friday updates

Well Friday morning here

and lets hope there is enough news this weekend

First up a article on the spread of viruses on the android platform

1 in 10 Android Apps Are Virus-Infected

Next up is some research on how some usb drives can
be used to evil stuff.

Plug and PREY: Hackers reprogram USB drives to silently infect PCs

afternoon or evning update for me

well  seems some chinese hacker groups is now

targeting the gaming industry, in a kind of clever way

Chinese Hackers Use APTs to Target Gaming Companies

hmm again some researchers that have proved flaws in

most modern mobil phones

New Mobile Phone '0wnage' Threat Discovered

 More news on the danger gamers are in, in the hunt for 

the last frame pr second

PC gamers increasingly under attack

 it seems to be a bussy day to day

a new day in security

first up is interesting article on a mind set of a security pro

The Perfect InfoSec Mindset: Paranoia + Skepticism

Other then that i don't see any real big news

at this time so be back later whit a new update

wensdays updates and thoughts

Well it seems to be a slow day on the hacker incidents.

So maybe time for some of my though. 

One thing i seen a lot in the news lately is that
cloud service, providers is very unsecured at the moment.
 So it seems they are getting popular whit mall ware and
Ddos attacks.
So maybe it is time for em to start focusing on security a bit more,
But as seen so many times before, the black hat is
all ways ahead of the whithat or sys admins
  But yeah focus on the users data security should in my opinion
always be a big  focus.
so be back tomorrow and have a great day

more news from around the web on security

First up a new research shows about 25 flaws in comon

devices on the Internet of things

Internet Of Things Contains Average Of 25 Vulnerabilities Per Device

In my opinion that study shows that devices on the internet 

of things is not safe and maybe posses a real threat  to

normal net,

But only time and more study will show what can and will happen

Well well well if it is not the chinese that have been on a visit to Israel

Israel's Iron Dome missile tech stolen by Chinese hackers

a new thuesday and the last security updates

A good morning from me and here is the last news

on the security scene

First up it seems like the koler aka police locker

is  changing 

Police Locker Ransomware Shuts Down Mobile Element

 Seem again the amazon cloud is being used to do ddos attacks

Hackers seed Amazon cloud with potent denial-of-service bots

 That is it  for this update

a new week starts

Well a new week start,

And must say i hope it get interesting

Well Well found this article on Critroni/Onion

Critroni/Onion Is Most Sophisticated Ransomware Yet 

hmmmm those pesky black hat guys
have once again refined a trojan

Improved Neverquest Trojan Targeting Bank Customers in Japan, US 

 

a new weekend is upon us

First up have a great weekend 

and stay safe

well found this article on a new threat intelligence system

Researchers Develop 'BlackForest' to Collect, Correlate Threat Intelligence

hmmm seems that html 5 can be used to track people

html5-canvas-fingerprint-widely-used

that is it for now but i be back later for a new update 

stay safe stay working

evning update on what is hapning

first up a new development on the 

Trojan-Ransom.Win32.Onion brand

CTB-Locker Ransomware Uses Unusual Cryptographic Scheme: Kaspersky 

              Just found this interesting article on how some 

Black hat hackers abuse explore on windows 

 This article in my opinion shows just how exposed microsoft 

products is to hacker activity, and maybe how

slow there are to fix things :)

Attackers abusing Internet Explorer to enumerate software and detect security products

- See more at: http://www.alienvault.com/open-threat-exchange/blog/attackers-abusing-internet-explorer-to-enumerate-software-and-detect-securi/?utm_medium=Social&utm_source=Twitter#sthash.UDkLHHxe.dpuf

Attackers abusing Internet Explorer to enumerate software and detect security products

- See more at: http://www.alienvault.com/open-threat-exchange/blog/attackers-abusing-internet-explorer-to-enumerate-software-and-detect-securi/?utm_medium=Social&utm_source=Twitter#sthash.UDkLHHxe.dpuf

Next up is what could be a advertise but not intentional 

Improved Malware Protection Introduced in Firefox Browser

Think that is it for to night but no one knows

Attackers abusing Internet Explorer to enumerate software and detect security products

- See more at: http://www.alienvault.com/open-threat-exchange/blog/attackers-abusing-internet-explorer-to-enumerate-software-and-detect-securi/?utm_medium=Social&utm_source=Twitter#sthash.UDkLHHxe.dpuf

Attackers abusing Internet Explorer to enumerate software and detect security products

