A Week in Security (Jun 22 – 28)
Comments : Off
Top news stories:
- Selfmite: Attack using SMS worm to increase pay-per-install income. Mobile Security company Adaptive Mobile discovered the first SMS-propagating worm for Android devices they named “Selfmite”. (Source: Adaptive Mobile Blog)
- IE users get new protection against potent form of malware attack. “Microsoft developers have fortified Internet Explorer with new protections designed to prevent a type of attack commonly used to surreptitiously install malware on end-user computers.” (Source: Ars Technica)
- F1 star Michael Schumacher dead? It’s the latest sick Facebook scam. False news of Michael Schumacher’s death hit Facebook last week. (Source: We Live Security ESET Blog)
- Poorly anonymized logs reveal NYC cab drivers’ detailed whereabouts. A software developer was able to deanonymize data regarding taxi drivers’ recorded whereabouts with the use of predictable patterns of hack license numbers and medallion numbers. (Source: Ars Technica)
- Google Glass Snoopers Can Steal Your Passcode With a Glance. Researchers at the University of Massachusetts Lowell conducted an experiment that allowed them to spy and record PIN codes entered via mobile devices using wearable smart gadgets. (Source: Wired)
- 2014: The Year Extortion Went Mainstream. Brian Krebs declared how 2014 would be remembered in the years to come, backing it up with stories from targeted pizza stores that received letters in the mail from extortionist. (Source: Krebs on Security)
- Duo Security Researchers Uncover Bypass of PayPal’s Two-Factor Authentication. Researchers at Duo Labs took advantage of an inherent flaw in PayPal’s API web service and (partially) in their mobile app in order to gain access to secure accounts. (Source: Duo Security Lab)
Stay secure, everyone!