Is drive by attack a thing to be concerned of?

fordprefect

I clicked on a link today in vanadium and it stated something like "you have been hacked".

I think that it's quite unlikely to be the case, but not impossible. But if somebody can handle the effort to do it they wouldn't tell it right a way.

Anyway, I closed vanadium and deleted cache and browser data. I guees if it's really compromised it would'nt help either.

Any educated thoughts on that topic?

akc3n

fordprefect
There are no such such exit code nor [network error](chrome://network-errors/) that would be given by Vanadium.

fordprefect I clicked on a link today in vanadium and it stated something like "you have been hacked".

Vanadium is certainly not comprised! The site you visited most likely was though.

I guees if it's really compromised it would'nt help either.

Sure, a bad actor gained unauthorized access to the site, defaced the page, and left their tag, marking a successful attack.

Any educated thoughts on that topic?

The URL you provided in your second (deleted) comment returns this (screenshot from hybrid-analysis.com results) https://hybrid-analysis.com/file-inline/665b99cedefb703b1203a2bb/screenshot/screen_5.png

This is not at all the applicable to what the OP posted, as it is for analyzing scam messages and posts texts, etc. Not malicious code, etc.

[deleted] Just copied that link into bitdefender scamio, https://scamio.bitdefender.com/chat , see my post https://discuss.grapheneos.org/d/13156-bitdefender-scamio-is-it-worth-installing

Edit:

Based on the network analysis of dns requests from that URL you shared in your second comment (deleted), one domain is flagged, g[.]top4top[.]io and the analysis results:

fordprefect but not impossible

fordprefect

[deleted]
Thanks! How reliable is this analysis?

And how realistic is such an attack vector with grapheneos and vanadium?

It appears that scamio is focussed on fishing. But I didn't enter anything. I am worried that some scripts were loaded and excecuted and my device was compromised.

[deleted]

fordprefect And how realistic is such an attack vector with grapheneos and vanadium?

Not sure but someone else from GOS can answer

akc3n

re:

[deleted] Just copied that link into bitdefender scamio, https://scamio.bitdefender.com/chat

That service suggested by [deleted] is not at all applicable nor relevant to anything related to your question.

fordprefect Thanks! How reliable is this analysis?

It's not.

And how realistic is such an attack vector with grapheneos and vanadium?

You're device is not compromised by any means, the payload is for Windows based machine.

fordprefect It appears that scamio is focussed on fishing. But I didn't enter anything. I am worried that some scripts were loaded and excecuted and my device was compromised.

[deleted]

Not sure, it's a new AI service from bitdefender and their database, presumably as more use the service the more accurate the AI response will be.

Ciapp23

akc3n

I'm just a quietly satisfied user of GOS, but damn it's always nice to see the logically parsed responses you give to things. I always appreciate plane language breakdowns supported by evidence as needed.
High five, dude.

fordprefect

akc3n
Thank you very much for your effort! I was sleeping and couldn't reply earlier. Good news to wakeup to.

So if I clicked on that link on a windows machine, that would potentially be screwed?

Luckily I don't run any.

Small clarification: With my statement that it showed something like hacked, I meant the HTML content in the browser, no notification or error message on my device.

I was trying to understand the first post and the links before reading your second. Your second clarification helped a lot. What I got from the linjs is that it tries to disable the sandbox of ms edge.

Is it today safer for me, if I make such an mistake, if I do it on GrapheneOs compared to my linux laptop with firefox?