- See more at: http://www.alienvault.com/open-threat-exchange/blog/attackers-abusing-internet-explorer-to-enumerate-software-and-detect-securi/?utm_medium=Social&utm_source=Twitter#sthash.UDkLHHxe.dpuf

Attackers abusing Internet Explorer to enumerate software and detect security products

- See more at: http://www.alienvault.com/open-threat-exchange/blog/attackers-abusing-internet-explorer-to-enumerate-software-and-detect-securi/?utm_medium=Social&utm_source=Twitter#sthash.UDkLHHxe.dpuf

Attackers abusing Internet Explorer to enumerate software and detect security products

- See more at: http://www.alienvault.com/open-threat-exchange/blog/attackers-abusing-internet-explorer-to-enumerate-software-and-detect-securi/?utm_medium=Social&utm_source=Twitter#sthash.UDkLHHxe.dpuf

Attackers abusing Internet Explorer to enumerate software and detect security products

- See more at: http://www.alienvault.com/open-threat-exchange/blog/attackers-abusing-internet-explorer-to-enumerate-software-and-detect-securi/?utm_medium=Social&utm_source=Twitter#sthash.UDkLHHxe.dpuf

hmm now the central bank of Europa have been hit

whit a hacker attack 

European Central Bank Hacked; 20K Email Addresses Lifted

I must say i dont know why people keep 

using wordpress so many bugs in it 

Up to 50,000 WordPress Users Hit by MailPoet Malware Attack

a new update for to day

a new day new news

First up to day is a new and improved android 

crypto mal ware

Enhanced English-speaking Simplocker Spotted in the Wild

Next up it seems again that facebook have been used

to trick people into being Redirected into a mal ware 

site

Facebook Attack Redirected Users to Notorious Exploit Kit

 At last it seems that the law is catching a bit 

up to those scamers that mis use people credential 

this time on stubhub'

7 Arrested, 3 More Indicted For Roles in Cyber Fraud Ring That Stung StubHub

a new day and new happnings

morning from me and first up on to days news is 

some new ranking in country and spam amount

The US and Bulgaria Win the Spam Crown for Q2

Hmm the never ending Nigerian  money scam 

is now evolving

Nigerian 419 Scammers Evolving Into Malware Pushers (But Not Very Good Ones)

Again a point of sale breach 

Goodwill Stores Could Be the Latest PoS Breach Victim

 so stay safe stay monitoring 

evning update

first up is a talk that snowden gave on a conference not long ago

Snowden to Hackers of the World: Build NSA-proof Systems

Well well seems the ever popular 2 factor authentication

is being exploited now 

Attackers Bypass 2FA Systems Used by Banks in 'Operation Emmental'

 So stay safe stay fighting 

thuesday morning update

First up to day is some news one aple os 7

Hidden network packet sniffer in MILLIONS of iPhones, iPads – expert

If that is true it is not good news for aple users

Any back doors in software and phones 

Is in my opinion not OK

Next up is some stuff whit the tor network and a flaw in it 

Lawyers came in like wrecking ball when boffins tried to break Tor

afternoon update and a update to my shared firwall rules

well well

Seems to be a bit quite to day 

So maybe this gives me a chance to promote a product i use my sefl

I use the free version of alienvault otx 

for updating my firewall a couple of times a day

 

monday morning update

I must say i realy like this guy.

The next one show just how evil people can be

when they exploit a tragedy 

cyber-criminals-use-malaysia-airlines

Next up is a new crypo ransom ware 

Critroni Ransomware Makes Its Way into the Wild'

 

monday morning update

First up this Sunday is a new strux variant

new-variant-of-havex-malware-scans-for

Next up is a story on how the evil black hats 

can exploit a tragedy

cyber-criminals-use-malaysia-airlines

evning update on security

Microsoft is maybe using a slightly different tactic

so get critic silenced

Report: Microsoft in Talks to Buy 'Critic' Aorato

Next up there is a patch for v bulletin that fixes a sql injection flaw

vBulletin Fixes SQL Injection Vulnerability That Exposes Website Database

A interesting study/ article on a new mall ware that
targets linux pc and severs

Researchers Analyze Multipurpose Malware Targeting Linux/Unix Web Servers

friday morning update

Well it is weekend soon which is really nice

But weekends mostly means that the news is a bit slow

Hmm Japanese porn site infected whit a java banking trojan

Crooks fling banking Trojan at Japanese smut site fans

 Next up it seems that blackhat hackers
got there hands on some really
advanced mall ware properly stolen from governments 

