Monthly Archives: August 2011
SSCC 71 - Juicejacking, ATM skimming, Anonymous attacks BART and our digital bread crumb trail online
Chester Wisniewski welcomes back Paul Ducklin to summarize the week's security news. This week they talk about ATM skimming and recent related research, Juicejacking, the latest Anonymous attacks and the digital bread crumbs we all leave behind on the internet.
Gingermaster is the first Android malware to take advantage of a privilege escalation exploit against Android version 2.3, a.k.a. Gingerbread.
Unfortunately, many device vendors have not yet updated their devices with the latest OS patches.
With heavy fighting reaching the compound of Libyan leader Colonel Gaddafi's compound, hackers have also taken virtual arms overnight and defaced the website of domain name registry nic.ly.
Hackers have broken into Epson Korea's computer systems, and stole information including passwords, phone numbers, names, and email addresses of customers who had registered with the company.
Anonymous hackers - working under the flag of AntiSec - have targeted a US defense contractor, stealing and publishing thousands of emails and documents.
Here's an explanation of why and how to be on your guard when you're getting cash from an ATM.
It doesn't assume you're a computer expert, it doesn't talk down to you, it's easy to follow, and it's narrated by Fiscal, the Fraud Fighting Ferret!
You've heard of hijacking. And carjacking, truckjacking and shipjacking. You've probably also heard of sidejacking, sheepjacking and clickjacking.
That's nothing. Here comes juicejacking!
Have you received an unexpected "inter-company invoice" from a company for the period January 2010 - December 2010?
If so, chances are that your computer is being targeted by cybercriminals who are using the disguise as a method to infect your computer with a Trojan horse.
A significant wave of malicious emails is spammed out, posing as notification messages from courier firm DHL.
Don't click on the attached file, however, as it contains a Trojan horse.
A bill before the Canadian parliament includes two clauses specifically to reduce the 'due process' imposed when the cops need information from ISPs.
It's obvious how this would help law enforcement. But it might help the cybercrooks, too.
A database belonging to the BART Police Officers Association appears to have been hacked, and the names, postal and email addresses of officers posted online.
For the last two weeks, Australia has been fascinated with a peculiar crime committed in one of Sydney's most prestigious suburbs.
If you've heard the name of the victim, Madeleine Pulver, you've probably heard the story behind the crime.
Computer users beware! There's a new widely spammed-out malware attack, claiming that you have being fined for speeding in New York City.
How careful is your firm about ensuring that staff who leave for pastures new don't continue to log into your network?