http://hakin9.org IT Security Magazine Tue, 15 May 2012 11:30:37 +0000 en hourly 1 http://wordpress.org/?v=3.3.2 http://hakin9.org/fake-av-apps-circulating-on-google-play/ http://hakin9.org/fake-av-apps-circulating-on-google-play/#comments Fri, 11 May 2012 11:01:02 +0000 IDTP http://hakin9.org/?p=3422
Android users should beware. Developer “thasnimola” has uploaded over 15 fake AV and ‘free SMS’ apps to Google Play. This is the same developer who back in April was flagged for flogging fake NQ Mobile security apps. What is surprising is that Google Bouncer didn’t pick these fake apps up – it was a third-party research [...]]]> http://hakin9.org/fake-av-apps-circulating-on-google-play/feed/ 0 http://hakin9.org/millions-in-the-us-dont-use-facebook-privacy-settings/ http://hakin9.org/millions-in-the-us-dont-use-facebook-privacy-settings/#comments Fri, 11 May 2012 10:53:10 +0000 IDTP http://hakin9.org/?p=3418
A recent US study has found that nearly 13 million US users of Facebook are either simply unaware of, or simply don’t use privacy settings. The study found that 4.8 million people have shared details about their plans for a certain day and 4.7 million have ‘liked’ a Facebook page related to heath issues or treatments. The [...]]]> http://hakin9.org/millions-in-the-us-dont-use-facebook-privacy-settings/feed/ 0 http://hakin9.org/apple-release-mac-os-x-10-7-4-software-update/ http://hakin9.org/apple-release-mac-os-x-10-7-4-software-update/#comments Fri, 11 May 2012 10:49:46 +0000 IDTP http://hakin9.org/?p=3411
Yesterday (May 9th) Apple released two major updates for Mac OS X. The first being a software update from 10.7.3 to 10.7.4 which includes Safari 5.1.6. After installing this software update you will then be prompted to install Safari 5.1.7. Mac OS X 10.7.4 fixes the Mac OS 10.7.3 Lion login password debug file vulnerability. This exposed [...]]]> http://hakin9.org/apple-release-mac-os-x-10-7-4-software-update/feed/ 0 http://hakin9.org/mac-os-x-10-7-3-lion-login-passwords-exposed/ http://hakin9.org/mac-os-x-10-7-3-lion-login-passwords-exposed/#comments Fri, 11 May 2012 10:47:21 +0000 IDTP http://hakin9.org/?p=3408
The Mac OS X Lion 10.7.3 update turns on a system-wide debug log file which contains the login passwords of every user who has logged in since this update was applied. You are only vulnerable if you upgraded to Lion and kept your folders encrypted using FileVault 1. If you use FileVault 2, you will not [...]]]> http://hakin9.org/mac-os-x-10-7-3-lion-login-passwords-exposed/feed/ 0 http://hakin9.org/how-to-disable-the-windows-autorun-malware-threat/ http://hakin9.org/how-to-disable-the-windows-autorun-malware-threat/#comments Fri, 11 May 2012 10:43:36 +0000 IDTP http://hakin9.org/?p=3403
Julian’s security vendor friends at Bitdefender have reported that 12 percent of global Microsoft Windows infections in the first quarter of 2012 were Autorun-based threats. This doesn’t come as a surprise as most Windows users don’t understand the security implications of using the Windows Autorun feature. Most users also don’t know how to disable it, [...]]]> http://hakin9.org/how-to-disable-the-windows-autorun-malware-threat/feed/ 0 http://hakin9.org/microsoft-security-essentials-4-0-av-industry-is-dead/ http://hakin9.org/microsoft-security-essentials-4-0-av-industry-is-dead/#comments Fri, 11 May 2012 10:40:31 +0000 IDTP http://hakin9.org/?p=3397
  There has been quite a bit written by security researchers and media about Microsoft Security Essentials (MSE) over the past few years. Some complimentary and others not so. My personal opinion has always been that MSE is actually quite a good product, especially given it has always been 100% free. If you are wondering [...]]]> http://hakin9.org/microsoft-security-essentials-4-0-av-industry-is-dead/feed/ 0 http://hakin9.org/facebook-announces-anti-virus-marketplace/ http://hakin9.org/facebook-announces-anti-virus-marketplace/#comments Fri, 11 May 2012 10:33:34 +0000 IDTP http://hakin9.org/?p=3394
