by CIRT Team
Android Malware Will Destroy Your Phone. No Ifs and Buts About It[source: bleepingcomputer]
A malware strain known as Loapi will damage phones if users don’t remove it from their devices. Left to its own means, this modular threat will download a Monero cryptocurrency miner that will overheat and overwork the phone’s components, which will make the battery bulge, deform the phone’s cover, or even worse. Discovered by Kaspersky Labs, researchers say Loapi appears to have evolved from Podec, a malware...
Read More
by CIRT Team
New GnatSpy Mobile Malware Family Discovered [source: trendmicro]
Earlier this year researchers first disclosed a targeted attack campaign targeting various sectors in the Middle East. This threat actor was called Two-tailed Scorpion/APT-C-23. Later on, a mobile component called VAMP was found, with a new variant (dubbed FrozenCell) discovered in October. (We detect these malicious apps as ANDROIDOS_STEALERC32). VAMP targeted various types of data from the phones of victims: images, text messages, contacts, and call history, among others. Dozens...
Read More
by CIRT Team
PERMISSIONS FLAW FOUND ON AZURE AD CONNECT [source: threatpost]
A permissions flaw in Microsoft’s Azure AD Connect software could allow a rogue admin to escalate account privileges and gain unauthorized universal access within a company’s internal network. Microsoft issued an advisory for the vulnerability on Tuesday. Affected are Office 365 customers running Microsoft’s Active Directory Domain Services in conjunction with Azure AD Connect software installed with the Express Settings, according to Preempt Security that first...
Read More
by CIRT Team
Uber says data breach compromised 380K users in Singapore [source: zdnet]
Ride-sharing company reveals 380,000 in Singapore were affected by the massive data breach that compromised 57 million accounts globally, but says no fraud or misuse has been tied to these users. Uber says an estimated 380,000 users in Singapore were impacted by the 2016 data breach that compromised 58 million accounts globally, but finds no incidents of fraud related to the attack. The ride-sharing operator...
Read More
by CIRT Team
More Than 1 Billion Passwords on the Dark Web Including 123456 [source: itsecuritycentral]
A dump of 1.4 billion passwords – clear text passwords available in an aggregated, interactive database – was recently discovered online by 4iQ. While it might sound like more of the same, a couple factors make this news both particularly concerning and sadly predictable. Details of the Data Here are a few details about what 4iQ discovered: The 41GB dump was found on December 5, 2017 in...
Read More
by CIRT Team
Pre-Installed Password Manager exposes systems to passwords stealing[securityaffairs]
White hat hacker discovered some Windows 10 versions come with a pre-installed version of Keeper Password Manager that exposes systems to passwords stealing. Some Windows 10 versions come with a pre-installed 3rd-party password manager app that could allow hackers to steal users credentials remotely. Starting from Windows 10 Anniversary Update (Version 1607), Microsoft included in its OS a new feature called Content Delivery Manager that silently installs new...
Read More
by CIRT Team
Apple plugs IoT HomeKit hole [source: nakedsecurity]
Apple just can’t seem to get away from the theme of security flaws right now. Last month it was the macOS 10.13 root password issue, hot on the heels of the news that the iPhone’s X’s much-vaunted Face ID authentication could be bypassed using a prosthetic mask. And it only seems fair to mention the small matter of the ‘show your password hint in encrypted APFS volumes’ issue...
Read More
by CIRT Team
How Small Businesses Can Prepare For the Rise of Ransomware[source: infosecurity-magazine]
Ransomware is a growth industry – and it’s growing because it works. Attacks that lock up data unless a ransom is paid shot up an unbelievable 6000% worldwide in 2016 over the previous year. According to the FBI, hackers “earned” over a billion dollars in ransomware attacks in 2016, some five times over the amount they netted in 2015. Despite the big numbers, it’s small users who may be...
Read More
by CIRT Team
December Microsoft Patch addresses 19 Critical browser issues[source: securityaffairs]
Microsoft released Patch Tuesday updates for December 2017 that address more than 30 vulnerabilities, including 19 Critical browser issues. Microsoft has released its Patch Tuesday updates for December 2017 that address more than 30 vulnerabilities, including 19 critical flaws affecting the Internet Explorer and Edge web browsers. Microsoft addressed several memory corruption flaws that can be exploited for remote code execution. Most of the vulnerabilities reside in...
Read More
by CIRT Team
Variation of Old Cryptographic Attack Affects giants[source: bleepingcomputer]
Three security researchers have discovered a variation to an old cryptographic attack that can be exploited to obtain the private encryption key necessary to decrypt sensitive HTTPS traffic under certain conditions. Named ROBOT, which stands for Return Of Bleichenbacher’s Oracle Threat, this new attack is a variation of the Bleichenbacher attack on the RSA algorithm discovered almost two decades ago. The original Bleichenbacher attack Back...
Read More
