Triada Trojan Found in Firmware of Low-Cost Android Smartphones

Security researchers have found malware inside the firmware of several low-cost Android smartphones, such as Leagoo M5 Plus, Leagoo M8, Nomu S10, and Nomu S20. […] http://ift.tt/2h9avTA http://ift.tt/2aM8QhC
Anúncios

The Week in Ransomware – July 28th 2017 – ShieldFS, GlobeImposter, and More

This week has mostly been about small variants being released, GlobeImposters all over the place, and some new CryptoMix variants. Of particular interest is a self-healing file system called ShieldFS that shows great promise in ransomware protection and some research from Google about how ransomware devs cash out their payments. […] http://ift.tt/2uFwJB8 http://ift.tt/2aM8QhC

OpenEMS Makes Electromagnetic Field Solving… Merely Difficult

To ordinary people electronics is electronics. However, we know that the guy you want wiring your industrial furnace isn’t the guy you want designing a CPU. Neither of those guys are likely to be the ones you want building an instrumentation amplifier. However, one of the darkest arts of the electronic sects is dealing with electromagnetic fields. Not only is it a rare specialty, but it requires a lot of high-powered math. Enter OpenEMS, a free and open electromagnetic field solver.

We would like to tell you that OpenEMS makes doing things like antenna analysis easy. But that’s like saying Microsoft Word makes it easy to write a novel. In one sense, yes, but you still need to know what you are doing. In fairness, though, the project does provide a good set of tutorials, ranging from a simple wave guide to a sophisticated phased array of patch antennas. Our advice? Start with the waveguide and work your way up from there.

The software uses Octave or MATLAB for scripting, plotting, and support. You can download it for Windows or Linux.

If you want to start with something more intuitive for electromagnetic field visualization, this might help. If you prefer your models more concrete and less abstract, perhaps you should work at Lincoln Lab.

Filed under: wireless hacks http://ift.tt/2uJvsaZ http://ift.tt/2aM8QhC

Pythem – Penetration Testing Framework

pythem is a multi-purpose pentest framework written in Python. It has been developed to be used by security researchers and security professionals. The tool intended to be used only for acts within the law. I am not liable for any undue and unlawful act practiced by this tool, for more information, read the license. Only runs on GNU/Linux OS.

InstallationStep-by-step

Installation

Create a global executable on PATH

Create a Desktop Shortcut

Quick-Start

git clone http://ift.tt/2uFcjsi pythemchmod +x install./install

Run with:

pythem

Examples

ARP spoofing – Man-in-the-middle.

Man-in-the-middle HSTS bypass – Strip SSL

ARP+DNS spoof – fake page redirect to credential harvester

DHCP ACK Injection spoofing – Man-in-the-middle

Man-in-the-middle inject BeEF hook

SSH Brute-Force attack.

Web page formulary brute-force

URL content buster

Overthrow the DNS of LAN range/IP address

Redirect all possible DNS queries to host

Exploit Development with pythem

Exploit Development 1: Overwriting Instruction Pointer

Exploit Development 2: Ret2libc

Commands ReferenceIndexCore

help

exit/quit

set

print

Network, Man-in-the-middle and Denial of service (DOS)

arpspoof

dhcpspoof

dnsspoof

hstsbypass

redirect

sniff

dos

pforensicpforensic: Commands Reference

help

clear

exit/quit

show

conversations

packetdisplay

filter

Exploit development and Reverse Engineering

xploitxploit: Commands Reference

help

clear

exit/quit

set

decode/encode

shellcode

search

xploit

cheatsheet

fuzz

Brute Force

brute

Utils

geoip

decode/encode

cookiedecode

Download Pythem

http://ift.tt/2tPG2jp http://ift.tt/2aM8QhC

Banco Citadele opta pela assinatura visual para serviços de mobile | CRYPTOID

Banco Citadele opta pela assinatura visual de transações Cronto para a segurança de seus serviços de mobile e de internet banking

O banco adotou as soluções da Vasco para a proteção das aplicações online e de seu mobile banking contra ataques envolvendo intermediários

A Vasco Data anunciou que o Citadele Bank da Latávia integrou a biblioteca do DIGIPASS for Apps em seu aplicativo móvel e a assinatura visual de transações Cronto em sua plataforma de online banking para auxiliar na proteção de seus consumidores contra fraudes nas operações financeiras.

O Citadele Bank é o terceiro maior banco da Latávia em número de clientes, ofertando um serviço financeiro completo de banco de varejo para clientes individuais e pequenos negócios em todos os Estados Bálticos.

O banco integrou o DIGIPASS for Apps em suas aplicações móveis para reforçar a proteção contra fraudes, incluindo a detecção de ataques à raiz do sistema. O banco também adotou a tecnologia Cronto da Vasco, uma solução patenteada de assinatura visual de transações, à sua aplicação MobileSCAN.

