Silensec Newsletter

Top News

Senator demands FBI Director explain his encryption backdoor nonsense

One US senator is calling out the director of the FBI for pushing the moronic notion that there is somehow a good way to add backdoors to encryption used to protect devices like Apple's iPhone.

In an earlier speech, the FBI Director carried on the time-honored agency tradition of claiming that Silicon Valley can backdoor encryption safely if its workforce just nerds a little bit harder.

The argument, is that the tech industry's best and brightest are just being recalcitrant and could offer up a golden key for law enforcement to access encrypted communications if they really wanted to.

Read more...

Nearly Half of the Norway Population Exposed in HealthCare Data Breach

Cybercriminals have stolen a massive trove of Norway's healthcare data in a recent databreach, which likely impacts more than half of the nation's population.

An unknown hacker or group of hackers managed to breach the systems of Health South-East Regional Health Authority (RHF) and reportedly stolen personal info and health records of some 2.9M Norwegians out of the country's total 5.2M inhabitants.

The healthcare organization announced the data breach on Monday after it had been alerted by HelseCERT, the Norwegian CERT department for its healthcare sector, about an "abnormal activity" against computer systems in the region.

Read more...

Read more...

Top News

EFF & Lookout uncover new malware espionage campaign infecting thousands around the world

The EFF and mobile security company Lookout have uncovered a new malware espionage campaign infecting people in more than 20 countries.
Hundreds of gigabytes of data has been stolen, primarily through mobile devices compromised by fake secure messaging clients.
The trojanized apps, including Signal and WhatsApp, function like the legitimate apps and send and receive messages normally.
However, the fake apps also allow the attackers to take photos, retrieve location information, capture audio, and more.

Read more...

New MaMi Malware targets macOS systems and changes DNS settings

Patrick Wardle, a renowned cybersecurity researcher has spotted a new strain of malware dubbed MaMi designed to hijack DNS settings on macOS devices.
Wardle first obtained a sample of the MaMi malware after a user reported on the Malwarebytes forums that the Mac of its teacher was infected by a malware that set DNS servers to 82.163.143.135 and 82.163.142.137.

It implements other features like screenshots, simulating mouse events, downloading, uploading files, and executing commands.

“Since there are already several (IMHO unrelated) malware specimens that perform DNS hijackering (that are named ‘DNSChanger’, etc), I decided to call is OSX/MaMi due to a core class the malware named: ‘SBMaMiSettings’ ” wrote Wardle.

Users can check DNS settings, the malicious code set DNS servers to 82.163.143.135 and 82.163.142.137.

Read more...

Read more...

Top News

House Fails to Protect Americans from Unconstitutional NSA Surveillance

The House of Representatives cast a deeply disappointing vote today to extend NSA spying powers for the next six years by a 256-164 margin.

In a related vote, the House also failed to adopt meaningful reforms on how the government sweeps up large swaths of data that predictably include Americans' communications.

Because of these votes, broad NSA surveillance of the Internet will likely continue, and the government will still have access to Americans' emails, chat logs, and browsing history without a warrant.

Read more...

Italian researcher discovered that Gmail shutdown after sending a Zalgo text

Italian firm We Are Segment made the headlines due to the discovery of the Tormoil vulnerability.

The flaw in Gmail was discovered by the white hat hacker Roberto Bindi, the flaw could be exploited to shut down Gmail by sending to the victim a specially crafted message, impeding the user from accessing his/her email address.

A Zalgo text is a type of text composed of characters and metacharacters (letters, numbers and other symbols) which extend sideways – above and under – the original text, thanks to the effect produced by the standard Unicode combiners.

The first experiment conducted by the expert demonstrated that the insertion of a Zalgo text (which can also be generated by web applications) containing a great number of metacharacters (more than 1.000.000) triggered the browser crash, namely, the web browser shut down for a few minutes.

Read more...

Read more...

Silensec Africa

Feel free to contact us if you have any problems.

Silensec UK

Feel free to contact us if you have any problems.

News Feed