SECURITY WARNINGS & Notices - Please post them here

[polonus]

Interesting resume on logjam's impact on IP and DNS: https://nohats.ca/wordpress/blog/2015/05/20/weakdh-and-ike-ipsec/
(article author = Paul Wouters).
And read this: http://cryptologie.net/article/270/the-logjam-attack/  (we need end to end security).

Somehow Google Chrome developers went for speed over security: TLS also provides an option for EDH: ephemeral Diffie-Hellman in a multiplicative group. We chose ECDHE because of the speed advantages: EDH in a 2048-bit group is plenty secure, but much slower.

polonus

[polonus]

UAC Phishing Attack: http://blog.cylance.com/trick-me-once-shameonuac
Link article author = Derek Soeder

polonus

[polonus]

Adware PUPs are getting nastier and more and more irritating - LSP hijackers with rootkit-elements start to resemble real malware - the distinctions grey out: https://blog.malwarebytes.org/security-threat/2015/05/fake-adblocker-bylekh-is-an-lsp-hijacker/  (link article author PIETER ARNTZ).

polonus

[polonus]

New POS malware - new Alina variant and others: https://www.fireeye.com/blog/threat-research/2015/05/nitlovepos_another.html  link article authors: Nart Villeneuve, Daniel Regalado.

polonus

[Asyn]

IRS Statement on the "Get Transcript" Application
http://www.irs.gov/uac/Newsroom/IRS-Statement-on-the-Get-Transcript-Application

[Para-Noid]

Tech Support Scammers Go For Pornographic Shocker

https://blog.malwarebytes.org/fraud-scam/2015/05/tech-support-scammers-go-for-pornographic-shocker/?utm_source=Gplus&utm_medium=social

BSides London: The Writey Writer’s Workshop

https://blog.malwarebytes.org/conferences/2015/05/bsides-london-the-writey-writers-workshop/?utm_source=Gplus&utm_medium=social

[polonus]

Security researchers hindered by 0-day exploit strict export restrictions for dual use technology.
0-days can only to be acquired by government.
New rules to restrict export of surveillance-, hack en intrusion-software.
Robert Graham on this: http://blog.erratasec.com/2015/05/this-is-how-we-get-ants.html

"When you outlaw tools, outlaws are gonna use them"

polonus

[Para-Noid]

iPhone Crash: What You Need To Know

https://blog.malwarebytes.org/mobile-2/2015/05/iphone-crash-what-you-need-to-know/?utm_source=Gplus&utm_medium=social

Be careful with what you do with any smartphone any time.
I use one free weather website and lo and behold there is a banner at the top "telling" me my phone is infected.
It even includes a "scan now" button. I figured it was a phishing ad and didn't tap scan. It isn't just malicious text(s)/email
one need to worry about. Before you click/tap ask yourself "if it's worth the risk?" Do your research before you wish you had.
I do online scans on various websites and a lot of people would be shocked at the risks they are taking. A website may seem innocent,
but then again "is it?" Always scan before you click. "Look before you leap" attitude is a must anymore.

[bob3160]

iPhone Crash: What You Need To Know

https://blog.malwarebytes.org/mobile-2/2015/05/iphone-crash-what-you-need-to-know/?utm_source=Gplus&utm_medium=social

Be careful with what you do with any smartphone any time.
I use one free weather website and lo and behold there is a banner at the top "telling" me my phone is infected.
It even includes a "scan now" button. I figured it was a phishing ad and didn't tap scan. It isn't just malicious text(s)/email
one need to worry about. Before you click/tap ask yourself "if it's worth the risk?" Do your research before you wish you had.
I do online scans on various websites and a lot of people would be shocked at the risks they are taking. A website may seem innocent,
but then again "is it?" Always scan before you click. "Look before you leap" attitude is a must anymore.

In your case, I'd question why a weather app wants to scan for malware and what's a weather app contain that allowed it to scan
my device to find a virus in the first place.
If an app requires more permission than it needs to perform it's function. Don't install it.
As an example, If your Flashlight app requires permission to access anything other than your camera, I wouldn't install it.
The flashlight function needs access to the flash function of your camera and therefore shouldn't need access to anything beyond that.

[polonus]

Hi bob3160,

I agree with what Para-Noid says as we have seen mal-apps posing as genuine benevolent ones.
If you take certain things at face-value you take a gigantic risk.
That is why I think it was bad that Google banned ad-blockers on androids in their function of mal-ad blockers.
The "secret" Google team hunts for fraudulent adclicks, malvertisers et all, etc, but they cannot catch up with all.
Moreover the grey lines between adware/crapware and real persistent malware is becoming thinner and thinner,
We should be protected and at least. Well, do as Para_Noid says: "Look hard before you leap".
Scan: http://mypermissions.org/

polonus

[Asyn]

Command injection vulnerability in Synology Photo Station
https://www.securify.nl/advisory/SFY20150502/command_injection_vulnerability_in_synology_photo_station.html

[Asyn]

iPhone Crash: What You Need To Know
https://blog.malwarebytes.org/mobile-2/2015/05/iphone-crash-what-you-need-to-know/?utm_source=Gplus&utm_medium=social

Apple comments on iOS 8 unicode crash bug, fix in the works
http://www.imore.com/unicode-rendering-bug-crashing-messages-lockscreen

[abruptum]

Beware: Hola VPN turns your PC into an exit node and sells your traffic


  http://www.ghacks.net/2015/05/28/beware-hola-vpn-turns-your-pc-into-an-exit-node-and-sells-your-traffic/

[Para-Noid]

Scams Within Facebook Press On, Use “Facebook for Business” Hook

https://blog.malwarebytes.org/fraud-scam/2015/05/scams-within-facebook-press-on-use-facebook-for-business-hook/?utm_source=Gplus&utm_medium=social

[Para-Noid]

Unusual Exploit Kit Targets Chinese Users (Part 1)

https://blog.malwarebytes.org/exploits-2/2015/05/unusual-exploit-kit-targets-chinese-users-part-1/?utm_source=Gplus&utm_medium=social

edit: Fixed missing URL