What the actual f@ck, been using this forum & my internet security for a long time but today got this warning , had to over ride the security to access , WTF is that all about? Have we been infiltrated? Or have the Snowflake Police got us on a blacklist now? Be careful out there guys, big brother may be watching!
Just your nanny security decided it doesn't like the address or gateway...put the site on your approved list in the security app. Besides this forum is dangerous....mostly to your state of mind. I rest my case......https://www.thetriumphforum.com/threads/25599/
Its still interesting to find out why f-secure flags this as not being seucre. Sure, we can speculate in that big brother is watching or that its some parental crap enabled, but it isn't uncommon that sites being compromised and can spread malicious code. Generally people don't use antivirus as much today as they used to, so I would really appropriate if you looked into why f-secure flagged this as risk (if you get the chance). Its quite common that regular user spot problems first. The amount of unpatched webservers out there that has vulnerabilities that can be used to spread malicious code is large. Edit: Ah, on a second look it can be that f-secure didn't like that it was http only (not https)...not saying that's why...but could be.
A bit of feedback to the guys who runs the site, something to put on the todo-list. https://sitecheck.sucuri.net/results/thetriumphforum.co.uk There is also a PDF in this post that drills into it a bit deeper. Its not something extremely severe but definetly something to look into. I would recommend a deeper scan as well, can prob be carried out by the hosting company.
The site has an SSL certificate so unless f-secure intercepts the http request, which would seem unlikely, it probably usn't that. My money is on hackers from the Harley Owners Group.
I didn't download and open that random PDF posted to public forum That securi.net link seams to be complaining this site isn't accessible by TLS, which is bollocks. its TLSv1.3 (as all sites should be) according to my web browser and when testing with opensll from the commandline. And doing more geeky stuff I see that non-secure connections to this site are redirected to the secure protocol which implements the HTTP Strict Transport Security policy, saying it is only available via secure connection. EDIT: It looks more complicated than what I say above because of the Cloudfare CDN, so I'm not sure what's going on.
Ok, let’s just keep it simple you are dealing with a Luddite here, is there any cause for concern? Please note the only acceptable answers here are Yes or No!
Out of interest, (yeah really...), does it object if you go direct to thetriumphforum.com rather than what you are doing going to thetriumphforum.co.uk then getting redirected to the .com site? edited to add: ignore this request as the following post by brown mouse has answered it and put some more meat on the bones....
OK, mystery solved, sorta. Some of the confusion is that @Bad Billy and @SuperHans are using a web address ending in .co.uk whereas this forum lives at a .com address. (What I use and checked). The address at thetriumphforum.co.uk exists and is set up to just redirect your web browser to go straight to thetriumphforum.com. If I check the .co.uk address on my machine I get the same Cloudfare error that securi.net showed. So, whoever runs this site probably wants to look at this, probably the .co.uk address doesn't have a valid and up to date security certificate. (Perhaps it just got forgot as it's not the main address). @Bad Billy can keep his security software happy by changing his bookmark to the .com address.
It's not, there's an invalid security certificate for the .co.uk version of the forum's address... https://thetriumphforum.co.uk/
I'm a lot more comfortable with this sort of computer thing than trying to rivet chains There again, the best thing is riding motorcycles .
