(Italiano) Il malware Digmine estrae crittovaluta via Facebook

Sorry, this entry is only available in Italian.

Tracking People Without GPS

Interesting research: The trick in accurately tracking a person with this method is finding out what kind of activity they’re performing. Whether they’re walking, driving a car, or riding in a train or airplane, it’s pretty easy to figure out when you know what you’re looking for. The sensors can determine how fast a person… Read more »

(Italiano) Loapi: il trojan che brucia la batteria dello smartphone

Sorry, this entry is only available in Italian.

On Deniability and Duress

Imagine you’re at a border crossing, and the guard asks you to hand over all of your electronics for screening. The guard then asks that you unlock your device, provide passwords and decryption keys. Right now, he’s asking nicely, but he happens to be carrying an unpleasant-looking rubber hose, (Yes, cryptographers actually do call this… Read more »

WhatsApp Security Vulnerability

Back in March, Rolf Weber wrote about a potential vulnerability in the WhatsApp protocol that would allow Facebook to defeat perfect forward secrecy by forcibly change users’ keys, allowing it — or more likely, the government — to eavesdrop on encrypted messages. It seems that this vulnerability is real: WhatsApp has the ability to force… Read more »

Nemucod downloader spreading via Facebook

Earlier today, a friend of mine notified me of something strange going on with his Facebook account; a message containing only an image (an .svg file in reality) had been sent automatically, effectively bypassing Facebook’s file extension filter: What is an .svg file? From Wikipedia: Scalable Vector Graphics (SVG) is an XML-based vector image format… Read more »

5900 online stores found skimming [analysis]

Update Oct 17th: already 841 stores have been fixed! Thanks to everybody who tirelessly notified and fixed stores. Update Oct 14th: Github has booted my data and I have moved to Gitlab (statement from Gitlab on this case). Online card skimming is up 69% since Nov 2015 Multiple groups involved Merchants are unaware Last week… Read more »

  • English-Italian Translations

    Whatever Happened to Facebook Likejacking?

    Posted on by

    Back in 2010, Facebook likejacking (a social engineering technique of tricking people into posting a Facebook status update) was a trending problem. So, whatever happened to likejacking scams and spam? Well, Facebook beefed-up its security — and the trend significantly declined, at least when compared to peak 2010 numbers. But you can’t keep a good… Read more »

  • English-Italian Translations

    Android Hack-Tool Steals PC Info

    Posted on by

    Yeh, one of our Security Response Analysts, came across an interesting report on a Chinese forum over the weekend about an Android app that basically turns the device into a hack-tool capable of stealing information from a connected Windows machine. He managed to find a sample (Md5:283d16309a5a35a13f8fa4c5e1ae01b1) for further investigation. When executed, the sample (we… Read more »

  • English-Italian Translations

    Your BMW can be stolen by any idiot with a $30 hacking kit

    Posted on by

    On-board diagnostics (OBD) security bypass kits, replete with reprogramming modules and blank keys, are reportedly enabling low-intelligence thieves to steal high-end cars such as BMWs in a matter of seconds or minutes. According to The Register, the $30 bypass tools are being shipped from China and Eastern Europe in kit form to unskilled criminals. It… Read more »

  • English-Italian Translations

    ZeuS Ransomware Feature: win_unlock

    Posted on by

    Earlier today, while doing our daily data mining, we came across a new variant of ZeuS 2.x. It includes a new backdoor command called: win_unlock. Very interesting, turns out this slightly modified ZeuS 2.x includes a ransomware feature. When this particular variant is executed, it opens Internet Explorer with a specific page (lex.creativesandboxs.com/locker/lock.php) and prevents… Read more »

  • English-Italian Translations

    No Reservations – Remote Access Trojan Pilfers Credit Cards from Hotels

    Posted on by

    Our intelligence center researchers recently uncovered a fraud “package” being sold in underground forums that uses a remote access Trojan to steal credit card information from a hotel point of sale (PoS) application. This scheme, which is focused on the hospitality industry, illustrates how criminals are planting malware on enterprise machines to collect financial information… Read more »

  • English-Italian Translations

    Android malware poses as Angry Birds Space game

    Posted on by

    Android malware authors have seized an opportunity to infect unsuspecting smartphone users with the launch of the latest addition to the immensely popular “Angry Birds” series of games. SophosLabs recently encountered malware-infected editions of the “Angry Birds Space” game which have been placed in unofficial Android app stores. Please note: The version of “Angry Birds… Read more »

  • Bruce Schneier, English-Italian Translations

    Law Enforcement Forensics Tools Against Smart Phones

    Posted on by

    Turns out the password can be easily bypassed: XRY works by first jailbreaking the handset. According to Micro Systemation, no ‘backdoors’ created by Apple used, but instead it makes use of security flaws in the operating system the same way that regular jailbreakers do. Once the iPhone has been jailbroken, the tool then goes on… Read more »

  • English-Italian Translations

    Android: “Wipe” feature can leave data

    Posted on by

    The Android “factory data reset” feature is supposed to remove all private data from a device. But does it? As the IT security company “Hatforce” discovered, it is possible to recover the deleted data on many Android phones. When a phone is sold, the buyer could thus gain access to the private data of the… Read more »

  • English-Italian Translations

    New utility that creates a log of Bluetooth devices detected on your area

    Posted on by

    BluetoothLogView is a new utility that monitors the activity of Bluetooth devices in your area, and displays a log of Bluetooth devices on the main window. Every time that a new Bluetooth device arrives to your area and when the device leaves your area, a new log line is added with the following information: Device… Read more »

  • English-Italian Translations

    Anonymous Anonymous Claims Anonymous is Not Anonymous

    Posted on by

    You’ve probably heard about the stratfor.com hack by now. Anonymous claimed responsibility. Then Anonymous denied being responsible. But then today, “Anonymous” claimed that the earlier anonymously posted pastebin post wasn’t Anonymous, but was really Stratfor employees claiming to be Anonymous. Wait… doesn’t Anonymous claim that “we are all Anonymous”? If that’s true, then maybe it… Read more »