Yesterday (April 25th) Facebook announced the launch of Anti-Virus Marketplace. This Facebook page will allow users to download a six-month full version anti-virus software license from McAfee, Norton, Sophos for Macs and Trend Micro for PCs and Macs. Microsoft is free anyway, which strikes me as rather odd, that this was included. Did Microsoft offer Facebook [...]]]> http://hakin9.org/facebook-announces-anti-virus-marketplace/feed/ 0 http://hakin9.org/mac-os-x-little-snitch-defines-who-you-can-trust/ http://hakin9.org/mac-os-x-little-snitch-defines-who-you-can-trust/#comments Mon, 23 Apr 2012 14:11:57 +0000 IDTP http://hakin9.org/?p=3347
If you use a Mac and you want to manage and control the flow of data that leaves your computer, then I suggest you might want to use Little Snitch. Tech geeks will know about this clever privacy tool, but the masses of my readers aren’t technical. So, I thought I would explain further why [...]]]> http://hakin9.org/mac-os-x-little-snitch-defines-who-you-can-trust/feed/ 0 http://hakin9.org/iphone-blackberry-and-android-motion-sensor-exploit/ http://hakin9.org/iphone-blackberry-and-android-motion-sensor-exploit/#comments Mon, 23 Apr 2012 14:07:42 +0000 IDTP http://hakin9.org/?p=3346
A team of researchers have devised an experimental Android-based Trojan called TapLogger that can manipulate the mobile onboard motion and orientation sensors to crack stored passwords. Motion and orientation sensors can also utilise the vibration sensor of a mobile device, which could then activate a Trojan to capture keyboard inputs using a malicious keylogger. TapLogger exploits [...]]]> http://hakin9.org/iphone-blackberry-and-android-motion-sensor-exploit/feed/ 0 http://hakin9.org/mac-trojan-exploiting-malformed-word-documents/ http://hakin9.org/mac-trojan-exploiting-malformed-word-documents/#comments Fri, 20 Apr 2012 10:35:30 +0000 IDTP http://hakin9.org/?p=3341
The Mac OS X platform has now been targeted for a second time by a Trojan called SabPub (Backdoor.OSX.SabPub.a). Several in the media are misreporting this latest Mac OS X Trojan as a Java exploit. Let me tell you, this isn’t a Java exploit. SabPub is actually exploiting malformed Word documents. SabPub is a typical backdoor [...]]]> http://hakin9.org/mac-trojan-exploiting-malformed-word-documents/feed/ 0 http://hakin9.org/the-single-sign-on-universal-login-security-debate/ http://hakin9.org/the-single-sign-on-universal-login-security-debate/#comments Fri, 20 Apr 2012 10:30:12 +0000 IDTP http://hakin9.org/?p=3339
The more apps and websites we register with, the more usernames and passwords we need to remember. You might end up managing hundreds which as you know means you have to find somewhere to store them as well as avoiding using the same password for more than one website. Your digital identity is your offline [...]]]> http://hakin9.org/the-single-sign-on-universal-login-security-debate/feed/ 0 http://hakin9.org/anonymous-launches-anonpaste-service-based-on-pastebin/ http://hakin9.org/anonymous-launches-anonpaste-service-based-on-pastebin/#comments Fri, 20 Apr 2012 10:04:39 +0000 IDTP http://hakin9.org/?p=3331
  The PLF and Anonymous have recently launched the AnonPaste service for the uploading and sharing of data. Paste services have been used by hackers for years to paste controversial data including data breaches, coding and website hacks. The motivation is based around ‘Information Activism’. Both groups are plugging AnonPaste as a ‘secure alternative’ but [...]]]> http://hakin9.org/anonymous-launches-anonpaste-service-based-on-pastebin/feed/ 0 http://hakin9.org/hundreds-of-compromised-twitter-accounts-in-circulation/ http://hakin9.org/hundreds-of-compromised-twitter-accounts-in-circulation/#comments Fri, 20 Apr 2012 09:50:56 +0000 IDTP http://hakin9.org/?p=3329
