ICT Security + Privacy + Piracy + Data Protection - Censorship - Des cours et infos gratuites sur la"Sécurité PC et Internet" pour usage non-commercial... (FR, EN+DE)...
Intego has discovered a new version of the Imuler Trojan horse, which was first discovered in September 2011. Right now the risk is considered to be low – a sample of this malware was found on the VirusTotal website in a ZIP archive named “your dirty pics.zip.” Inside the ZIP file is an application with an icon making it look like an image.
If the file is run, ===> it installs a backdoor without the need for an admin password. <===
As the popularity of Mac OS has increased, so has its attractiveness to online criminals. This cartoon busts some of the myths that still prevail when it com...
Dr Web, the Russian anti-malware company that did much to expose the growth of the Flashback botnet, has found the first Linux/OSX cross-platform trojan – which it calls BackDoor.Wirenet.1...
Le programme malveillant Crisis peut se diffuser sur quatre plates-formes différentes, et en particulier sur les machines virtuelles VMware. Sans doute une première d’après Symantec.
Summary: A well-known security researcher urges iPhone users to distrust the legitimacy of text messages at first sight.
A security research who goes by the handle "pod2g" has found a serious security vulnerability in the way iOS devices handle SMS messages, warning that this could be exploited by online criminals.
The flaw, which the researcher describes as "severe," exists since the beginning of the implementation of SMS in the iPhone, and is still there in iOS 6 beta 4.
According to a post on pod2g's blog, an attacker can exploit this flaw to send an SMS that seems to come from the receiver's bank asking for sensitive information or luring them to a maliciously rigged web site. In another scenario, an attacker could send a spoofed text message to an iPhone user to use as false evidence; or send spoofed messages to manipulate iPhone users into thinking they are receving legitimate SMS messages.
One-quarter of the 30,156 websites tested in the second quarter by Zscaler’s Zulu service, which tests the security of websites, were malicious, according to Zscaler’s second quarter 2012 State of the Web report.
The State of the Web report found that users are slow to update browser plug-ins and attackers know it, as witnessed by the Flashback Trojan, which infected over 650,000 Macs leveraging a Java vulnerability. However, the situation is improving. In the second quarter, 35% of installed Adobe Shockwave plug-ins were outdated, down from 52% in the fourth quarter of 2011.
Adobe Acrobat was the worst in terms of updating, with close to 62% of plug-ins being outdated in the second quarter, followed by Adobe Shockwave with 38%, Microsoft Outlook with 5.7%, and Adobe Flash with 4.3%.
===> “Outdated plug-ins are vulnerable to exploitation, and the bad guys know that”, Geide observed. <===
Apple (NASDAQ: AAPL) reportedly allowed a hacker to take over a journalist's iCloud account by deceiving the company's tech support team. What affect will this have on the future of Apple's success?
This situation could cause irreparable harm to Apple, which touts iCloud as an “automatic and effortless” offer that integrates into users’ apps. The iPhone maker heavily promotes the fact that iCloud allows users to backup and restore their data.
Daten gelöscht aus der Ferne, Twitter- und Gmail-Account gekapert – ein amerikanischer Journalist gibt Apple die Schuld an einem besonders heftigen Hacker-Angriff.
===> Mittlerweile habe er wieder die Kontrolle über seine Accounts und Geräte. Apple arbeite an einer Wiederherstellung seiner Daten, die insofern erleichtert wird, weil dem Macbook der Strom ausging, bevor alle Daten gelöscht werden konnten. <===
Gust MEES: das muss man unbedingt lesen und schmunzeln ist garantiert, LOL ;)
Crisis malware lets attackers install without an administrator password and intercept email, IM, and other communications.
Mac users, beware new malware targeting Apple OS X systems that's disguised as an Adobe Flash Player installer. That warning comes via antivirus software vendor Kaspersky Lab, which said it first spotted the Crisis malware--also known as Morcut--last week.
While not widespread, the malware's ability to intercept email and IM, among other features, demonstrates that malicious applications written to target Macs can be just as powerful as malware that comes gunning for PCs.
Zwei Forscher haben die Sicherheitsfunktion Google Bouncer ausgehebelt. Sie soll bösartige Programme aus dem Google Play Marktplatz heraushalten. Zudem haben die Forscher Schwachstellen am Kontrollsystem gefunden.
In a first, Apple manager scheduled to take stage Thursday at Black Hat to discuss security technologies in iOS...
Beyond Flashback, research has shown that Macs are carrying malware unbeknownst to users. A security scan of 100,000 Macs found 3 percent infected with Mac-capable malware, according to anti-virus vendor Sophos. When Windows malware was included, one in five Macs were found to be harboring some type of malware.
