(Italiano) Come spegnere i motori di migliaia di auto da remoto

Sorry, this entry is only available in Italian.

Hacking Instagram to Get Free Meals in Exchange for Positive Reviews

This is a fascinating hack: In today’s digital age, a large Instagram audience is considered a valuable currency. I had also heard through the grapevine that I could monetize a large following — or in my desired case — use it to have my meals paid for. So I did just that I created an… Read more »

Non muoverti e il malware per Android non farà danni

Due app, (ora non più) presenti nel Google Play Store, che dovrebbero essere di pubblica utilità, più precisamente una per convertire valuta (Currency Converter) e l’altra per prolungare la durata della batteria dello smartphone (BatterySaverMobi); in realtà integrano un malware attivato dal movimento: se i sensori presenti sui dispositivi delle vittime rilevano movimento, non sono… Read more »

Quiz ruba-dati infettano gli utenti Facebook

Dopo lo scandalo di Cambridge Analytica altri quiz sono accusati di aver rubato dati agli utenti Facebook. Qualcosa, però, è cambiato stavolta: Facebook accusa gli utenti di aver installato alcuni plugin (che infettavano gli utenti mascherandosi da quiz) e, di conseguenza, aver compromesso la propria sicurezza volontariamente. Gleb Sluchevsky e Andrey Gorbachov, accusati di aver… Read more »

(Italiano) Il malware Digmine estrae crittovaluta via Facebook

Sorry, this entry is only available in Italian.

Tracking People Without GPS

Interesting research: The trick in accurately tracking a person with this method is finding out what kind of activity they’re performing. Whether they’re walking, driving a car, or riding in a train or airplane, it’s pretty easy to figure out when you know what you’re looking for. The sensors can determine how fast a person… Read more »

  • Miner

    (Italiano) Loapi: il trojan che brucia la batteria dello smartphone

    Posted on by

    Sorry, this entry is only available in Italian.

  • English-Italian Translations

    On Deniability and Duress

    Posted on by

    Imagine you’re at a border crossing, and the guard asks you to hand over all of your electronics for screening. The guard then asks that you unlock your device, provide passwords and decryption keys. Right now, he’s asking nicely, but he happens to be carrying an unpleasant-looking rubber hose, (Yes, cryptographers actually do call this… Read more »

  • Bruce Schneier, English-Italian Translations

    WhatsApp Security Vulnerability

    Posted on by

    Back in March, Rolf Weber wrote about a potential vulnerability in the WhatsApp protocol that would allow Facebook to defeat perfect forward secrecy by forcibly change users’ keys, allowing it — or more likely, the government — to eavesdrop on encrypted messages. It seems that this vulnerability is real: WhatsApp has the ability to force… Read more »

  • English-Italian Translations

    Nemucod downloader spreading via Facebook

    Posted on by

    Earlier today, a friend of mine notified me of something strange going on with his Facebook account; a message containing only an image (an .svg file in reality) had been sent automatically, effectively bypassing Facebook’s file extension filter: What is an .svg file? From Wikipedia: Scalable Vector Graphics (SVG) is an XML-based vector image format… Read more »

  • English-Italian Translations

    5900 online stores found skimming [analysis]

    Posted on by

    Update Oct 17th: already 841 stores have been fixed! Thanks to everybody who tirelessly notified and fixed stores. Update Oct 14th: Github has booted my data and I have moved to Gitlab (statement from Gitlab on this case). Online card skimming is up 69% since Nov 2015 Multiple groups involved Merchants are unaware Last week… Read more »

  • English-Italian Translations

    NoScript is harmful and promotes Malware!

    Posted on by

    NoScript proudly calls itself a security extension advertising itself as an extension with “whitelist based pre-emptive script blocking approach prevents exploitation of security vulnerabilities (known and even not known yet!) with no loss of functionality…” Well, guess again. The author has a history of doing shady things, such as messing with AdBlock filters to whitelist ads… Read more »

  • English-Italian Translations

    Seriously, Put Away The Foil

    Posted on by

    I was scanning the headlines this morning, as I do, and came across this article by YLE Uutiset (News). — “Finnish police: Keep your car keys in the fridge” From YLE’s article: “These so-called smart keys work by emitting a signal when the driver touches the door handle. The lock opens when it recognises the… Read more »

  • Bruce Schneier, English-Italian Translations

    Hacking Your Computer Monitor

    Posted on by

    Here’s an interesting hack against a computer’s monitor: A group of researchers has found a way to hack directly into the tiny computer that controls your monitor without getting into your actual computer, and both see the pixels displayed on the monitor — effectively spying on you — and also manipulate the pixels to display… Read more »

  • Android Forensics, English-Italian Translations

    Decrypting the WhatsApp Database

    Posted on by

    INTRODUCTION WhatsApp Messenger is an application used across various Mobile Platforms for instant messaging. It uses the internet to send and receive audios, videos, documents, location details, messages etc. WhatsApp saves all the message of user onto a database file in crypt form, which means no one could read anyone’s private messages. WhatsApp uses crypt2,… Read more »

  • English-Italian Translations

    Why you can’t trust things you copy and paste from web pages

    Posted on by

    Put away your wget and curl, your SOAP clients and WSDLs, WebDAV servers, REST APIs and JSON callbacks; when it comes to moving data off websites and on to your computer the sticky stuff that greases the wheels is copy and paste. This side of haptic gloves, Ctrl+C and Ctrl+V is as close as we… Read more »