Compromised Twitter accounts spammed up to eight messages per second with links redirecting users to the infamous BlackHole exploit kit. The rogue tweet contained messages such as ‘online virus check, ‘proven anti-virus’, ‘excellent anti-virus’ and links to websites with .TK and .TW.SU domain names. The BlackHole exploit kit is a vicious exploit, so much so [...]]]> http://hakin9.org/hundreds-of-compromised-twitter-accounts-in-circulation/feed/ 0 http://hakin9.org/eu-cookie-tracking-directive-deadline-approaches/ http://hakin9.org/eu-cookie-tracking-directive-deadline-approaches/#comments Wed, 18 Apr 2012 10:42:01 +0000 IDTP http://hakin9.org/?p=3343
On the 26th May* the UK’s Information Commissioner’s Office (ICO)) will impose an EU directive designed to protect Internet users’ privacy.  As I saidlast year, European websites will have to police their own cookies but what about third-party cookies from advertisers? This will be more problematic to regulate under the European privacy law. The EU Internet Advertising [...]]]> http://hakin9.org/eu-cookie-tracking-directive-deadline-approaches/feed/ 0 http://hakin9.org/apple-release-java-flashback-malware-removal-update/ http://hakin9.org/apple-release-java-flashback-malware-removal-update/#comments Fri, 13 Apr 2012 10:25:09 +0000 IDTP http://hakin9.org/?p=3338
Earlier this week I reported on the Java Flashback malware that has been targeting Mac OS X users. Apple has in the last few days developed a Flashback malware Java removal tool for those who might have been infected with this malware. I suggest you download* and install this Java software update immediately. This update also configures the Java web [...]]]> http://hakin9.org/apple-release-java-flashback-malware-removal-update/feed/ 0 http://hakin9.org/anonymous-takes-down-websites-in-cispa-protest/ http://hakin9.org/anonymous-takes-down-websites-in-cispa-protest/#comments Fri, 13 Apr 2012 10:21:13 +0000 IDTP http://hakin9.org/?p=3337
Anonymous is informing businesses that it opposes CISPA and has posted a video of a downed web site – US Telecom, as part of its ongoing anti-CISPA campaign. It has also recently downed the Boeing website. Both these companies have publicly supported CISPA. April 11th, 2012 CISPA (Cyber Intelligence Sharing and Protection Act) promises to raise lots [...]]]> http://hakin9.org/anonymous-takes-down-websites-in-cispa-protest/feed/ 0 http://hakin9.org/apple-fix-mac-os-x-trojan-flashback-with-java-update/ http://hakin9.org/apple-fix-mac-os-x-trojan-flashback-with-java-update/#comments Fri, 13 Apr 2012 10:16:23 +0000 IDTP http://hakin9.org/?p=3336
Over 600,000 Macs globally were reported last week by a leading security vendor to be infected with a Mac botnet. A couple of hundred of these infected Mac systems ironically were found to be based in Cupertino, California – I didn’t say Apple Inc here. So how does the Flashback infection work? The Mac system gets infected [...]]]> http://hakin9.org/apple-fix-mac-os-x-trojan-flashback-with-java-update/feed/ 0 http://hakin9.org/update-microsoft-office-2007-to-service-pack-sp-3/ http://hakin9.org/update-microsoft-office-2007-to-service-pack-sp-3/#comments Fri, 13 Apr 2012 10:13:21 +0000 IDTP http://hakin9.org/?p=3335
Microsoft Office 2007 Service Pack (SP) 3 like all SP releases is an optional update. If you use Microsoft Office 2007, then it’s important you make sure that you have the latest service pack release. For Office 2007, that means you should have installed SP3. These service pack releases are NOT security updates, so there isn’t an immediate [...]]]> http://hakin9.org/update-microsoft-office-2007-to-service-pack-sp-3/feed/ 0 http://hakin9.org/uk-email-and-web-monitoring-law-just-use-tor/ http://hakin9.org/uk-email-and-web-monitoring-law-just-use-tor/#comments Fri, 13 Apr 2012 10:10:19 +0000 IDTP http://hakin9.org/?p=3333
