Friday, March 24, 2017

Ensuring our privacy

The best of the week in Cybersecurity

It seems increasingly difficult to maintain our privacy and avoid the nosy 'glances' of people. Glances that in the nineteenth century translate into a 'like' in a social network or into meeting with a person you had not seen for years and that they know the whole journey of your life. Many people choose to be exposed, but others decide not to upload any content of their privacy to the networks and believe that their privacy is thus safeguarded. What we do not consider is that our computers or mobiles could be hacked and that all that content that we have kept save with so much care can see the light anytime.

About privacy, or rather the lack of it, has spoken again Wikileaks. In their last leak on the CIA's cyberspace campaign they stated that the iPhones and Macs had been spied on for several years. Wikileaks already said that they had not told everything, and so it has been. In the case of iPhones, they would have been infected for a year after their launch in 2007, implying that the CIA would have introduced malware directly into the terminal's production chain. Yours may be one of the chosen ones, although it does not mean that they have spied on you... or maybe they have?

We do not know if McDonald's has also been targeted by the CIA but we are sure that it has suffered a data theft. McDonald's has an ordering application in India, and what at first glance seems like a great idea, it has cost the company dearly. Data from 2.2 million users have been filtered by an application bug. The problem was discovered by researcher Fallible, who discovered that the App was filtering all kinds of data such as phone numbers, links to social profiles and even the coordinates of their homes.

What appeared to be a problem that had been solved by Europol in 2015 has come back from its ashes. The Ramnit trojan, which specializes in collecting bank credentials, had infected in isolation a German nuclear power plant, but now it seems operators are back in business and they are using one of the oldest tricks to spread. The researchers noted that malware was spreading through redirection and in adult portal ads primarily managed through ExoClick (online advertising agency) platform. Malware is introduced into pop-under advertisements, which are loaded into a new browser window out of focus, while the original browser window remains in focus. This agency was informed and closed the accounts of infected advertisers.

Probably the best kept secret of each of us is our bank security passwords, which we do not tell to no one. Use of online banking is increasing daily and some users do not entirely agree with the security measures the banks are taking. According to a survey conducted by Iovation and Aite Group, 85% of online banking consumers are eager to replace passwords with modern security methods. However, because they are used by different generations, the proposals are also varied. There is some consensus in any case regarding the use of fingerprint sensors, with figures ranging from 85% of millenials that propose it, and 68% of senior users who opt for such a solution. It seems that the generations do not agree on many things but yes in the field of cybersecurity.

We started and now we finish in the US, where Trump's new policy surprises us as always. The US government will ban the use of electronic devices on flights to certain countries. This restriction is justified to prevent possible terrorist threats through devices such as laptops, tablets or cameras, but excluding mobile phones and certain medical devices. This measure will only affect airlines flying from: Egypt, Turkey, Kuwait, Qatar, Morocco, Jordan, Saudi Arabia and United Arab Emirates. Trump may simply want to prevent the passenger sitting next to you from nosing around your Facebook...


Post a Comment