The Security Pub

Random Thoughts About Security

Monthly Archives: August 2010

The Security Pub is Mobile

Mobile-SecurityPub Now when you visit The Security Pub from a mobile device that is listed below you will find a nicely formatted interface to keep up with all the Security Alerts and News on your mobile device.

Currently supported mobile devices:
iPhone 4, iPhone 3GS, iPhone 3G, iPhone 2G
iPod touch (all generations)
Blackberry Storm 9550, 9530, 9520, 9500
Blackberry Torch
Palm Pre, Pixi
Most Android devices
iPad coming soon!!

HD Moore’s Latest Findings

rapidsploit

Metasploit’s HD Moore was in the midst of researching the recently patched LNK (Windows shortcut) vulnerability when he stumbled upon a serious problem that exposes more than 40 different Windows software programs to remote code execution attacks. – ZDNet

 

August 19, 2010 – HD Moore: Critical bug in 40 different Windows apps [ZDNet]

August 22, 2010 – Exploiting DLL Hijacking Flaws [Metasploit Blog]

August 23, 2010 – Application DLL Load Hijacking [Rapid 7 Blog]

New Data Breach Legislation

legislation In the past two months, there have been two bills introduced in Washington, D.C. that are attempting to set nationwide standards for the security and privacy of consumers’ personal information. There are already 46 different data breach notification laws in 46 states with somewhat different and inconsistent provisions regarding the notification of consumers. One of the intents of a national bill would be to eliminate these inconsistencies ensuring that all consumers are treated fairly and consistently when affected by a data breach incident. These bills are important to keep an eye on—and likely to be controversial—especially if you maintain and manage large amounts of consumer data.

Read the full article[Help Net Security]

Intel Buys McAfee

Intel has bought information security specialist McAfee in a surprise deal valued at $7.68 billion. The chip maker has offered $48 a share in cash for the anti-virus firm, a 62 per cent premium of McAfee’s Wednesday closing price of $29.93 a share. Shares in McAfee leapt 58 per cent on the news while Intel’s stock dipped.

Check out the article - [The Register]

Identity Theft and What to Know

Identity Theft, What is it?

comic id theft Identity theft is a crime in which personal information such as a name, social security number, date of birth, and address is stolen and may be used by someone to assume someone’s identity, often for the purpose of financial gain. It is also referred to as “identity fraud” when the stolen identity is used to impersonate the victim. Here are some methods a criminal may use to steal your data over the Internet.

  • hacking
  • spam
  • phishing
  • social media sites (facebook, twitter, etc)
  • file sharing

All these and many more can be targets for identity thieves, since users often make the assumption that these places on the internet are trusted environments. They will begin sharing personal information without understanding the consequences. But know, Identity theft is not just a risk for those of us who use the Internet. Criminals can obtain information by sorting through garbage, eavesdropping, stealing wallets, picking up receipts at restaurants, and other means.

Once enough information has been gathered, criminals may open new credit card accounts, apply for loans, empty your bank accounts, make charges on your credit card, or develop fake forms of identification. Another thing to know is identity thieves will not always use the information themselves. They may sell it to underground markets for financial gain.

What can you do to protect your identity?

  • Ensure that any computer used to connect to the Internet has proper security measures in place. Use and maintain anti-virus software and keep your application and operating system patches up-to-date.
  • Do not follow links provided by unknown or un-trusted sources.
  • Do not open e-mail attachments from unknown users or suspicious e-mails from trusted sources.
  • Be careful what personal information you distribute, particularly on social networking sites (Facebook, Twitter), and continuously check to see what information others may be posting about you. Also verify your privacy settings to ensure you are not inadvertently sharing your personal information. Check out these two pages for more information to protect yourself on Facebook.  Page 1 | Page 2
  • Check your credit reports from all three major credit bureaus (Equifax, Experian, and TransUnion) at least once a year. You are entitled to one free credit report from each bureau every year. You may wish to stagger your requests to check a different credit bureau every four months.
  • Guard your personal information, including your social security number. Don’t carry your social security card with you, and don’t provide your social security number to anyone unless they have a legitimate need for it.
  • Don’t put your social security number or driver’s license number on your checks.
  • Be aware of your surroundings when providing personal information orally. Watch for eavesdroppers.
  • Properly discard hard copy documents containing personal information. A crosscut paper shredder works best.

What should you do if your identity has been stolen?

The first step is to notify your bank, and any other entities with which you have accounts, to inform them that someone may be using your account fraudulently. File a report with your local police and report the event to the Federal Trade Commission. It is helpful to have your financial statements available to better explain your situation.

Contact all three major credit bureaus to request a credit report, and have a fraud alert or a credit freeze placed on your credit reports to prevent accounts from being opened without your permission.

Continue to monitor all of your accounts for any suspicious activity.

Apple.com Hacked By Mass SQL Injections

sql injection A hack attack that can expose users to malware exploits has infected more than 1 million webpages, at least two of which belong to Apple.  The SQL injection attacks bombard the websites of legitimate companies with database commands that attempt to add hidden links that lead to malware exploits. While most of the sites that fell prey appear to belong to mom-and-pop operations, two of the infections hit pages Apple uses to promote iTunes podcasts, this Google search shows. The malicious links appear to have been removed since Google last indexed the pages in early August.

Check out the article – [The Register]

Another Malicious Android Application

Yet another malicious application has been found in the Android market.  It’s a game called Tap Snake, but its not just a game.  It’s also a client for a commercial spying application called GPS SPY.  What the description of Tap Snake doesn’t say is that every 15 minutes your GPS coordinates are uploaded to a server that could be monitored by people running GPS SPY.

Tapsnake has been downloaded from 1,000 to 5,000 times, while GPS Spy has 100 to 500 downloads. The discovery comes on the heels of a suspicious Android Wallpaper app that was downloaded millions of times and what is believed to be the platform’s first SMS trojan in the wild. – The Register

Check out this video showing the game play of the Tap Snake game.

If you have the following mobile devices you can use F-Secure’s Mobile Security tool to help protect your mobile device from the Android.Tapsnake