While the Mac has been the primary target, hackers are taking notice of iOS. This month, Kaspersky Lab reported finding an iOS Trojan that uploaded a user's address book to a remote server. Spam messages with a URL to the application, called "Find and Call," were sent from the server to all the users' contacts.
For years hackers focused on Microsoft Windows PCs instead of Apple products, which had a fraction of the market share. Today,
===> Apple's success in selling the iPhone and iPad have made it the world's most valuable company and its products a potentially lucrative target for cybercriminals. <===
Moderne Fernseher können weit mehr als nur Sendungen anzeigen. Sie sind komplette Multimedia-Maschinen samt Anschluss ans Internet.
Moderne Fernsehgeräte sind für Angreifer in jedem Fall interessant: Sie sind normalerweise stets im Stand-By, in vielen Unternehmen laufen die Geräte den ganzen Tag. Zudem sind sie mittlerweile oft im Netzwerk eingebunden und haben so Zugriff auf eine Vielzahl an Daten. Dank Internet-Optionen greifen die meisten Geräte zudem auf das Web zu - und das ist keine Einbahnstraße.
===> Erhält ein Angreifer die Kontrolle über einen vernetzten TV, hat er einen soliden Einstiegspunkt im Netzwerk von dem er weitere Attacken starten kann. <===
(Phys.org)—Spyware sold legally can infect BlackBerrys, iPhones, and other mobile devices, according to a study from two security researchers at the University of Toronto Munk School of Global Affairs' Citizen Lab.
Le malware Crisis pourrait bien être le premier d’un nouveau type de virus qui, outre le fait de cibler les environnements Mac OS X et PC, vise également les machines virtuelles et les smartphones Windows Phone.
Signe d’une évolution technologique des auteurs de virus ?
Online security breaches are becoming increasingly common. But there are ways you can protect yourself. Read this blog post by Jen Haley on Security & Privacy.
Gust MEES: there is more even to consider, so check out please also my FREE courses (5 minutes ONLY...):
===> Don't have a good memory and being a "bad organizer"? Don't worry and check any Friday my specially created Hashtag on Twitter #FSCD where I remeber YOU what to take care about ;) Stay tuned and get valuable and necessary information... <===
Suite aux mésaventures du journaliste Mat Honan qui a perdu le contrôle sur sa vie numérique, mais aussi le contenu de son ordinateur suite à une attaque vendredi soir (lire : Sécurité : Amazo...
According to Wired, Amazon no longer allows people to call Amazon and change account settings such as email addresses and credit cards, and Apple has temporarily suspended the option of asking for an AppleID password reset over the phone.
In the space of one hour, my entire digital life was destroyed. First my Google account was taken over, then deleted. Next my Twitter account was compromised, and used as a platform to broadcast racist and homophobic messages.
L'affaire a fait grand bruit ce week-end : vendredi, Mat Honan, journaliste chez Wired a perdu les données personnelles sur son iPhone, iPad et son Mac.
Summary: Thomson Reuters has confirmed the Reuters News blogging platform was hacked and that a false interview with a Syrian rebel leader was posted. The Reuters blogging website has been taken down to fix the problem.
A new Trojan dubbed 'OSX/Crisis' has been discovered which takes sneaky to a whole new level for infecting Mac OS X systems.
Andrew, director of security operations for nCircle, declared, “Mac malware is no joke. Despite Apple’s marketing hype about security, it should be obvious to everyone that their devices are susceptible to malware. Earlier this year the Flashback Trojan infected hundreds of thousands of Macs. The new OSX/Crisis malware is another Apple wake up call.”
For many Mac users, though, there is still a disconnect between realizing that the threat landscape has shifted, and actually doing something about it.
===> Mac users need to embrace the mindset that has been conditioned into Windows users over time, and install antimalware and other security tools to proactively protect against new attacks. <===
===> “Mac users are going to have to learn to be more security minded and Apple needs to step up and offer users practical, effective security support.” <===
After further analysis, more information has emerged about the Morcut Mac OS X malware which was discovered this week.
Clearly OSX/Morcut-A was created with spying in mind, as its code includes hooks to control/monitor the following operations:
mouse coordinates instant messengers (for instance, Skype [including call data], Adium and MSN Messenger) location internal webcam clipboard contents key presses running applications web URLs screenshots internal microphone calendar data & alerts device information address book contents
===> In short, if this malware managed to infect your Mac computer it could learn an awful lot about you, and potentially steal information which could read your private messages and conversations, and open your email and other online accounts. <===
To get content containing either thought or leadership enter:
To get content containing both thought and leadership enter:
To get content containing the expression thought leadership enter:
You can enter several keywords and you can refine them whenever you want. Our suggestion engine uses more signals but entering a few keywords here will rapidly give you great content to curate.
Your new post is loading...
