About Over 50 Articles Library
Content: Services - Computer
Computer Security No 46: Hackers threaten to wipe iPhones unless Apple pays ransom
Corporate - Private Computer Security
Hackers threaten to wipe iPhones
According to Motherboard (news site https://motherboard.vice.com), a hacker or group of hackers ('Turkish Crime Family') is allegedly trying to extort Apple over access to 300 million iCloud and Apple email accounts.
The price they demand from Apple is US $75,000 in Bitcoin or Ethereum (both crypto-currencies) or US $100,000 in iTunes gift cards.
The alternative is that they will reset a number of iCloud accounts and remotely wipe victims Apple devices on April 7 unless Apple pays.
If you have an Apple device, Backup your data, contacts, etc before April 7.
Cybellum discovers major Zero-day vulnerability - affects Windows systems
Cybellum (a Zero-day Israeli cyber firm) discovered a new Zero-day (a zero-day exploit leaves NO opportunity for detection or repair for the software vendor) attack that can take over major antiviruses. It's called DoubleAgent and it exploits a 15 year old vulnerability in versions of Microsoft Windows (from XP to Windows 10).
- Avast (CVE-2017-5567): F-Secure
- AVG (CVE-2017-5566): Kaspersky
- Avira (CVE-2017-6417): Malwarebytes
- Bitdefender (CVE-2017-6186): McAfee
- Trend Micro (CVE-2017-5565): Panda
- Comodo : Quick Heal
- ESET: Norton
What DoubleAgent does:
Turns the antivirus into a malware -> modifies the antivirus internal behaviour -> abuses the antivirus' trusted nature -> destroys the machine -> denial of service.
Very technical: Microsoft has provided a new design concept for antivirus vendors called Protected Processes https://msdn.microsoft.com/en-us/library/windows/desktop/dn313124.aspx)
To read the full article:
(picture & information source: cybellum
Pre-installed malware found on 36 Android devices
Check Point mobile researchers discovered a recent severe infection in 36 Android devices that belong to two undisclosed companies: a large telco and a multinational technology.
The malware (pre-installed on devices before they were shipped to users) was: Loki malware, APK com.androidhelper.sdk, Slocker (info-stealers and rough ad-networks and ransomware)
Galaxy Note 2, LG G4, Galaxy S7, Galaxy S4, Galaxy Note 4, Galaxy Note 5, Xiaomi Mi 4i, Galaxy A5, ZTE x500, Galaxy Note 3, Galaxy Note Edge, Galaxy Tab S2, Galaxy Tab 2, Oppo N3, Vivo X6 plus, Nexus 5, Nexus 5X, Asus Zenfone 2, LenovoS90, OppoR7 plus, Xiaomi Redmi, Lenovo A850
How to get rid of malware:
It is hard and technical: either root your device and uninstall the malware apps OR completely reinstall the device firmware via "Flashing"
We suggest you go to a technician that can do it for you.
(picture source: arstechnica)
How to check if a website is safe
followed by the site you want to check, such as google.com or an IP address. It will let you know if it has hosted malware in the past 90 days
There are other similar services such as: Norton Safe Web, Unmasked Parasites, AVG LinkScanner, Mobilation Android app, Lookout Mobile Security, hpHosts, etc
Cyber Security & Privacy suite for Directors and Executives
On 13 Feb 2017, legislation passed through the Australian Parliament which will establish a Mandatory Data Breach Notification scheme. This gives Australian companies one year to get ready and ensure that a cyber strategy, processes and tactical plans are in place.
Recent lawsuits against directors worldwide, claiming negligence, lack of due diligence and/or duty of care (Worldwide Corporation, Target US, etc) highlight the need for directors to take immediate action.
The fact that 60% of organisations go out of business within 6 months of an attack and that the average cost for a breach is $4m illustrate the significance of this threat.
Are you prepared to discuss cyber at Board level? Are you aware of your obligations and defence as a director or officer of the company? Have you taken the necessary steps to mitigate the consequences of a cyber attack?
ABG offers the Cyber suite of course modules:
- Cyber threats and defences Module - Tactical plans
- Directors and Officers Module - Strategy
- Risk Management Workshop for Cyber
- Cyber Crisis simulation
Send your enquiries to firstname.lastname@example.org
Memories of jokes
Moderated by Monica Schlesinger: www.advisoryboardsgroup.com.au
© About Over 50s 2017 website by aml websites online