jseverson
|
|
December 20, 2018, 01:58:32 AM |
|
I use uBlock Origin, and couldn't recommend it more. It works perfectly, requires minimal user set-up or maintenance, and I have never had any problems bypassing all those "Disable your ad blocker or you can't access this site" pop-ups and overlays we were just discussing. Having said that, I do also generally block Javascript by running NoScript, so I can't say for sure whether it is uBlock or NoScript that is responsible for blocking these pop-ups. I'm afraid I have no desire to turn either off for even a short time to ascertain the answer - I would recommend everyone uses both anyway.
Yeah, I also use both along with HTTPS Everywhere. I also never do anything remotely related to crypto on a Windows machine. These are probably all you really need if you're aware of basic safety practices. I've heard of password managers and whatnot, but I personally feel like having fewer extensions is generally better.
|
|
|
|
Kakmakr
Legendary
Offline
Activity: 3542
Merit: 1965
Leading Crypto Sports Betting & Casino Platform
|
|
December 20, 2018, 06:36:31 AM |
|
I also want to add, if you can, disable "auto complete" or just ignore it and just type the whole URL, if you do not trust browser add-ons.
Bookmark the site you want is a good alternative also. It's safer and more comfortable for the user, as people are lazy to type (I am at least) Nope, this is not a good idea. The bookmarks can be altered and hackers know people trust their bookmarks. This false sense of security is exactly what these hackers/criminals want. In some browsers you simply click on the favorite bookmark and edit the URL section <replace it with something else> A hacker simply search for the keywords in the registry and replace that with the phishing site URL.
|
..Stake.com.. | | | ▄████████████████████████████████████▄ ██ ▄▄▄▄▄▄▄▄▄▄ ▄▄▄▄▄▄▄▄▄▄ ██ ▄████▄ ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██ ██████ ██ ██████████ ██ ██ ██████████ ██ ▀██▀ ██ ██ ██ ██████ ██ ██ ██ ██ ██ ██ ██████ ██ █████ ███ ██████ ██ ████▄ ██ ██ █████ ███ ████ ████ █████ ███ ████████ ██ ████ ████ ██████████ ████ ████ ████▀ ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██ ██ ▀▀▀▀▀▀▀▀▀▀ ██ ▀█████████▀ ▄████████████▄ ▀█████████▀ ▄▄▄▄▄▄▄▄▄▄▄▄███ ██ ██ ███▄▄▄▄▄▄▄▄▄▄▄▄ ██████████████████████████████████████████ | | | | | | ▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄ █ ▄▀▄ █▀▀█▀▄▄ █ █▀█ █ ▐ ▐▌ █ ▄██▄ █ ▌ █ █ ▄██████▄ █ ▌ ▐▌ █ ██████████ █ ▐ █ █ ▐██████████▌ █ ▐ ▐▌ █ ▀▀██████▀▀ █ ▌ █ █ ▄▄▄██▄▄▄ █ ▌▐▌ █ █▐ █ █ █▐▐▌ █ █▐█ ▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█ | | | | | | ▄▄█████████▄▄ ▄██▀▀▀▀█████▀▀▀▀██▄ ▄█▀ ▐█▌ ▀█▄ ██ ▐█▌ ██ ████▄ ▄█████▄ ▄████ ████████▄███████████▄████████ ███▀ █████████████ ▀███ ██ ███████████ ██ ▀█▄ █████████ ▄█▀ ▀█▄ ▄██▀▀▀▀▀▀▀██▄ ▄▄▄█▀ ▀███████ ███████▀ ▀█████▄ ▄█████▀ ▀▀▀███▄▄▄███▀▀▀ | | | ..PLAY NOW.. |
|
|
|
CryptopreneurBrainboss
Legendary
Online
Activity: 2408
Merit: 4282
eXch.cx - Automatic crypto Swap Exchange.
|
|
February 12, 2019, 05:30:21 AM |
|
You know OP you have to keep reminding new forum member about using this security tips by bumping thread lets say once in every two months or so. I was searching how to save guide my BTT account after I almost fell prey to scam attempt of recent. You're doing some great work towards enlightening forum member to take privacy as our priority. Thank you for that.
|
|
|
|
logfiles (OP)
Copper Member
Legendary
Online
Activity: 2128
Merit: 1798
Top Crypto Casino
|
|
February 12, 2019, 09:14:38 PM |
|
<...>
Thank you, I will keep that in mind. Phishing is something that looks easy to evade but sometimes one could just be caught off guard, probably when one is trying to browser during times of fatigue or having less attention to the websites s/he is browsing.
|
|
|
|
|
|
Artemis3
Legendary
Offline
Activity: 2030
Merit: 1569
CLEAN non GPL infringing code made in Rust lang
|
|
February 13, 2019, 12:49:39 AM |
|
No mention for the Brave browser in a crypto board is quite strange, I started to use it in both PC and smartphone, it's pretty good!
