Sunday, July 19, 2015

The World this week..(Week of July 13th)

1. Hacking team released a press statement stating that the recent hack and leak of information is now "obsolete because of universal ability to detect these system elements." The statement went on read that there will be version 10 of Hacking Team's Remote Control System, calling it "a total replacement for the existing ‘Galileo’ system, not simply an update." Six former employees of the surveillance software maker are reportedly under investigation for the breach that led to the company's corporate secrets leaking online.

2. A former intern at FireEye has been arrested for creating and selling the slick and sophisticated Dendroid malware program after being caught in a global police sting that destroyed the Darkode cybercrime forum. Prosecutors say that he was most recently working as a whitehat anti-malware professional at the company while also building and selling Dendroid, a product which the company would label its chief enemy. The alleged hacker sold the toolkit for $300 and its source code for $65k on the Darkode forum. He was arrested in the global sting along with a total of 70 administrators and members.

3. A vulnerability researcher (read hacker) from Florida, was the first recipient of United Airline’s highest-level reward in its bug bounty program, reserved for remote  code execution (RCE) vulnerabilities in its web properties. He was rewarded 1 Million Air miles.

4. Lots of excitement building up about the upcoming security conferences – BlackHat and Defcon. Both events are planned in Las Vegas in August. Black Hat Set to Expose More Than 30 Zero-Day Flaws while the Defcon consists of several tracks of speakers about computer- and cracking-related subjects, as well as social events and contests.

5. In the past, phishing campaigns were less believable, like - You may have won a lottery or you may have a undelivered parcel. However, phishing can now be very complex, well-engineered and professionally crafted, which makes them far more difficult to detect. One of ways to beat this is by training staff to detect a phishing email. Staff can be periodically sent benign phishing emails and armed with reports - as to who opened, who clicked the links in those emails etc - staff can be (re)trained.

6. A browser called the TOR (The Onion Router) delivers untraceable access to the Internet by linking all the computers onto a network. By routing connections through a chain of users, the IP address of the user is kept hidden. India is estimated to have between 500,000 to 1 million daily users of this browser. Tor's use is intended to protect the personal privacy of users, as well as their freedom and ability to conduct confidential communication by keeping their Internet activities from being monitored. However, it is widely used for unscrupulous and illegal activities like drugs, weapons, counterfeit currency, forged documents and other illicit and legal goods.

7. The website of Antrix, Indian Space Research Organization’s commercial arm, was hacked last week. The URL antrix.gov.in led to a web page to buy sports merchandise and is believed to be the handiwork of Chinese hackers. This comes two days after ISRO launched five British satellites from its Polar Satellite Launch Vehicle, its heaviest commercial launch, from Andhra Pradesh, India.


No comments:

Post a Comment