There's a worrying trend amongst businesses who haven't yet been through some kind of IT related security issue. It's human nature to think bad things only happ...
The Dark side of BitCoin
- Carl Whalley 0 Comments
Why BitCoin?
There's no escaping it - BitCoin is everywhere now. You can't move for internet stories of how it's being used for both good, such as a powerful global currency outside of any central control, and evil such as the drug dealers on SilkRoad. This "anonymous" aspect hasn't escaped the attention of malware authors, and we're seeing the first viruses - and even warnings of a smartphone virus - which insists the victim pay using BitCoins for this very reason. Ouch.
Untraceable?
Yes and No. Whilst it should be obvious BitCoin is less traceable than a direct bank account transfer, it's a popular myth that it's totally anonymous. Technically, it is until there is a transaction - i.e. no one can just go and look into someones account without their knowledge or permission, but if they could access the identity of a party in a BitCoin transaction it might be possible to reconstruct the chain and analyse more. The term identity is a technical one BitCoin uses as part of the transaction process - it encourages users to change it each time to minimize this risk. More is explained on the BitCoin Anonymity page - but its a fair bet anyone considering using it for the nasty stuff will certainly be aware of how to hide their tracks this, and other ways.
Worlds first Smartphone Virus is 10 years old
- Carl Whalley 0 Comments
A decade after Cabir infected Symbian handsets
Everyone nowadays is (or should be!) as cautious when it comes to installing new apps in their smartphones as they are when it comes to installing software to their PCs. However, this wasn't always the case. Those with long memories might remember the days when the term "smartphone" itself was new, and those which could even connect to the internet were few and far between.
Downloadable software
It didn't take the bad guys long to figure out these new devices could run malware - and the users would be virtually powerless to guard against it at that time since there was no such thing as as smartphone virus. Cabir, aimed at Nokia Series 60 Symbian handsets, spread via Bluetooth. It was capable of infecting any similar device which came within range - in fact the biggest outbreak was during the Helsinki Athletics World Cup.
Flying drones used to hack smartphones
- Editor 0 Comments
Hackers fit WiFi sniffers to drones
As if smartphone users haven't enough to worry about, here comes "Snoopy" - drones with WiFi access points capable of hacking your smartphone from literally above your head. Hackers have actually built - and flown in London - a device which genuinely retrieved passwords and other confidential account details.
Spoofs WiFi access points you trust
The system uses your smartphones' feature of attempting to connect to a WiFi point you've already granted access to, because you've connected to it before. These could be public ones, such as Starbuck, McDonalds or BT. If the drone is in a public place close to a real one, it make the likelihood even greater of unknowing users being hacked.
10 Million Android Apps compromised
- William Damage 0 Comments
Unofficial app stores are a hackers paradise
Kaspersky Labs are warning Android users that the growing threat from malware has reached upwards of 10 million apps. The danger this poses ranges from stealing passwords, sending spam, sending premium text messages charged to your account or even turning your handset into a zombie controller capable of launching attacks on other targets. They have also identified a new kind of target - the booming virtual currency systems appearing now such as BitCoin.
Going for the money
By far, however, the largest target was financial information. Banking apps are an obvious target, but increasingly a "pure" virus isn't the only method - social engineering malware also plays a part, for example taking over a Facebook or Twitter account. Multiple attack vectors also play a role - even basic attempts such as links sent via SMS, which then download malicious Apps when clicked. Kaspersky's report states Android is the target for 98.05% of known (mobile) malware.
Beware fake AV and ransomware
- Carl Whalley 0 Comments
Ransomware: The new smartphone virus evil
Ransomware has been a nasty plague for PC users for years. This is where the victims are forced to pay the virus authors to unlock their systems. The bad news for smartphone users is there are now reports in the wild of the same thing targeting their handsets.
Symantec is warning Android users of Android.Fakedefender which has elements of both fake AV alerts and ransomware. Infected users see a realistic looking "virus scan" but find their handset is locked up with a warning that they need to pay to unlock it.
Play Angry Birds and get a virus?
- Carl Whalley 0 Comments
"Cramming" - tricking users into agreeing to a bogus charge
Jesta Digital LLC, trading as Jester, has just been fined $1.2m and must issue refunds for running a scam whereby it told Angry Birds players they had a virus and could clear it by clicking their link. Known as "cramming", the users then found their phone bill had been charged for what in effect was a non-existent service.
The FTC found that the charge wasn't just a one off either - in a brazen act of outright fraud, Jamster ended up charging them $9.99 per month for bogus ringtones and other worthless "content" which they tried to claim the user had agreed to. The proposed settlement bans Jesta from making deceptive statements about viruses and anti-virus software, the price of goods or services, or conditions of a purchase. They must also get express verifiable authorization from a consumer before it can charge their mobile phone bill.
Obad Android Virus: The worst yet
- William Damage 0 Comments
Backdoor.AndroidOS.Obad
That's the name given to a new Android virus discovered by Kaspersky labs, and it looks to be the worst one yet.
It's a trojan which simultaneously attacks on multiple fronts including an attempt to gain root access. Most users don't know, nor need to know, what root access allows, and the major manufacturers ship their handsets with this disabled for security. However, both Android enthusiasts and hackers know full well if a handset has been rooted their Apps can access all its data unrestricted.
A sophisticated command and control system, runnning on remote servers, sets the handset up so that it not only "phones home" with all the data, but then becomes a zombie under the control of the bad guys.
Sky to Android users: "Our Apps contain malware"
- William Damage 0 Comments
Syrian Electronic Army
Sky's Google Play store Apps have had their logo changed to the Syrian Electronic Army's and and their description showing the message "Syrian Electronic Army was here". Sky has issued a statement advising its users remove their Apps until the issue is resolved.
Matthew Keys, the former Reuters social media editor, says the attack was confirmed to him by an unnamed SEA hacker.
Syria is currently in the midst of a vicious civil war. The Syrian Electronic Army is thought to be aligned with the country's dictator, Bashar al-Assad.
Lookout for BadNews
- William Damage 0 Comments
Russian Malware makes it into the Google Play Store
Mobile security company Lookout are warning Android users there were 32 separate apps on the Google Play Store which contained the hidden "BadNews" malware. When activated, it sent SMS messages to premium text lines which the malware authors, thought to originate in Russia, then collected. It also targeted users in Russia and surrounding countries, according to the BBC.
Google has suspended the developer accounts which were used to create and upload the Apps.
There was no identifiable pattern to the types of app infected - they ranged from games and recipies right through to innocent-looking wallpaper apps.
With estimates of up to 9 million downloads, it seems the developers knew it was only a matter of time before being caught - hence this being termed a "digital smash and grab" type operation.
Android malware discovered which pretends to be anti-malware
- Editor 0 Comments
Ad lures victims to fake anti-virus app
Using on-device ads, a trojan has emerged targetting Android users which is known as "Android.Fakealert.4.origin".
Windows users are well aware of this trick which has proved very effective over the years, but it's the first time a widespread attack like this has been reported on Android.
Unlike screening malware apps from the Google Play store, ads are a different beast altogether since almost all the free apps available show them as their primary revenue stream. In other words, the "delivery" mechanism itself is nearly impossible to remove.
Initially reported by Antivirus firm Dr Web, it is pointed out it is the advertisements that prompt users to scan their mobile devices for viruses and then lure them into downloading a fake anti-virus for Android - the ads themselves cannot carry the virus automatically into the handset.