Government-Grade Stealth Malware In Hands Of Criminals

evning update

Well well well 

Some news on PusDo is going strong again

Cybercriminals Roll Out New Variant of PushDo Malware

next up is a pretty interesting article on a study of pass words

Mathematics makes strong case that “snoopy2” can be just fine as a password

Next up is some news on fbi and bot nets
18 pc infected pr min

thursday and some news

First up to day is a flaw in active directory from Microsoft

Active Directory Flaw Could Threaten 95% of Fortune 500 with Massive Information Heist

 Facebook still looks like the place to be for a social engineer black hat

Facebook Users Face Critical 'Stepping-Stone' Threats

stay safe stay monitoring 

evning update on a interesting day

Hmmm now it seems that the poor programmers is gonna be wired up to monitoring

Microsoft's Answer to Buggy Code: Monitor the Coder

 really getting to like there new product

a new day and new stuff to report

First up is a new study that shows that amazon is hosting a lot of mallware sites
Amazon-hosted malware triples in 6 months

Hmm a new study of the build up of ddos attacks the last 6 month

DDoS Attacks Over 100Gbps Blitz Firms in 2014

next up is a new massive patch from oracle 

Oracle Slams Admins With 113 Critical Patch Updates

some usual afternoon / evning updates

Seems that java 7 will still work on windows xp even if it is not the best option on os

Security Updates for Java 7 Will Work on Windows XP: Oracle

 

hmmm seems like alien vault is at last opening the crowd source threat intelligence system

alien vault

A great new move from google it seems

Google Forms Zero-Day Hacking Team

thuesday and maybe more action today

First up it seems like cnet was hacked

CNET attacked by Russian hacker group

That is one high end site that was targeted, but yeah the security people is properly more or less always playing catch up on the black hat hackers.

Hmm seems that gameovezues just wont die 

New GameoverZeuS Variant Found In The Wild

have a nice and safe day 

monday morning and it seems

next up
Is a new banking mall ware called kronos

Kronos: New Financial Malware Sold on Russian Underground Forum

Hmm putin is up on charming offensive atm  

Putin Condemns 'Hypocrisy' of Western Cyber-Espionage

sunday morning

a interesting talk on tor and safty

Next up is a talk on game over and zues

After Takedown, GameOver Zeus Banking Trojan Returns Again

some more newz on security

a interesting talk

Again a credential attack that is running though phi sining mails

Attack Campaign Targets Facebook, Dropbox User Credentials

Hmm nothing new in the fight on USA vs china just some more trouble for apple and there iphones

Apple iPhone 'Threat to National Security': Chinese Media

Next up is some news on Brazilians bank scams and a new method i never heard of before that is used to catch the bots using bio metric's

While Brazilians Watch World Cup, Bank Fraudsters Are At Work

 

 

 

 

saturday morning a

First up is the story of the Russian diplomats son and the usa that have abducted him

Russian Accused of Hacking 'May Die in US Prison': Father

 Hmm now it seems that the FBI and other have taken over a banking trojan's 

control severs which is good

FBI and pals grab banking Trojan zombielord's joystick

friday evning and next security update

First up is those perky Chinese hackers, they  have now found a way to infect inventory scanners in where houses

Malware Siphons the 'Brains' of Shipping Companies in Sophisticated Supply Chain Attack

seen as it is, it is really clever and evil once again it proves china only serve em self and pretty much gives a f... about what other thinks

hmmm some Indian certificate issuer just got compromised and now Google and Microsoft is acting  on the threat

Microsoft Revokes Fake Yahoo, Google Certificates Issued After India NIC Hack

 MY god usa and the chinese just cant get along atm in cyberspace'

No Likely Data Breach From Reported Chinese Hacking: US

friday morning

Well weekend soon here in Denmark so lets see what is happing around thew world.
First up is some news on the Russian hacker kid that got arrested on the Maldive

Maldives Deny Foreign Hand in Arrest of Alleged Russian Hacker

Seems to be a bit of a slow start on the weekend so have fun and stay tuned

afternoon in a hot northen denmark

First up is some news on a point of sale attack that have been running for some weeks
this time a tor based bot net

RSA Uncovers Infrastructure Behind New Point-of-Sale Attack Operation

 

Man point of sale attacks just seems to evolve each day and new mall ware and virus get released each day

