 PM

Posted 28 February 2015 - 02:08 PM

Ok thanks for your help Aura, i'll leave it enabled and see how i get on. Better to be safe than sorry!


Edited by Star_Slight, 28 February 2015 - 02:08 PM.


#11 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,607 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:01 PM

Posted 28 February 2015 - 02:09 PM

No problem Star :) Also Didier, I've never heard of it but I'll look a bit into it, maybe I'll find something.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#12 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:01 AM

Posted 28 February 2015 - 03:10 PM

Also Didier, I've never heard of it but I'll look a bit into it, maybe I'll find something.

 

I did quite a bit of Googling, and finally came up with something that resembles what I saw: Bitdefender's Personal Data Filter. But I really can't remember what company it was.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#13 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,607 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:01 PM

Posted 28 February 2015 - 03:12 PM

I hope that they encrypt these strings somehow and keep them somewhere safe since it's really dangerous to keep them locally on a system, in plain text. I thought that maybe they would go throught the "format" of a text area when forms are being sent and if the form matches a SSN, CC, etc. they would protect it.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#14 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:12:01 AM

Posted 28 February 2015 - 03:35 PM

There are some numbers that have a check digit, and can be recognized just by their format and matching check digit. Like CC numbers with the Luhn algorithm.

But SSNs have no check digit.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users