After an investigation period, details were published about a unique cyberattack on a Russian bank where a malware placed trade orders for $500 million and heavily manipulated the ruble-dollar exchange rate.
The post How malware moved the exchange rate in Russia appeared first on We Live Security.
In this feature, we highlight some of the key tactics used by cybercriminals via online dating websites, helping you stay safe on Valentine’s Day.
The post Prince Charming: The Valentine’s Day scammer appeared first on We Live Security.
In the past few weeks the website Football leaks has been publishing contracts relating to signings and transfers of football players from the world’s top leagues. While some accuse the people behind this page of hacking and document theft, they themselves have assured that they haven’t, in any moment, hacked anyone and that they actually have their own source who provides them with the information.
What’s certain is that when it comes to stealing information from a company, who has it easier than an employee of said company – they have knowledge of the systems, where information is stored, etc. Keep in mind that the majority of security practices are designed to protect a company from an external attacker, via perimeter protection and with an antivirus on the network’s computers.
Football Leaks and EDR protection
However, it isn’t common that they have more advanced security systems such as EDR (Endpoint Detection and Response), which allows them to have total control of what is running on the network, who is accessing certain documents, at what time, and what they end up doing with them. It is obvious that even though they want to invest in security solutions, nobody can guarantee that in no moment will we be compromised.
For this, EDR are the ideal solution – on one hand they offer a greater protection and control as regards what happens on our network, allowing us to know what is happening in real time, and give us valuable information. For example, if we have vulnerable programs – ones that haven’t been updated – that are running. On the other hand it gives us forensic information which allows us to investigate what happened when there is a security breach. This final point is what is really valuable.
Looking back at the case of Football Leaks, where confidential documents have been leaked, we see that these documents are in the possession of the clubs who make the contracts, the players who sign them, and any intermediary. If the clubs had this type of solution, it would be relatively easy to guess who accessed the documents, from where, and if there were any copies made. They could even know if other documents had been compromised.
The value that it offers is clear, however, the majority of companies focus their security spending on preventative measures. This Football Leaks case may just force businesses in this sector (football teams, federations, official organizations, etc.) to go beyond this and adopt the necessary measures to avoid this happening again, as they will have all of the information available should a similar event occur.
These steps aren’t very different to what businesses who already take their security seriously already do, such as banks and energy companies.
The post Football leaks posing a worry to security for the football world appeared first on MediaCenter Panda Security.
The New York Police Department (NYPD) has admitted that it used controversial cell phone spying tool “Stingrays” more than 1,000 times since 2008 without warrants.
In the documents obtained by the New York Civil Liberties Union (NYCLU), the NYPD acknowledged that the department has used Stingrays to intercept personal communications and track the locations of nearby mobile phone users.
The UK government should make ‘malicious data breaches’ a criminal offence, according to a new report from the Science and Technology Committee.
The post Calls from the UK to make ‘malicious data breaches’ a criminal offence appeared first on We Live Security.
Posted by Vulnerability Lab on Feb 12
Document Title:
===============
HD Video Player v2.5 iOS – Multiple Web Vulnerabilities
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1719
Release Date:
=============
2016-02-11
Vulnerability Laboratory ID (VL-ID):
====================================
1719
Common Vulnerability Scoring System:
====================================
7.3
Product & Service Introduction:…
Browsing the Web in ‘Private Mode’ is not as private as you think.
Microsoft has patched the Private Browsing Leakage bug in its newest Edge browser with the latest update.
When we talk about Browsers, only one thing which does not strike our mind is Internet Explorer or IE.
Even there were some trolls on Internet Explorer (IE) waving over the social medias such as “The best web
Long live mobile phones. Although smartphones are designed to be little more than ornaments as the years progress, what’s certain is that when we change our device for a newer model we can still get some final use out of the old one before it’s resigned to the bottom of a drawer.
Apart from the long list of ways to reuse an old phone that we have all seen more than once, a startup has proposed that we turn our old smartphones into sophisticated security systems – an application is all it takes to make your home safe thanks to The Olmose App.
For now, its creators are looking for financing via the crowdfunding platform Kickstarter. During the month of February they will try to gather the €100,000 necessary for the project to become a reality.
Helped by the support created by Olmose, old mobile phones will become the eyes and ears that keep watch on our homes when we aren’t there. To start, you need to install the app and on the old phone and the new one that you’ll be using daily, which will become the control center.
From there on, the old smartphone will identify any movement or sound which will set off an alarm that you carry in your pocket should an intruder try to enter your house.
Besides these notifications, the application will record and post all that happens on the phone’s camera to the cloud.
Beyond this antitheft function, the app is also developed for parents who want to monitor their baby and even for those who want to control their cars – all it takes is leaving the old mobile in the car’s glove compartment, with the application activated, and you can find out where the car is if it is stolen.
This service won’t be free, and if the crowdfunding campaign is successful and Olmose manages to save old phones from being obsolete, those who want to use it as a security camera will have to pay around €24 to avail of a lifetime service.
However, by taking part in the crowdfunding campaign a potential user can obtain a license for just €20, which is the minimum contribution that one can give to the Kickstarter project in order to get something in return.
All going well, Olmose will be in app stores around the world in the next few months and will save many an old phone from being left cast aside. That old smartphone still has its uses, and although it may not be as fancy as your new one, it will possible help you out in the event of theft. Long live mobile phones!
The post How to turn your old mobile into a home security system appeared first on MediaCenter Panda Security.
Serena Business Manager versions prior to 10.01 suffer from cross site scripting vulnerability.
Planning a pre-Valentine’s Day surprise? Let your iPhone — and the Avira Vault — help you make the big romantic decisions securely.
The post Valentine’s Day and Romancing the Phone appeared first on Avira Blog.