A tecnologia Cronto auxilia o banco na proteção contra ataques por intermediários ou do tipo Cavalo de Tróia durante as transações dos clientes ao usar um desafio visual em um criptograma composto por dots coloridos apresentados no computador do cliente.

Ele tira uma fotografia deste criptograma tanto com o seu celular como com um dispositivo específico. O criptograma é imediatamente decodificado, desencriptado e apresenta todos os detalhes da transação para a confirmação do usuário. Usando as duas ferramentas, o Citadele contribui para que seus clientes se conectem de um modo conveniente e seguro com suas contas tanto online ou através de aplicativo.

“Com os clientes cada vez mais migrando para os serviços de mobile banking, eles precisam de soluções que sejam convenientes e fáceis de serem entendidas”, comenta Martins Berzins, chefe da divisão de E-business do Citadele Group. “Essas características definem porque somos clientes da Vasco nos últimos 20 anos e porque nos sentimos confiantes de que, com produtos inovadores como a tecnologia Cronto, a empresa continuará a atender às necessidades técnicas de nosso Grupo bem como os interesses de curto e longo prazos de nossos consumidores”.

Já o presidente e COO da Vasco, Scott Clements, destaca que “os relacionamentos comerciais, especialmente em questão de segurança, frequentemente começam com soluções pontuais que, com o tempo, evoluem para um portfólio composto pelos melhores produtos na categoria”. Para o executivo, “nosso relacionamento com o Citadele, por exemplo, foi baseado inicialmente em hardware voltado para segurança de acesso. Hoje, ao entregar ao banco soluções de software, nós não apenas os auxiliamos a alcançar soluções mais equilibradas e customizadas para suas necessidades operacionais, mas também posicionamos a Vasco de forma a permanecer como seu principal parceiro em segurança”.

Sobre o Citadele Group
O Citadele Group é um grupo de serviços financeiros completos tanto para indivíduos como para empresas que oferece um portfólio de serviços de gerenciamento bancário, financeiro e de capital privado no mercado da Latávia e internacional.

O post Banco Citadele opta pela assinatura visual para serviços de mobile apareceu primeiro em CRYPTOID.

http://ift.tt/2u512Og http://ift.tt/2aM8QhC

North Carolina Hackerspace Destroyed by Fire, Members Vow to Rebuild

There’s something about old industrial buildings that just seems to attract hackerspaces. It could be the open floor plans typical in buildings that used to house big manufacturing operations, or it could be a desire to reinvigorate places where machines once hummed and skilled hands plied their trades. Whatever the attraction, the relationship is not without risk; old buildings with wood floors and frames can be tinderboxes, and tragedy can strike at any moment.

Such a fate befell The Foothills Community Workshop in Granite Falls, North Carolina, this past Friday. Details are still sketchy as the remnants of the 75,000-square foot former Shuford Mills textile factory are still smoldering, and the Fire Marshal’s investigation is not yet complete. Thankfully, no lives were lost, and injuries were limited to heat exhaustion of several of the firefighters from 16 counties who battled the blaze in the hot and humid North Carolina Piedmont.

The building was a complete loss, and almost everything within it is gone. Along with FCW’s 3500-square foot hackerspace were several businesses, a storage unit concern, and some residential apartments. We profiled FCW during their grand opening celebration back in 2012, and from the look of their website they’ve grown by leaps and bounds since then. A large machine shop, nicely equipped wood shop, a ham shack, library, electronics shop, fab lab, a wet lab space with autoclave and fume hood, a huge HO-scale model railroad, and even an area for large-scale art and stagecraft were all added, and are now all ashes. The only thing remaining is a single antenna from the radio shack.

FCW vows to rebuild, of course, and members are now officially in “scrounge mode” for anything and everything needed to rebuild their community. With a week to get over the initial shock, the members have put together a solid list of priorities for which equipment to replace first, and are even still planning to carry through with their regularly scheduled classes and outreach events. They’ve set up a crowdfunding campaign to pass the virtual hat and would no doubt welcome equipment donations, in case you’re able to pitch in and help out some fellow hackers.

Sadly, there aren’t many lessons to be learned from this except that life is fantastically random, and that everyone can do everything right and still end up losing. The fire seems to have started in a completely separate area of the building from the hackerspace, so it seems like nothing FCW did wrong. The Fire Marshal reports that an inspection two days prior to the blaze revealed a problem with the sprinkler system, which the owner appears to have hopped on immediately. Parts were ordered, 24-hour guards were posted, and yet the building burned anyway. It looks like a case of horrible luck.

The only thing that helps with bad luck is a good insurance policy, but you also want to make sure that your hackerspace doesn’t start the fire. To that end, it pays to review the basics of shop fire safety and perhaps how you are storing your flammables. And for those of you with hackerspaces in old factories, and especially when you share the space with other tenants, perhaps a regular walk-through with fire officials is a good idea. If it can happen to Foothills Community Workshop, it can happen to you.

Image credits: Hickory Record

Filed under: Hackerspaces, news http://ift.tt/2tJSwok http://ift.tt/2aM8QhC