Scan of Entire Internet Reveals Too Many Leaky Devices
Posted in: Cyber News | Comments Off
May 06, 2013
There are 3.7 billion IP addresses on the Internet, and HD Moore has pinged every one of them.
Moore is chief security officer at Rapid7, a cyberthreat and risk management company.
In February, he decided as a hobby project to conduct a census of all the devices connected to the Internet, using a nest of computers in a spare room in his home.
Cyberhank @ May 7, 2013
Malware Exploits Boston Marathon Tragedy
Posted in: Cyber News, Cyber Security, Cyber News, Malware & Viruses | Comments Off
by Graham Cluley on April 17, 2013
With sick inevitability, cybercriminals have exploited interest in the breaking news story of the explosions at the Boston Marathon by spreading malware.
Messages spammed out by attackers claim to contain a link to video footage of Monday’s terrorist activity in Boston, with subject lines such as “2 Explosions at Boston Marathon”.
Other subject lines used in the campaign include:
- Aftermath to explosion at Boston Marathon
- Boston Explosion Caught on Video
- Video of Explosion at the Boston Marathon 2013
It’s no surprise to see that the links used in the malicious email can vary – no doubt in an attempt to avoid rudimentary email filtering but they all appear to be based in Ukraine and Latvia.
If you make the mistake of clicking on the link, however, you are taken to a website which – while showing you genuine YouTube videos of the the horrific incident – attempts to infect your computer with a Windows Trojan horse that Sophos products detect as Troj/Tepfer-Q.
If installed, the malware makes changes to the Registry and installs the following files, allowing hackers to gain remote access to infected computers:
<System>\drivers\npf.sys
<System>\Packet.dll
<System>\wpcap.dll
The file NPF.sys is registered as a new service named “NPF”, with a display name of “WinPcap Packet Driver (NPF)”.
Clearly, there are no depths to which cybercriminals are not prepared to stoop in their hunt for victims.
The sick truth is that malware authors and malicious hackers lose no sleep about exploiting the deaths of innocent people in their attempt to infect computers for the purposes of stealing money, resources and identities.
Remember to be on your guard against such tactics. Maybe it’s time to get your news from legitimate news websites rather than an unsolicited email which arrives in your inbox?
Cyberhank @ April 17, 2013
Seoul Blames Cyberattack on North Korea
Posted in: Cyber News, Cyber Security | Comments Off
Seoul Blames Cyberattack on North Korea
Wall Street Journal (04/10/13) Gale, Alastair
South Korean officials on Wednesday claimed the massive Internet shutdown that struck the country last month was the work of North Korea’s military intelligence agency. During that attack, which resulted in one of the largest disruptions of South Korea’s computer systems ever, hackers used malware to shut down targeted computers at television networks and banks. The attack carried with it trademark signatures of North Korean tampering, according to investigators. South Korea’s science ministry said the attacks “coincide with previous hacking methods of North Korea.” South Korean officials believe North Korea could have large teams of hackers, some of whom are based in China. Officials in South Korea also say that North Korea has carried out other attacks in the past, including malware incidents and denial of service attacks against a network of a local bank, the Web site of a major newspaper, and several government Web sites.
Cyberhank @ April 10, 2013
6 Euro Nations Scream at Google Over Privacy
Posted in: Cyber Security | Comments Off
April 03, 2013
The six leading European markets — France, Spain, Italy, the UK, the Netherlands and Germany — announced on Tuesday that they will take joint legal action against Google over its privacy policies. The action will involve an investigation and possible fines. This follows the company’s decision last year to consolidate more than 70 privacy policies for products and services into one policy.
Cyberhank @ April 3, 2013
