Boxcryptor start failed / Keine sichere Verbindung

hunch

Boxcryptor doesn't start but displays the following message:

Dies ist keine sichere Verbindung
Sie haben versucht, eine unsichere Verbindung zu den Boxcryptor-Servern herzustellen. Das kann passieren, wenn Sicherheitssoftware oder Firewalls den Datenverkehr überwachen. Allerdings kann es auch ein Hinweis auf eine Man-in-the-Middle Attacke sein.

I ran Sophos Antivirus coming up with
Manual cleanup required: 'JS/DwnLdr-POC' at '/Users/rvogt/Library/Mail/V4/111C053A-CF7F-432F-B154-60D80C727FE0/INBOX.mbox/34C44B94-F0AB-427D-980E-DE3C8699AC0A/Data/7/3/3/Attachments/337119/2/PIC 8389.zip'

I deleted the path, a new run of Sophos detected no threat.
Still Boxcryptor doesn't start.

So there's probably more required than just deleting the zip file of the malware.

Does anybody know about JS/DwnLdr-POC malware and how to erase it completely (at least to be able to start Boxcryptor)?

Yasmin

Hello hunch,

this has nothing to do with the threat.

https://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/JS~DwnLdr-POC.aspx

Check to see if Sophos or another filtering software blocks to access to our servers:

https://www.boxcryptor.com/en/help/faq-and-troubleshooting/macos/#i-cannot-connect

If yes, please add an exception rule, so Boxcryptor is able to communicate with the server(s)

Best,
Yasmin

hunch

Hello Yasmin,

Your link https://www.boxcryptor.com/en/help/faq-and-troubleshooting/macos/#i-cannot-connect says:

I Cannot Connect to the Boxcryptor Servers
Depending on your system or network configuration, Boxcryptor may not always be able to communicate with our servers. However, there are some workarounds for the following scenarios.

Warning: This is no Secure Connection
If you are in an environment that performs traffic inspection, you might not be able to connect to our servers. Examples, where traffic inspection might interfere with Boxcryptor:
-Anti-virus solutions that protect internet traffic
-Public hotspots
-Company proxy servers
-Malware
Traffic inspection, techically speaking, is a man-in-the-middle attack. Therefore, it is important to make sure your system or internet connection is not compromised. You can check the certificate information provided, by clicking advanced in the error message.

Mac-Firewall is off, no hotspots, no proxy servers

Any other idea?

hunch

BTW the certificate information under Advanced is:

*.boxcryptor.com
DigiCert Inc
From 01/25/2018
To 09/29/2019
SHA1 d609226f012e4f17ae1f8f8f17911efcb086f352
Serial 0F3C4D542493CC0E21834E0174281B94

Yasmin

Hello hunch,

please send us a Debug Log at support(at)boxcryptor.com referring to the post here.

https://www.boxcryptor.com/en/help/faq-and-troubleshooting/macos/#how-to-create-a-debug-log

Thanks!

Best,
Yasmin