Sunday, October 26, 2014

Top 5 infosec links of the week (XLIX)

What's scarier for users: to have virus on their computers or somebody stealing data or money from them? Judging by the most read links this week on CIGTR, both fears go together. Perhaps because often one follows the other and, indeed, Virus-Trojan that has plagued us is dedicated to sending our information to the bad boys or, worse, point us to paid services without our knowledge.

This week we’ve learned that in Spain there are over 17 million Internet users whose computers are in danger of becoming zombies. It's as simple as visiting an infected website and bam! the virus surreptitiously introduces himself into the visitors’ computers.  "Botnets are currently the biggest concern at the level of cybersecurity for the Spanish citizen" , said the general director of the National Institute of Communication Technologies (INTECO), Miguel Rego, in presenting his plan to combat them.

Other bugs that concern much are those who want to mess with the growing momentum of smartphones. According to a joint study by the Russian firm Kaspersky Lab and INTERPOL, between August 2013 and July 2014, 60% of attacks in Android phones were aimed at stealing money by using malicious code. Specifically 588,000 people worldwide have been robbed in various amounts of money because of the so called banking trojans (when we connect to our bank, trojans copy credentials we type and then use them to steal our money) and SMS Trojans (they subscribe us to paid services).

Along with the news of "bugs", the most read information this week’s  the danger looming over millions of people who use the cloud storage service Dropbox: deceptions abound, called phishing, where an email is sent to the user, trying to induce her or him to access his or her Dropbox account. Actually, the link you receive by mail directs victims to a fake Dropbox page, created by criminals. If you enter your username and password in it, these credentials go direct to the bad guy.

But we don’t give up on talking about money, because from Chile come news about an unknown group of computer experts who have managed to break the security of the "BIP card", used in this country to pay for public transport. This card uses contactless technology, you just bring it near the payment point or cash machine and it works. Hackers have also explained to the public how to free recharge.

Finally, it has attracted a lot of attention this week a new course organized by INTECO:  Advanced course on cybersecurity in control systems and industrial automation where leading experts will put on the table a key issue today in computer security: how to securize the many industrial automation and control infrastructure systems, including power plants, SCADA systems and many other systems, that are currently the number one concern of governments.

Five top issues closing this week. Until next week!


Post a Comment