Tuesday, December 16, 2014

You could pay a high price for these blunders and mistakes

"Blunders." Whether they are intentional or not, it is common to find these small mistakes on everything we do. They are sometimes funny and not very serious, as some bloopers in a film production. For instance, that plane that flies behind Achilles in Troy, or the glove that showed up and disappeared on Han Solo’s hand in Star Wars. But small blunders can sometimes be crucial for the success or failure of a malware campaign. Friends of the CIGTR, are you ready? Let's start.

A Chinese security company called 360 warned this week of a new threat to Android devices. The creature has been dubbed Fakedebuggerd. It is a malware that uses rootkit techniques to ensure the persistence on the system. Thus it drives users crazy with alleged flashlight or calendar apps which appear and disappear from the list of installed apps. It also hides an APT that steals private information: network names, calls, SIM card information, firmware...

Meanwhile, the British intelligence services is in the spotlight for its alleged espionage on the largest Belgian telecom, Belgacom. A mistake, perhaps? Actually Belgium is an allied country of UK, so if such facts are proved, they would represent an unprecedented violation of the integrity of a public company. The leak comes from Edward Snowden, who points to Regin as the chosen tool for performing this surveillance. This malware is used to steal information of intelligence and exploit vulnerabilities on each infected system.

There are small and large mistakes. The one suffered by Amazon UK is in the second group. A failure on its internal system allowed users to go online shopping at the little price of one penny. No matter the actual price of the products, all shops making use of Amazon’s Repricer Express service almost gave their products for free for a whole hour. The blunder has now been fixed, and most orders have been canceled. Still, some stores say they have lost up to 100,000 GBP.

Nobody wants that something similar happens with his company, so you should make sure that the systems you are using are properly set up. Among them, the router is one of the most important ones. Hence we recommend you to have a look to Kaspersky’s seven tips list to make your WIFI network more secure. In addition you may want to check ESET’s advice to know how to distinguish between real news and goofs shared on Facebook. It is mostly about common sense, but it never hurts to recall them.

In this light, and following the thesis of this news pill, here you have a link to a study on Security in the Internet of Things published by the CISIRT-CV yesterday. 38 pages written in Spanish that may be very interesting for both the industry experts who want to deepen their knowledge, and users of these new devices.


Post a Comment