If you are looking for a browser you can just download and run with, with minimal set up or configuration, then I agree Brave is probably the best "out of the box". However, Firefox supports much more advanced add-ons, just a few of which I have linked to above, and also allows a lot of customization and tweaks through about:config and "user.js" configurations. I haven't used Brave for several months, but last time I did it was absolutely horrible for browser fingerprinting. I'd be keen to know if that has changed? If you don't want to configure Firefox, then Brave is a better choice, but a properly configured and customized Firefox browser is better than Brave in terms of privacy and security. Brave is a Chromium based browser and can use the same add-ons as Chrome. My main browser is actually Waterfox, a Firefox based browser. Of course you can use Firefox add-ons (both old and new) with it.
|
█████████████████████████ ██████████████████████████ ██████████████████████████ ███████████████████████████ | BRAIINS OS+| | AUTOTUNING MINING FIRMWARE| | Increase hashrate on your Bitcoin ASICs, improve efficiency as much as 25%, and get 0% pool fees on Braiins Pool | |
|
|
|
o_e_l_e_o
In memoriam
Legendary
Offline
Activity: 2268
Merit: 18711
|
|
February 13, 2019, 06:03:58 AM |
|
My main issue with Waterfox is that they are quite slow in terms of security updates and patches compared to Firefox. Out-of-the-box Waterfox is definitely more private, as it has no telemetry features like Firefox. But if you know what you're doing, or you have a good guide to follow, you can configure Firefox to be just as good, if not better, than Waterfox.
|
|
|
|
mudyak99
Jr. Member
Offline
Activity: 304
Merit: 5
|
|
February 15, 2019, 06:25:00 AM |
|
better you bookmark the real website to keep safe from phising site. if you first time follow that website, very good if you can check their security,domain,website age and their ads. i always check it in scamadviser and see any preview in youtube video about that website.
|
|
|
|
logfiles (OP)
Copper Member
Legendary
Online
Activity: 2128
Merit: 1798
Top Crypto Casino
|
|
February 16, 2019, 05:34:42 AM |
|
<...>
Thanks, OP has been updated. It's sad that the link to their Firefox add-on does not work. <...>
Thanks but am currently looking at anti phishing add-ons. However, I look forward to making a topic related to malwarebytes sometime soon. better you bookmark the real website to keep safe from phising site. if you first time follow that website, very good if you can check their security,domain,website age and their ads. i always check it in scamadviser and see any preview in youtube video about that website.
Bookmarking is okay but also not 100% guaranteed safety. I was online when an attack was made on Etherdelta in 2017... In fact, I was even in the process of making a transaction to Etherdelta and do you know what saved my Private key from getting Phished? It obviously wasn't bookmarking( I had bookmarked Etherdelta and i still ended up loading a website whose DNS severs had been hijacked) but Netcraft gave me a warning(the ad-don was showing a risk rating of 9/10 at that time) and MetaMask displayed a warning. That's when I realized that Etherdelta was under attack and i stopped what i was doing immediately.
|
|
|
|
o_e_l_e_o
In memoriam
Legendary
Offline
Activity: 2268
Merit: 18711
|
|
February 16, 2019, 06:33:04 AM |
|
Thanks, OP has been updated. Be careful about adding every suggestion to your OP. Browser extensions are an easy way to distribute malicious code, since if your extension looks good/professional enough, many people will download it without really thinking about it. I've not even heard of some of these extensions, which is usually a warning sign for me given how much attention I pay to online security and privacy. I would certainly be considering checking the code out for yourself before recommending it to others.
|
|
|
|
Coyster
Legendary
Offline
Activity: 2170
Merit: 1299
Crypto Casino and Sportsbook
|
|
February 16, 2019, 06:49:16 AM |
|
I would certainly be considering checking the code out for yourself before recommending it to others.
When giving out tips based on security,its always very necessary to be a 100% sure of the website,product,service etc, thats not to say people shouldn't or wouldn't do their own research before taking in someone else's advice,recommendations,suggestions etc, but for the 1% that wouldn't,its good to be sure to a reasonable extent the advice being given out.
|
|
|
|
logfiles (OP)
Copper Member
Legendary
Online
Activity: 2128
Merit: 1798
Top Crypto Casino
|
|
February 16, 2019, 07:22:15 AM |
|
Thanks, OP has been updated. Be careful about adding every suggestion to your OP. Browser extensions are an easy way to distribute malicious code, since if your extension looks good/professional enough, many people will download it without really thinking about it. I've not even heard of some of these extensions, which is usually a warning sign for me given how much attention I pay to online security and privacy. I would certainly be considering checking the code out for yourself before recommending it to others. I did check out the source code before updating the list especially for phish fort as it's relatively new in the game. Wouldn't be fair recommending people an add-on i completely know nothing about
|
|
|
|
Pmalek
Legendary
Offline
Activity: 2912
Merit: 7505
Playgram - The Telegram Casino
|
|
February 16, 2019, 09:36:50 AM |
|
I was online when an attack was made on Etherdelta in 2017... In fact, I was even in the process of making a transaction to Etherdelta and do you know what saved my Private key from getting Phished? Those users who used a Ledger Hardware wallet even in the time of the attack were safe since hackers can't access funds without physical access to the device itself. Another win for Hardware Wallets.
