Weekly Security Roundup #66: Curiosity Killed the Internet Cat
Could malware infect the entire Internet? Researchers say it’s possible
Here’s something that we rarely get to announce: it’s been a rather quiet week in cyber security land. No major data breaches, no huge compromises. That doesn’t mean that cyber criminals took a break. Oh, no, nothing like that. And, honestly, we’re wondering whether this is the calm before the storm. But I guess we just have to wait and see.
Until then, here are the top online security articles of the week:
Security articles of the week
There’s that saying, “curiosity killed the cat” – cyber attackers always know how to use this in their favor. Every time there are shocking news, something that’s hot in the media and everyone is talking about (or fearing), they’ll exploit it for some new scams. Zika is the latest hot subject that’s being used to lure innocent users into the trap of a malware infection.
Tis the season to pay taxes. And, while at it, try not to get burnt.
IRS announced that during this tax season they’ve seen a huge raise in fraud schemes: 400% up in January alone, compared to last year.
“MouseJack” is the name given to an attack that allows others to take control over your mouse and keyboard.
Marc Newlin, Bastille’s engineer that was responsible with the discovery, says that:
“Wireless mice and keyboards are the most common accessories for PC’s today, and we have found a way to take over billions of them. MouseJack is essentially a door to the host computer. Once infiltrated, which can be done with $15 worth of hardware and a few lines of code, a hacker has the ability to insert malware that could potentially lead to devastating breaches. What’s particularly troublesome about this finding is that just about anyone can be a potential victim here, whether you’re an individual or a global enterprise.”
Android users, beware: in the past seven months, Google Play has seen an invasion of malicious porn clicker trojans. ESET researchers founds more than 340, and looks like the numbers are on a serious rise.
MasterCard announced this week that they’ve been using a new payment authentication method that uses biometry. Starting this summer, users will be able to pay with a selfie or fingerprint. In order to avoid fraud, users will also need to blink while taking that selfie.
MasterCard is also working on other authentication methods, such as voice recognition or cardiac rhythm.
Google and engineers from Red Hat software company discovered a critical security flaw that affects the Intenet’s DNS (Domain Name System). Because it’s so far spread, an attacker could use the flaw to infect almost everything on the entire internet.
And this, my friends, is the story of how the internet will end.
Seems legit. I also want to become a billionaire without having to move a finger. Wishful thinking ftw!
“63% of survey respondents have encountered online security issues. But, among the folks who’ve been bitten, just 56% have permanently changed their online behavior afterwards.”
I rubbed my hands together with content when I ran into this article. My colleagues are always making fun of the fact that I have tape all over my laptop’s webcam. Glad to see that I’m not the only paranoid around. In your face, guys!
While on a flight and working on an article about the Apple vs FBI case, a journalist got hacked. In this article he recalls how this happened and what he learned out of it.
And last but not least, one of the best stories I ran into this week: Kevin is a journalist that invited two hackers to kick the sh*t out of his cyber life. He had strong passwords, 2FA activated everywhere, and, basically, some pretty strong cyber security habits. Of course, all those weren’t enough to stand in front of the elite hackers.
Benjamin Franklin used to say that in this world nothing is certain, except death and taxes. If he were alive today, he would add cyber scams to the list.