The globe is passing from bad face of cyber crime, and we should not overlook it. The month of June was full of shocking cyber news that many security experts and enterprises have considered it seriously. ClickSSL Weekly Infosec always tries to focus on most happening cyber news and thereby awakening users about their online security. So we are once again ready with the latest cyber news includes hacking, malicious code, spying activities. Here, is a complete narrative of last week cyber stories.
Google Glass and Smart Watch can spy your password
Researchers at the University of Massachusetts Lowell have found an interesting fact about wearable like Google Glass and Samsung smart watch. They found that these wearable have high definition video camera that spy on your device iPad, tablet, iPhone etc. A person wearing Google glass can see your login credentials when a user enters information on the device from the distance of three meters.
Fake South Korean Banking App targeted customers
CM security is closely monitoring the propagation of a malware that hit South Korean banking customers. The Trojan malware targets banking apps and replaces it with fake apps to steal the login credentials of users. This fake app is available on third party installation markets. It scans for original app in android, and urges users to upgrade the app, if the user accepts the request the fake app will replace with the original app.
TimThumb – A WordPress Plug-in found vulnerable
TimThumb – an image resizing plug-in of WordPress theme is affected by a critical vulnerability. Pichaya Morimoto discovered the vulnerability, which is published on CX Security blog. It allows attackers to run PHP code command on a remote website. Once the PHP code is executed, the website can be easily exposed by attackers. Unfortunately, there is no patch has been yet released for this vulnerability.
PayPal’s Two Factor Authentication has a security flaw
Researchers at Duo Labs have discovered a security flaw in PayPal’s two-factor authentication on mobile device. Attackers can bypass two-factor authentication and transfer money to any recipient. However, authentication feature does not work on mobile client. The company is aware about this security flaw and released a temporary fix, but not released a full patch.
Askmen Website hacked with Nuclear Exploit Kit
Askmen.com- a most popular portal and top 1000 Alexa website is hacked and attackers used it to spread malware. Security experts at Web sense believe that attackers used “Nuclear Exploit kit” that attempts to exploit java (CVE-2013-2465) and Adobe reader. The Caphaw Trojan- banking Trojan steals the information from victims and allows attackers to deploy a payload on the victim’s system. Administrators will fix this issue soon due to high number of visitors (11.6 million per month).
50% network Devices across globally should be updated
More than 50% network devices are outdated and vulnerable, which should be replaced or updated. This revelation was made by Dimension data in its 2014 Network Barometer Report. Old and outdated software opens a door for potential cyber attack. The report includes analysis of 74k devices with 288 technology assessments spread across 32 countries including 5 regions and 11 industries. There are 11% devices are completely outdated.
A Chinese hackers group released Jailbreaking tool for IOS 7.1 and 7.1.1
Chinese hackers group named Pangu has released untethered Jailbreaking tool for IOS 7.1 and 7.1.1. This tool is compatible with iPhone, iPod touch, and iPad. Jailbreaking is a method to remove restriction on IOS devices and allows user to install third party installation. Many IOS users have posted the Jailbreaking process on Reddit.
A new Variant of Trojan used Dropbox to change C&C setting
A new form of malware targets Taiwan government agency. The threat uses PlugX remote access tools (RATs) to modify command and control setting of Dropbox. Trend Micro has never revealed such kind of technique before this time. Experts at Trend Micro said that there are five command and control servers using in Dropbox, which can be infected by a malware. Out of which Zhou Pizhong owns four servers and the rest one is owned by Krypt Technologies.
Fake PayPal’s User Agreements targets users
MillerSmiles – an anti-phishing service has revealed a phishing agreement delivered to the PayPal user. The email informs users that the agreement has changed and allows users to click on link for new agreement form. Users of PayPal received a modified and fake PayPal’s user agreement from phishers that looks legitimate. Phishers also provided a returned email address (firstname.lastname@example.org) that looks legitimate coming from PayPal.com.