Wednesday, March 25, 2015

Take care with your mobile phone, it's the devil's work

Most of us are not aware of it, but mobile phones are easily attacked insecure devices we use, and always with us, perfect apparatus, for example, a spy operation. News about vulnerabilities, new attacks and fraudulent applications are constant in this field, both iPhone and Android, although the latter, as we say colloquially, "take the cake".

Palo Alto Netwoks has discovered a fault, present in 49.5% of Android systems, which could allow an attacker to hijack the installation of new applications and "sneak" a virus in. It is clear that, in principle, and for now, this only works in third party applications not downloaded from Google Play, and are safe versions of Android 4.4 and later. Which brings us to recommend for the umpteenth time that "apps" should be downloaded from Google Play and the phones should stay updated.

The stories about assaulted phones are still becoming stories to keep you awake: the attackers signed the telephone to high tariffs services, which brings high bills to the owner, or what happened to Katya Turtseva: a group of hackers assaulted her phone, accessed her Skype account and her contact list, which had about 300 people. They wrote to his friends, pretending to be her and demanding "borrowed" money  with the excuse that she needed it to buy something online and did not have enough in her online account. The thieves got 100,000 rublas, approximately 1,500 euros. 

Another scam, even more massive, is underway right now in Spain: personalized emails, including the name and surname of the person who is receiving it, supposedly sent by the postal service, ensuring they have not been able to deliver a letter at home. If the victim clicks the link for more information and solves a "captcha" on this page, a dangerous virus is installed on its computer: CryptoLocker, which encrypts all your files and request a bailout. Pay attention!!

This kind of viruses are called "ransomware" and are now one of the most dangerous threats to infosec. Another one, which has been running longer, are known as Denial of Service attacks (DDoS), specially fearful for companies and administrations. Today has been known that the average volume of these attacks has tripled in just one quarter, being now 4.36 million packets per second and 12.1 Gigabits per second. Luckily for the victims, these attacks are becoming shorter, as are basically used as a distraction while the company is being attacked on some other flank.

Computer security is giving new life to old military tactics, not surprisingly one of the favorite books of many experts in the field is "The Art of War".


Post a Comment