Viry a Červi

Lock-Screen Bypass Bug Quietly Patched in Handsets

VirusList.com - 16 Listopad, 2018 - 17:42
The flaw allows hackers to bypass handset lock screens in seconds.
Kategorie: Viry a Červi

VB2018 video: Shedding skin - Turla's fresh faces

Virus Bulletin News - 16 Listopad, 2018 - 15:35
Today, we have published the video of a VB2018 presentation by Kaspersky Lab researchers Kurt Baumgartner and Mike Scott, who looked at the latest activity of the Turla group.

Read more
Kategorie: Viry a Červi

How to rob an ATM? Let me count the ways…

Sophos Naked Security - 16 Listopad, 2018 - 15:34
A comprehensive new report lifts the lid on the sketchy state of ATM security.

BlackBerry absorbs Operation Cleaver beaver Cylance into threat detection unit

The Register - Anti-Virus - 16 Listopad, 2018 - 14:47
$1.4bn match made in heaven

BlackBerry has made its biggest acquisition ever, spending over half of its cash pile to bolster its threat detection unit.…

Kategorie: Viry a Červi

Judge asks if Alexa is witness to a double murder

Sophos Naked Security - 16 Listopad, 2018 - 14:18
A judge has ordered Amazon to turn over any recordings an Echo device may have made around the time a horrific crime occurred.

'Unjustifiably excessive': Not even London cops can follow law with their rubbish gang database

The Register - Anti-Virus - 16 Listopad, 2018 - 14:14
Gangs Matrix led to 'multiple and serious' breaches of data protection rules, says watchdog

London cops have broken data protection rules by using a controversial database that ranks people's likelihood of gang-related violence but fails to distinguish between victims and perps, and low and high-risk people.…

Kategorie: Viry a Červi

Hacking MiSafes’ smartwatches for kids is child’s play

Sophos Naked Security - 16 Listopad, 2018 - 13:23
Researchers describe breaking into the watches as "probably the simplest hack we have ever seen."

AI-generated ‘skeleton keys’ fool fingerprint scanners

Sophos Naked Security - 16 Listopad, 2018 - 13:02
Artificial intelligence can be used to 'grow' fake fingerprints that pack in common features, fooling scanners.

Where to implant my employee microchip? I have the ideal location

The Register - Anti-Virus - 16 Listopad, 2018 - 11:20
Swipe – open toilet door – and swipe again

Something for the Weekend, Sir?  "Work out loud," my prospective new employer tells me, adding that "we are a team, not a family". Sister Sledge need not apply.…

Kategorie: Viry a Červi

MIT to Oz: Crypto-busting laws risk banning security tests

The Register - Anti-Virus - 16 Listopad, 2018 - 03:17
I see the red team and I want it painted black

Australia's government's crypto-busting legislation risks blocking security research, a leading Internet policy boffin has warned.…

Kategorie: Viry a Červi

Super Micro chief bean counter: Bloomberg's 'unwarranted hardware hacking article' has slowed our server sales

The Register - Anti-Virus - 16 Listopad, 2018 - 01:15
CEO insists Chinese spy chip bombshell 'impossible'

Super Micro Computer on Thursday reported net sales in the range of $952m to $962m for the first quarter of its fiscal 2019, which ended September 30, 2018. That's higher than company guidance of $810m to $870m, and up roughly 40 per cent on the year-ago period.…

Kategorie: Viry a Červi

tRat Emerges as New Pet for APT Group TA505

VirusList.com - 15 Listopad, 2018 - 23:53
The modular malware seems to be in a testing phase, but TA505's interest made researchers take note.
Kategorie: Viry a Červi

Up to three million kids' GPS watches can be tracked by parents... and any miscreant: Flaws spill pick-and-choose catalog for perverts

The Register - Anti-Virus - 15 Listopad, 2018 - 22:43
Gadgets can be hacked to spy on, find youngsters – claim

Parents could be unwittingly putting their children's safety and privacy at risk, thanks to security vulnerabilities in potentially millions of kids' GPS-tracker watches.…

Kategorie: Viry a Červi

John McAfee is 'liable' for 2012 death of Belize neighbour, rules court

The Register - Anti-Virus - 15 Listopad, 2018 - 20:24
Default judgement for one-time antivirus bad boy

Infosec personality John McAfee has been found legally "liable" via a default judgment for the death of his neighbour, who was found dead from a gunshot wound to the head in his Belize home in 2012.…

Kategorie: Viry a Červi

Thought you deleted your iPhone photos? Hackers find a way to get them back

Sophos Naked Security - 15 Listopad, 2018 - 19:17
The hacking duo @fluoroacetate demonstrated zero-day exploits against phones from Apple, Samsung and Xiaomi at the recent Pwn2Own contest.

Managing the Risk of IT-OT Convergence

VirusList.com - 15 Listopad, 2018 - 18:34
Why manufacturing and logistics are especially challenged.
Kategorie: Viry a Červi

Connected Wristwatch Allows Hackers to Stalk, Spy On Children

VirusList.com - 15 Listopad, 2018 - 18:04
"Our advice is to stop using this watch" as mitigations are not available, researchers told Threatpost.
Kategorie: Viry a Červi

Ahead of Black Friday, Rash of Malware Families Takes Aim at Holiday Shoppers

VirusList.com - 15 Listopad, 2018 - 17:19
As consumers skip the store crowds in favor of online deals, cyberattackers have geared up to victimize them.
Kategorie: Viry a Červi

Phishingový útok na Českou spořitelnu včetně „bezpečného“ webu

VIRY.CZ - 15 Listopad, 2018 - 13:29

Další phishingový útok je tentokrát zaměřen na klienty České spořitelny, resp. online bankovnictví Servis24. Zajímavostí je, že web útočníka je opatřen i validním SSL certifikátem, tudíž prohlížeč zobrazuje symbol zeleného zámečku, jako by šlo o bezpečný web…

Útok detailně popisuje kolega na serveru HOAX.CZ. Stručně řečeno: je to podvod, tj. neklikat a nic nezadávat.

Zajímavostí tohoto phishingu je, že stránka útočníka je opatřena validním SSL certifikátem, tj. útočník ji provozuje na protokolu HTTPS a v prohlížeči je k vidění symbol zeleného zámečku, nápis „Secure“ apod.

V praxi to znamená pouze to, že zabezpečná (=šifrovaná) je pouze komunikace mezi Vámi a serverem. Nic to ale nevypovídá o tom, zda jde o server útočníka nebo legitimní.

Více lze najít i v publikaci k 20 letům VIRY.CZ – https://www.viry.cz/kniha/

The post Phishingový útok na Českou spořitelnu včetně „bezpečného“ webu appeared first on VIRY.CZ.

Kategorie: Viry a Červi

Official Google Twitter account hacked in Bitcoin scam

Sophos Naked Security - 15 Listopad, 2018 - 12:44
The epidemic of Twitter-based Bitcoin scams took another twist this week as attackers tweeted scams directly from two verified high-profile accounts.
Syndikovat obsah