BrutPOS Botnet Targets POS Systems With Brute-Force Attacks

And now to a interesting proof of concept of how to weaponise  a flash file 

Weaponised Flash flaw can pinch just about anything from anywhere

a new day and soon weekend

First up is some news on a crime kit or as it's named blackshade-rat

Blackshades RAT: A Resurgent and Dangerous Enterprise Threat

 Hmmm interesting story on how face book helped stop a bot net which ran out of Greece

Facebook Helps Cripple Greek Botnet

Hmmm fake google certificates at all not good 

but a in my opinion a story worth reading this morning

Fake Google Digital Certificates Found & Confiscated

a new morning a new start

First up is a pretty interesting idea of how to exploit the world cup

World Cup Phishers Hope Fans Nibble at Luis Suárez Bait

Just a quick reminder  i DON'T promote black hat hacking and using the skills to make peoples life miserable, i do this to promote knowledge on how hackers work.
 
 Next up is some nasty android stuff that allow rouge users to call from a phone

This have proven to be a short morning update so keep safe keep tracking that network

2 update to day

Just a interesting video from owas, watch most of there videos on youtube

Well time for a new article on Ddos attacks and some idea of how to defend one firm from it

Duck and Cover: Defending Against DDoS Attacks

And once again it seems like the Chinese Deep panda is once again targeting the west

Chinese Attackers Targeting U.S. Think Tanks, Researchers Say

 

thuesday and what a day

First up is some thing not security related but none the less a topic that got me  up of my chair

French Police Smash Illegal Bitcoin Trading Ring

For my bit coins is a good thing, it allows people to make money out side the control of the governments but on the other side it can and will be used to evil things.

For the Internet of Things, Even a Connected Lightbulb is a Threat

Once again a article that shows how dangerous the INTERNET of things can be.
Those articles is a good proof of why i don't buy in to that stuff just yet.

Just dug up this pretty interesting article on some ways to fight man in the browser attack 

Stopping the Man in the Browser

sunday and what a quite weekend

Well first up this Sunday morning is a story on a new im that is aimed at whistle blowers and people that want anonymous on the net by a group called a team

The Massive Challenge of Securing the Internet of Things

Well now is properly a good time to say my opinion on the INTERNET of things,

first up as it is now.

I don't truest it, to many questions like, what security is there in em, how easy are they to exploit, and what kind of info do they collect.

That is just some of the big ones load's of smaller things to.

The result is i am not gonna buy into it just yet.

But have a good day and stay safe 

weekend and security updates

 a interesting video from shmoo con 2014
Seems to be a slow day atm so gotta update later

weekend soon it is friday here in denmark

ahh weekend soon and yeah relax and game, and properly gonna get a bit drunk.

 First up to day and sorry for the delay on the first blog roll of the day
is a story that i must admit sounds like a tin foil hat store but read and decide

NSA man says agency can track you through POWER LINES

 And now to a news story that clearly shows why information on it security is very impotent and every one should have a basic understanding of how to stay secure on the net

Brazilian baddies bank Boleto billions

evning updates

Seems like some isp is trying to salvage there reputation by challenging the spy agencies

ISPs Team Up to Fire Legal Complaint at GCHQ Hackers

thursday mornings security updates

First a good morning to my readers
Then back to business
First up to day is a possible flaw in the new oracle database

Researcher Finds Flaws In Key Oracle Security Feature

Seems like mall ware never gets out of fashion as spy tools and for people whit criminal minds

CosmicDuke: Cosmu & MiniDuke Mash-Up

Next up is a interesting article on how real life warfare compares to cyber warfare

How Can Cyber Defenders Regain the Advantage?

 

 

afternoon / evning update on the security scene

First up is a law suite from a group toward nsa

EFF Flings FOI Lawsuit at NSA Over Heartbleed

 That law suit is gonna be a bee hive of problems but non the less more interesting to follow, my perditions is that it is gonna be long and really hard to get head an tail on
 And once again there is problems for the wordpress platform

Serious Vulnerability Patched in Popular Newsletter WordPress Plugin

Well to days suprise nr 2 is that microsoft now encrypt there mail servises 

as far is i understand it is not 100% hacker proof but helps none the less

So all in all the more i learn the more bussy i get whit staying up to speed and learning the craft of security
have a great nigth

security updates for wendsday morning

Well some people are still the old school hackers / thinkers
Just dug this story up

UK Tabloid Snoop Hacked ATM to Tap Celeb Voicemails

Next up is a new variant of cidrix that is far more nasty then the versions before

Infamous Banking Malware Adds Email-Sending Feature

 At last it seems like Microsoft is taking real action against the mall ware that plague there operation system

 

Microsoft Scores Another Malware Disruption