Thursday, November 26, 2015

Security holes in web stores menace the Black Friday

The Black Friday is very close and the entire world is ready: some stores are elevating the prices, as it is warned via Twitter, other are improving their security before the spected avalanche. Today we'll talk also about a ransomware for Linux, a millionaire robbery in Russian banks, about a scandal suspected by a lot of people and a recent discovery from a study: milliosn of devices have the same key encryption.

While the rumours about something has happened to the credentials of some Amazon clients are increasing, and the company has asked them to change their passwords, we don't know if it´s caused by a security breach in Amazon (something improbable) or other reasons, it has revealed a critical vulnerability in the popular  sales management system Zen Cart that could allow attackers to infiltrate in the servers and install malware to infect the guest or get the data of the buyers. A few hours before the Black Friday is questionable that the stores, enough busy, will start to patch their systems, so be careful!

If you're Russian you're safe

Another popular e-commerce platform with serious holes, solved by the creator but not for all the thousand stores using it, is Magento. Precisely the only ransomware known for Linux servers use this hole to assault the systems and code their files, specifically to websites. By the way there're some news about this ransomware: it is still infecting without rest and, although in the beginning it could decode easily the attacked servers, now isn't so easy. Maybe for this reason some versions has elevated the rescue price to 999 dollars and others, according to the discovery by Malwarebytes, ensure to Russian or ex URSSS victims the free deccoding of their servers and they apologize to them.

Something unbelievable

Talking about Russia: possibly Russian hackers have engaged an unbelievable robbery. They stole almost 4 million of dollars from five banks, between the summer of 2014 and the spring of 2015, using a curious trick (a hack) to take money from the ATM: a "mule" puts money in a bank through the ATMs and thereupon he withdraws it. He asks the receipt and send it to a hacker in another country, who used the information of the receipt to cheat another ATM, by doing so, they can withdraw money several times because the ATM thinks the operation had been canceled. The error was in the transference controls and the verification of the credit card used by the affected banks. An error they ensure it has been solved.

A key for everybody

We finish with a short text but for reading it calmly: A study from the Sec Consult company analyzed 4.000 devices of 70 hardware manufactures, like gateways, routers, modems, IP cameras, VoIP phones, etc, to discover the majority of these devices have the same SSH passwords and certifications for secure navigation, in such a way, by having one of these certifications is possible attacking millions of devices. A real scandal.

And we finish our daily summary getting goosee bumps, waiting for the Black Friday to go shopping only in the stores with real reputation of being safe. The opposite could carry from the steal of our financial data until "catching" a malware. So, as we say, be careful! 


Post a Comment