The UK is about to introduce a new law (late 2013 I suspect) that allows police and the intelligence community increased powers to monitor email and social media communications. The new surveillance system will involve Internet Service Providers (ISPs) collating and providing the intelligence community and Police with email and web browsing behaviour on every UK [...]]]> http://hakin9.org/uk-email-and-web-monitoring-law-just-use-tor/feed/ 0 http://hakin9.org/adobe-introduce-flash-player-background-updater/ http://hakin9.org/adobe-introduce-flash-player-background-updater/#comments Fri, 30 Mar 2012 11:50:12 +0000 IDTP http://hakin9.org/?p=3300
Adobe has this week updated Adobe Flash Player to version 11.2.202.228 which is only available for Windows users. Along with the customary security tweaks, it comes with a much needed background updater. The background updater (by stealth or silent – the same way that Firefox and Chrome update these days) will allow you to choose an automatic [...]]]> http://hakin9.org/adobe-introduce-flash-player-background-updater/feed/ 0 http://hakin9.org/mozilla-developing-privacy-based-b2g-mobile-project/ http://hakin9.org/mozilla-developing-privacy-based-b2g-mobile-project/#comments Fri, 30 Mar 2012 11:48:11 +0000 IDTP http://hakin9.org/?p=3298
Mozilla (the developers behind the Firefox browser) are in early stage development of an open source mobile and tablet operating system called Boot to Gecko (B2G). The key differentiator of this mobile OS is that they are marketing this around a privacy permissions model rather than attempting to compete directly with Android, iOS or WP7/8. At [...]]]> http://hakin9.org/mozilla-developing-privacy-based-b2g-mobile-project/feed/ 0 http://hakin9.org/lookout-lost-mobile-device-survey-just-doesnt-add-up-julians-thoughts/ http://hakin9.org/lookout-lost-mobile-device-survey-just-doesnt-add-up-julians-thoughts/#comments Fri, 30 Mar 2012 11:45:40 +0000 IDTP http://hakin9.org/?p=3296
Mobile security company Lookout recently published a survey that claims US citizens lost $30 billion worth of mobile devices in 2011. The Lookout survey makes it very clear that on average every US citizen loses a mobile device once a year. Really? Now, come on Lookout, this survey seems to be about creating media hype (and I’m [...]]]> http://hakin9.org/lookout-lost-mobile-device-survey-just-doesnt-add-up-julians-thoughts/feed/ 0 http://hakin9.org/employers-accessing-your-facebook-login-details/ http://hakin9.org/employers-accessing-your-facebook-login-details/#comments Fri, 30 Mar 2012 11:40:47 +0000 IDTP http://hakin9.org/?p=3294
Facebook on Friday 23rd March warned employers around the world that requesting job applicants to provide their Facebook password is in breach of its Terms and will likely cause legal issues. Facebook has seen an increase in demand for job applicant login details. Erin Egan, Privacy Officer for Facebook has clearly stated Facebook will on no [...]]]> http://hakin9.org/employers-accessing-your-facebook-login-details/feed/ 0 http://hakin9.org/will-the-pinterest-privacy-and-tos-update-be-enough/ http://hakin9.org/will-the-pinterest-privacy-and-tos-update-be-enough/#comments Fri, 30 Mar 2012 11:37:30 +0000 IDTP http://hakin9.org/?p=3293
