Saturday, June 14, 2014

Attacks on mobile devices

“Banks can not clean the smartphones of their customers and have no control over this type of Trojans. [...] Even the protection of mobile banking applications and the strengthen processes for user authentication does not protect against such a situation”.  Words of Avivah Litan, vice president of Gartner, following the discovery of a new version of the Trojan Svpeng.
The statements call into question the safety of one of the most reliable banking methods see so far. Svpeng is a banking Trojan witch ransomware functions, appeared first in Russia, and that seems to have mutated users to attack American and British banks like USAA, Citigroup, American Express, Wells Fargo, Bank of America, TD Bank , JPMorgan Chase, BB & T and Regions Bank.

We continue with an attack, this time mixing of social engineering and mismanagement of internal administrative permissions that affected AT&T by one of their local suppliers. This provider accessed data users AT&T, may release devices with them in principle in order to resell them. It is estimated that there are about 500 customers affected, although they could be many more, and move the investigation to find the true cause of the attack.

Google Play is updated, and among its new features is the fact substantially improve the readability of each application permissions, grouped into several categories. But could it be all so beautiful, and with the change, the information received by the user for each update depends solely on whether permits have been applied for permits in new categories, encouraging possible exploitation of the product enabling climbing permits without the user noticing.

And accompany the article with a video of one of the many chats UPM TASSI recent conference, where a Raul Siles talks about the possible protections on mobile devices. You can find other videos with all the papers on the link to the article by Sbd.

If you've come to the end, remember that you can rate and comment our posts, or follow our social profiles whose links you will find at the sidebar, as usual.


Post a Comment