About Over 50 Articles Library

RETURN TO LIBRARY INDEX

Content: Services - Computer

Computer Security No 46: Hackers threaten to wipe iPhones unless Apple pays ransom

Corporate - Private Computer Security

Hackers threaten to wipe iPhones

 

About Over 50 Hackers threaten to wipe iPhones

According to Motherboard (news site https://motherboard.vice.com), a hacker or group of hackers ('Turkish Crime Family') is allegedly trying to extort Apple over access to 300 million iCloud and Apple email accounts.

The price they demand from Apple is US $75,000 in Bitcoin or Ethereum (both crypto-currencies) or US $100,000 in iTunes gift cards.

The alternative is that they will reset a number of iCloud accounts and remotely wipe victims Apple devices on April 7 unless Apple pays.

If you have an Apple device, Backup your data, contacts, etc before April 7.

Cybellum discovers major Zero-day vulnerability - affects Windows systems

About Over 50 Hackers threaten to wipe iPhones

Cybellum (a Zero-day Israeli cyber firm) discovered a new Zero-day (a zero-day exploit leaves NO opportunity for detection or repair for the software vendor) attack that can take over major antiviruses. It's called DoubleAgent and it exploits a 15 year old vulnerability in versions of Microsoft Windows (from XP to Windows 10).

Antiviruses affected:-

- Avast (CVE-2017-5567): F-Secure

- AVG (CVE-2017-5566): Kaspersky

- Avira (CVE-2017-6417): Malwarebytes

- Bitdefender (CVE-2017-6186): McAfee

- Trend Micro (CVE-2017-5565): Panda

- Comodo : Quick Heal

- ESET: Norton

What DoubleAgent does:

Turns the antivirus into a malware -> modifies the antivirus internal behaviour -> abuses the antivirus' trusted nature -> destroys the machine -> denial of service.

Mitigation:

Very technical: Microsoft has provided a new design concept for antivirus vendors called Protected Processes https://msdn.microsoft.com/en-us/library/windows/desktop/dn313124.aspx)

To read the full article:

https://cybellum.com/doubleagent-taking-full-control-antivirus/

(picture & information source: cybellum

Pre-installed malware found on 36 Android devices

About Over 50 Hackers threaten to wipe iPhones

Check Point mobile researchers discovered a recent severe infection in 36 Android devices that belong to two undisclosed companies: a large telco and a multinational technology.

The malware (pre-installed on devices before they were shipped to users) was: Loki malware, APK com.androidhelper.sdk, Slocker (info-stealers and rough ad-networks and ransomware)

Affected devices:

Galaxy Note 2, LG G4, Galaxy S7, Galaxy S4, Galaxy Note 4, Galaxy Note 5, Xiaomi Mi 4i, Galaxy A5, ZTE x500, Galaxy Note 3, Galaxy Note Edge, Galaxy Tab S2, Galaxy Tab 2, Oppo N3, Vivo X6 plus, Nexus 5, Nexus 5X, Asus Zenfone 2, LenovoS90, OppoR7 plus, Xiaomi Redmi, Lenovo A850

How to get rid of malware:

It is hard and technical: either root your device and uninstall the malware apps OR completely reinstall the device firmware via "Flashing"

We suggest you go to a technician that can do it for you.

Source: http://blog.checkpoint.com/2017/03/10/preinstalled-malware-targeting-mobile-users

(picture source: arstechnica)

How to check if a website is safe

About Over 50 Hackers threaten to wipe iPhones

Go to: http://google.com/safebrowsing/diagnostic?site=

followed by the site you want to check, such as google.com or an IP address. It will let you know if it has hosted malware in the past 90 days

There are other similar services such as: Norton Safe Web, Unmasked Parasites, AVG LinkScanner, Mobilation Android app, Lookout Mobile Security, hpHosts, etc

Cyber Security & Privacy suite for Directors and Executives

About Over 50 How Yahoos latest forged cookie hack can affect you

On 13 Feb 2017, legislation passed through the Australian Parliament which will establish a Mandatory Data Breach Notification scheme. This gives Australian companies one year to get ready and ensure that a cyber strategy, processes and tactical plans are in place.

Recent lawsuits against directors worldwide, claiming negligence, lack of due diligence and/or duty of care (Worldwide Corporation, Target US, etc) highlight the need for directors to take immediate action.

The fact that 60% of organisations go out of business within 6 months of an attack and that the average cost for a breach is $4m illustrate the significance of this threat.

Are you prepared to discuss cyber at Board level? Are you aware of your obligations and defence as a director or officer of the company? Have you taken the necessary steps to mitigate the consequences of a cyber attack?

ABG offers the Cyber suite of course modules:

- Cyber threats and defences Module - Tactical plans

- Directors and Officers Module - Strategy

- Risk Management Workshop for Cyber

- Cyber Crisis simulation

Send your enquiries to admin@advisoryboardsgroup.com

Jokes

Memories of jokes

About Over 50 Hackers threaten to wipe iPhones

About Over 50 Hackers threaten to wipe iPhones

Moderated by Monica Schlesinger: www.advisoryboardsgroup.com.au

RETURN TO LIBRARY INDEX

 

© About Over 50s 2017             website by aml websites online