Category: Security News

What happens when you swipe your card?

The following is a script of “Swiping you Card” which aired on Nov. 30, 2014. Bill Whitaker is the correspondent. David Schneider, producer. This holiday shopping season you might worry that every time you swipe your credit or debit card some criminal might be swiping your account number and with good reason. The number of …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/12/01/happens-swipe-card/

The Global State of Information Security® Survey 2015 — Canadian insights

Security breaches are on the rise, and it is no surprise to find that as the number of information security incidents continues to mount, so do financial losses. Survey respondents in 2014 report that the number of detected incidents soared to a total of 42.8 million, a 48% leap over 2013. This increase comes at …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/27/global-state-information-security-survey-2015-canadian-insights/

Regin: Top-tier espionage tool enables stealthy surveillance

An advanced spying tool, Regin displays a degree of technical competence rarely seen and has been used in spying operations against governments, infrastructure operators, businesses, researchers, and private individuals. An advanced piece of malware, known as Regin, has been used in systematic spying campaigns against a range of international targets since at least 2008. A …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/23/regin-top-tier-espionage-tool-enables-stealthy-surveillance/

Cybercriminals Use Citadel to Compromise Password Management and Authentication Solutions

In these days of endless breaches, securing user access by enforcing unique, complex passwords and strong authentication is imperative. The onslaught of data breaches in the past year alone, with the majority of the breaches involving compromised credentials, forced users to constantly change their passwords. With many users still trying to use the same passwords …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/22/cybercriminals-use-citadel-compromise-password-management-authentication-solutions/

The new NotCompatible: Sophisticated and evasive threat harbors the potential to compromise enterprise networks

Over the past two years, Lookout has tracked the evolution of NotCompatible. It was a compelling threat from the start, marking one of the first times hacked websites were used at a large scale to specifically target and infect mobile devices. NotCompatible.C has set a new bar for mobile malware sophistication and operational complexity. The …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/22/new-notcompatible-sophisticated-evasive-threat-harbors-potential-compromise-enterprise-networks/

Let’s Play NSA! The Hackers Open-Sourcing Top Secret Spy Tools

Last August, at Defcon, the hacker conference in  Las Vegas, a boyish 40-year-old engineer and security researcher named Michael Ossmann stood on the stage of a lecture hall, about to detail a stunning new set of tools designed for spying on a wealth of electronic devices. As quiet descended over an eager audience of hundreds of hackers, …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/21/lets-play-nsa-hackers-open-sourcing-top-secret-spy-tools/

Whatsapp now provides end-to-end encryption by default for messages

A new update to the Android version of WhatsApp includes an unexpected but pleasant surprise: end-to-end encryption that is enabled by default. WhatsApp has a chequered past when it comes to privacy. Full Article Here: https://nakedsecurity.sophos.com/2014/11/19/whatsapp-now-provides-end-to-end-encryption-by-default-for-messages/?utm_source=Naked%2520Security%2520-%2520Feed&utm_medium=feed&utm_content=rss2&utm_campaign=Feed&utm_source=Naked+Security+-+Sophos+List&utm_campaign=4f7e35979c-naked%252Bsecurity&utm_medium=email&utm_term=0_31623bb782-4f7e35979c-455071909

Permanent link to this article: https://www.darknessgate.com/2014/11/21/whatsapp-now-provides-end-end-encryption-default-messages/

Emoticons blast three security holes in Pidgin :-(

Cisco researchers have reported a trio of vulnerabilities in popular instant messaging client Pidgin that allow for denial of service by way of emoticon abuse and remote arbitrary file creation. Researchers Yves Younan and Richard Johnson say the flaws have since been quietly patched, but rated a maximum CVSS score of 6.4 but were easily …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/19/emoticons-blast-three-security-holes-pidgin/

Tor users’ anonymity at risk from network analysis attacks

The Tor Project has moved to counter fresh research suggesting that hackers and law enforcement could identify over 80 percent of Tor users by mounting network analysis attacks. Professor Sambuddah Chakravarty, from the Indraprastha Institute of Information Technology in Delhi, reported the finding in a research paper entitled On the Effectiveness of Traffic Analysis Against …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/19/tor-users-anonymity-risk-network-analysis-attacks/

Malware spreading via Steam chat

http://bartblaze.blogspot.it/2014/11/malware-spreading-via-steam-chat.html

Permanent link to this article: https://www.darknessgate.com/2014/11/19/malware-spreading-via-steam-chat/

A Peek Inside a PoS Scammer’s Toolbox

PoS malware has been receiving a tremendous amount of attention in the past two years with high profile incidents like Target, Home Depot, and Kmart. With the massive “Black Friday” shopping season coming up, PoS malware will surely get additional publicity. This high profile nature means, we constantly look for evolving PoS malware and look into their behavior …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2014/11/19/peek-inside-pos-scammers-toolbox/