Tuesday, October 6, 2015

How to hack the main bank of Denmark (almost) easily

First we have to say that most banks work hard to be safe in a so complicated environment like Internet. We know excellents experts in this field for who we could put our head in the block and open an account in their banks with no doubt. But there are many other examples, as an ethic Dutch hacker who browsed the Danske Bank has shown. We'll also talk today about a few problems in iPhones and the increasing use of the facial recognition to monitor us.

Sijmen Ruwhof explains in his blog what happened when he entered the web of the main bank of Denmark, Danske Bank, to slightly prove its security: vital information at sight, the possibility of access to other users cookies and, therefore, to their accounts, unsecure routed traffic… Luckily, Ruwhof says, when he warned the bank of these problems, they were solved in 24 hours.

iPhone can be even more expensive

By the way IOActive, which opens a delegation in Madrid with a party this Thursday 8 of October (check our Twitter), has just shown a research which says that 9 out of 10 banks apps have serious vulnerabilities. And it’s very important to select where we put our money. Who had bought the last iPhone should know that it can be lost in the dumbest way: the iOS9 system brings activated, by default, the possibility of connecting to internet when the wifi signal is low, without notice. This has just supposed expensive bills and a lot of people complaining in the social network. The solution? Deactivate it.

A virus to unify them all

We keep talking about iPhone cause when we're still hearing the echoes of the malicious code XcodeGhost, which infected a million devices through more than 4.000 malicious apps, now appears another malicious code: YiSpecter, whose victims are mostly Chinese. The “good thing” about this virus, for the experts, is that it attacks all the devices, having jailbreak or not. YiSpecter travels in infected apps and, when is inside the smartphones, it makes downloading other apps which steal credentials and show no requested ads.

The mask

We finish with a text of our always respected Bruce Schneier, about the silent monitoring imposed by companies and governments: the facial recognition, which is replacing little by little the check of our different ID, like the DNI. Just with our face they can know our name, where we live or even how many penalties we have to pay. By the way, these days the artist Leo Selvaggio presents a project of a mask that makes a 3D recreation of his own face, offered to anybody who want to cover the face and not be recognized.

It’s a pleasure to find artists committed with their time.


Post a Comment