|
|
|
|
▄▄███████▄▄███████ ▄███████████████▄▄▄▄▄ ▄████████████████████▀░ ▄█████████████████████▄░ ▄█████████▀▀████████████▄ ██████████████▀▀█████████ █████████████████████████ ██████████████▄▄█████████ ▀█████████▄▄████████████▀ ▀█████████████████████▀░ ▀████████████████████▄░ ▀███████████████▀▀▀▀▀ ▀▀███████▀▀███████ | ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄ Playgram.io ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀ | ▄▄▄░░ ▀▄ █ █ █ █ █ █ █ ▄▀ ▀▀▀░░
| │ | ▄▄▄███████▄▄▄ ▄▄███████████████▄▄ ▄███████████████████▄ ▄██████████████▀▀█████▄ ▄██████████▀▀███▄██▐████▄ ██████▀▀████▄▄▀▀█████████ ████▄▄███▄██▀█████▐██████ ██████████▀██████████████ ▀███████▌▐██▄████▐██████▀ ▀███████▄▄███▄████████▀ ▀███████████████████▀ ▀▀███████████████▀▀ ▀▀▀███████▀▀▀ | | │ | ██████▄▄███████▄▄████████ ███▄███████████████▄░░▀█▀ ███████████░█████████░░█ ░█████▀██▄▄░▄▄██▀█████░█ █████▄░▄███▄███▄░▄██████ ████████████████████████ ████████████████████████ ██░▄▄▄░██░▄▄▄░██░▄▄▄░███ ██░░░█░██░░░█░██░░░█░████ ██░░█░░██░░█░░██░░█░░████ ██▄▄▄▄▄██▄▄▄▄▄██▄▄▄▄▄████ ███████████████████████ ███████████████████████ | | │ | ► | |
|
|
|
jakezyrus
|
|
February 16, 2019, 10:07:31 AM |
|
I was online when an attack was made on Etherdelta in 2017... In fact, I was even in the process of making a transaction to Etherdelta and do you know what saved my Private key from getting Phished?
Being phished means you visited a fake/cloned website . if nothing bad happens to you and you believe that you access the correct url of etherdelta then you dont need to question yourself on why you didnt got hacked . Those users who used a Ledger Hardware wallet even in the time of the attack were safe since hackers can't access funds without physical access to the device itself. Another win for Hardware Wallets.
Hardware wallets are also exposed to attacks as soon as you already connect your hardware wallet into your gadget and your gadget is connecting online . those who didnt got hacked might not visited a fake website .
|
|
|
|
logfiles (OP)
Copper Member
Legendary
Online
Activity: 2128
Merit: 1798
Top Crypto Casino
|
|
February 16, 2019, 04:05:08 PM |
|
Being phished means you visited a fake/cloned website . if nothing bad happens to you and you believe that you access the correct url of etherdelta then you dont need to question yourself on why you didnt got hacked .
The attack happened on the exact Etherdelta website where there was temporary access to Etherdelta's DNS server by the hacker. It was the exact Etherdelta domain not like this usual phishing attempts you know of where there is a slight alternation of the domain name. I was starting to do a token transfer at that time of the attack so yes, I was doing something on a correct url of a website whose DNS server had been hijacked. If it wasn't for Netcraft and MetaMask's alerts. My funds were gone. This is not an ordinary phishing attempt we always see daily. We are talking about a DNS server getting hijacked. To enlighten yourself and refresh some memories of that day there is more here Cryptocurrency exchange EtherDelta got replaced with a fake site that steals your money
|
|
|
|
whotookmycrypto
Full Member
Offline
Activity: 168
Merit: 214
WhoTookMyCrypto.com
|
|
February 17, 2019, 02:16:11 PM |
|
Great list of extensions.
Other extensions that are useful given the prevalence of cryptojacking eg.
No Coin (Chrome, Firefox, Opera) minerBlock (Chrome, Firefox, Opera)
Also, to consider duckduckgo's extension.
|
|
|
|
o_e_l_e_o
In memoriam
Legendary
Offline
Activity: 2268
Merit: 18711
|
|
February 17, 2019, 03:08:20 PM |
|
No Coin (Chrome, Firefox, Opera) minerBlock (Chrome, Firefox, Opera)
Also, to consider duckduckgo's extension. +1 for No Coin. DuckDuckGo Essentials is certainly a good add-on, but it isn't the best. The issue it has (and many anti-tracking add-ons have) is that it simply uses a list of known trackers, and blocks anything that appears on that list. Compare that to Privacy Badger, which I recommended on my reply on the first page of this thread. Privacy Badger actively monitors your browsing session for anything that is trying to track you and blocks it. It has the advantage of catching quite a lot of stuff that is yet to be updated on to the anti-tracking lists that other add-ons use. DDG Essentials does some other stuff too, such as forcing encrypted connections, but that can be easily replicated by using HTTPS Everywhere (again linked to in my previous post). DDG Essentials is certainly a good add-on if you want something quick, easy and requiring no set-up, but if you are looking for the best privacy, security and anti-tracking, then Privacy Badger + others is the way to go.
|
|
|
|
|