SECURITY WARNINGS & Notices - Please post them here

[polonus]

Voice and face impersonation on the horizon, a brave new future we do not desire?
Re: https://www.theregister.co.uk/2017/04/24/voice_stealing_lyrebird/

pol

[mchain]

Voice and face impersonation on the horizon, a brave new future we do not desire?
Re: https://www.theregister.co.uk/2017/04/24/voice_stealing_lyrebird/

pol

Yea, human counterpart is to cold-call a victim and ask "Can you hear me?" and use the affirmative (recorded) answer to spoof your bank accounts and the like.  Not kosher at all.

[EDIT:]  Ahem, oops.

[Pondus]

Pawn Storm: The Power of Social Engineering
http://blog.trendmicro.com/pawn-storm-power-social-engineering/


Pawn Storm Abuses Open Authentication in Advanced Social Engineering Attacks
http://blog.trendmicro.com/trendlabs-security-intelligence/pawn-storm-abuses-open-authentication-advanced-social-engineering-attacks/


A Storm’s a Coming: How businesses can defend against threat actor groups like Pawn Storm
http://blog.trendmicro.com/storms-coming-businesses-can-defend-threat-actor-groups-like-pawn-storm/

[Pondus]

Those complaining about avast FP, it does happen to others also


AV provider Webroot melts down as update nukes hundreds of legit files
https://arstechnica.com/security/2017/04/av-provider-webroot-melts-down-as-update-nukes-hundreds-of-legit-files/

https://community.webroot.com/t5/Announcements/W32-Trojan-Gen-False-Positive-Fix-April-24/td-p/290198

[bob3160]

Those complaining about avast FP, it does happen to others also


AV provider Webroot melts down as update nukes hundreds of legit files
https://arstechnica.com/security/2017/04/av-provider-webroot-melts-down-as-update-nukes-hundreds-of-legit-files/

https://community.webroot.com/t5/Announcements/W32-Trojan-Gen-False-Positive-Fix-April-24/td-p/290198

It has happened to ALL AV's . It happens to Operating Systems etc.
It's especially nasty if it happens and you aren't prepared for this type of disaster.
Back up, Back up, Back up.

[polonus]

Cybercriminals use anti-virus exclusion lists to send malware where it may hurt most:
https://www.theregister.co.uk/2016/12/07/clever_crims_using_av_exclusion_lists_as_malware_safe_harbour/

APT attackers are better funded and conduct a lot of research before they launch attacks.
Be vigilant, folks.

polonus

[Asyn]

Cybercriminals use anti-virus exclusion lists to send malware where it may hurt most:
https://www.theregister.co.uk/2016/12/07/clever_crims_using_av_exclusion_lists_as_malware_safe_harbour/

APT attackers are better funded and conduct a lot of research before they launch attacks.
Be vigilant, folks.

polonus

Hi Pol, a bit old (check the date), any reason to repost it..!?

[polonus]

Hi Asyn,

Probably a recent link at the Reg linking through to this. Meaning actually that it is still very actual news.
That is all I can think of as I did not search for 2016 content actually.

Damian

[Staticguy]

Close to 9,000 servers across Asean infected with malware

http://www.zdnet.com/article/close-to-9000-servers-across-asean-infected-with-malware/

[polonus]

Ongoing Cloud-Insecurity!
Spamhaus: Amazon and Google condone abuse.
Big CDNs leave malware botherder abuse going on for weeks on end, before starting to act against them.

Another sign of the dysfunctional insecurity of the global Internet Infrastructures.
And yup folks, something is fundamentelly insecure, maybe by design of vested interest.
( Italics = this is my personal  opinion based on over 15 years of website insecurity scanning experience, polonus).

Read: https://www.spamhaus.org/news/article/736/botnet-controllers-in-the-cloud

polonus

[polonus]

Many Android Apps backdooring your Smartphone:

Read: https://www.wired.com/2017/04/obscure-app-flaw-creates-backdoors-millions-smartphones/

By essentially turning a phone into a server, they allow the owner to connect to that phone directly from their PC, just as they would to a web site or another internet service. But dozens of these apps leave open insecure ports on those smartphones. That could allow attackers to steal data, including contacts or photos, or even to install malware.

The world around you getting more dangerous every day, open ports on Androids where you do not expect it.
Can we be protected by Avast Mobile Security?

Only would be right when I gave you this link: http://www.yougetsignal.com/tools/open-ports/  (credits Kirk Ouimet)

pol

[Asyn]

OSX Malware is Catching Up, and it wants to Read Your HTTPS Traffic
http://blog.checkpoint.com/2017/04/27/osx-malware-catching-wants-read-https-traffic/

[mchain]

Diving into the darknet
https://blog.avast.com/diving-into-the-darknet
Is my microwave watching me? Top 5 steps to ensure it's not
https://blog.avast.com/microwave-watching-me-internet-things-security-top-steps-connected-safety

[Cast]

Antivirus Software Fails Basic Security Tests
http://www.tomsguide.com/us/antivirus-suites-vulnerable-exploits,news-25006.html

[Staticguy]

Google Phishing Attack: Gmail users hit by Massive Email Scam Sweeping Web


http://www.independent.co.uk/life-style/gadgets-and-tech/google-phishing-emails-attack-gmail-scam-link-doc-invitation-hack-a7716581.html