Pinterest (which is a bookmarking image website) users will be seeing some privacy and Terms of Service (TOS) changes starting on April 6th. The 12 million Pinners that use Pinterest will have to now adhere to new terms of service and have to follow the updated acceptable use and privacy policies from the 6th. The Pinterest [...]]]> http://hakin9.org/will-the-pinterest-privacy-and-tos-update-be-enough/feed/ 0 http://hakin9.org/always-password-protect-your-mobile-device/ http://hakin9.org/always-password-protect-your-mobile-device/#comments Fri, 30 Mar 2012 11:35:29 +0000 IDTP http://hakin9.org/?p=3291
Enabling the inbuilt mobile password (passcode) protection should be one of the first things you do when you first fire up your new expensive cherished device. You don’t want someone to be able to read or post Facebook status updates, post tweets, and send SMS’s and emails or listen to your private voicemails do you? If [...]]]> http://hakin9.org/always-password-protect-your-mobile-device/feed/ 0 http://hakin9.org/why-you-should-unhide-mac-os-x-filename-extensions/ http://hakin9.org/why-you-should-unhide-mac-os-x-filename-extensions/#comments Tue, 20 Mar 2012 14:39:41 +0000 IDTP http://hakin9.org/?p=3285
Mac OS X users should be aware that there is a new variant of the Imuler Trojan. My colleagues at Intego found the latest iteration which attacked the user’s system disguised as an an image file with .zip archives titles “Pictures and the Article of Renzin Dorjee.zip” and “FHM Feb Cover Girl Irina Shayk H-Res [...]]]> http://hakin9.org/why-you-should-unhide-mac-os-x-filename-extensions/feed/ 0 http://hakin9.org/caller-id-spoofing-isnt-a-lost-art-just-yet-folks/ http://hakin9.org/caller-id-spoofing-isnt-a-lost-art-just-yet-folks/#comments Tue, 20 Mar 2012 14:37:16 +0000 IDTP http://hakin9.org/?p=3283
Caller ID spoofing (this is an old social engineering trick actually) is where a hacker causes a recipient’s phone to display a Caller ID number that appears to originate from a legitimate business or individual from your contact list. Fraudsters are always looking for new opportunities and with the rise of mobile use, they now have [...]]]> http://hakin9.org/caller-id-spoofing-isnt-a-lost-art-just-yet-folks/feed/ 0 http://hakin9.org/pinterest-gift-card-scam-is-testing-the-water/ http://hakin9.org/pinterest-gift-card-scam-is-testing-the-water/#comments Fri, 16 Mar 2012 16:58:51 +0000 IDTP http://hakin9.org/?p=3277
Pinterest lets you organise and share things you find on the web. It’s a virtual pin board of your online and offline life. Pinterest’s goals are to connect everyone in the world through the ‘things’ they find interesting. Someone who uses Pinterest is called a ‘Pinner’. The picture-based service has though become a target for [...]]]> http://hakin9.org/pinterest-gift-card-scam-is-testing-the-water/feed/ 0 http://hakin9.org/crowdstrike-identify-webkit-remote-code-execution/ http://hakin9.org/crowdstrike-identify-webkit-remote-code-execution/#comments Fri, 16 Mar 2012 16:54:14 +0000 IDTP http://hakin9.org/?p=3276
CrowdStrike a new company formed by former CTO of McAfee George Kurtz recently purchased the 20 plus WebKit vulnerabilities ($1,400) that led to the Remote Code Execution (RCE) exploit being exposed at RSA earlier this month. George and his new team spent $14k weaponizing it into an actual Android exploit, with the aim of establishing root [...]]]> http://hakin9.org/crowdstrike-identify-webkit-remote-code-execution/feed/ 0 http://hakin9.org/av-test-reissues-android-security-apps-test/ http://hakin9.org/av-test-reissues-android-security-apps-test/#comments Fri, 16 Mar 2012 16:52:27 +0000 IDTP http://hakin9.org/?p=3275
AV-Test.org a reputable anti-virus testing company, whom I know well, recently (March 6th) conducted a test to find out the level of protection offered by Android anti-malware solutions. The test would rank each of the 41 vendors by detection and remediation, similar to the testing they and other labs perform in the PC environment. The test [...]]]> http://hakin9.org/av-test-reissues-android-security-apps-test/feed/ 0