Silensec Newsletter

Top News

Cops must get a warrant before raiding phones, email, etc

California has passed a law requiring police to obtain a warrant before searching phones, tablets, and other electronic devices, and accounts in cloud services, too.

Governor Jerry Brown on Thursday signed off the Electronic Communications Privacy Act (ECPA) to require a search warrant for electronic searches. The law means cops will now need to obtain a warrant from a judge in order to retrieve electronic information, including emails, texts, and locational data, on a device or from a hosted service provider. Read more...


iPhone Malware Is Hitting China. Let’s Not Be Next!

Over just the last month, Chinese iPhone and iPad owners have been hit with two distinct iOS mass malware infections. Unlike previous spates of iOS-targeted malware, many of those victims hadn’t jailbroken their phones to install unauthorized apps.

The two back-to-back attacks—one far more sophisticated than the other but both unprecedented in iOS’s history—suggest that complacent iPhone users around the world could be in for the same nasty shock. And if they are, how can they avoid the mistakes that led to China’s outbreaks? Read more...



Top News

Patreon attackers drop data, expose users

 The attackers that compromised Patreon have dumped the data on various bin sites.

It's perhaps a small irony that one of the dumps has landed on Mega, the Kim Dotcom-founded file-store that calls itself “The Privacy Company”. With 15 GB of data in the drop, there could be a lot of personal details in the leak (Vulture South is happy to leave it to others to pore over the data). Since site source code is apparently included among the compromised data – as Patreon explained, the data leak happened because a debug version of the site ended up outside the firewall – there's a risk that the site's code might help attackers recover the bcrypt-hashed data. Read more...



VBA malware is back!

 VBA malware is far from dead. In fact, as Sophos researchers recently noted, approximately 50 to 100 new VBA malware samples are spotted each day.

For those who don't know, VBA (Visual Basic for Applications) is Microsoft's implementation of Visual Basic that's built in many of its software, including its Office suite, and is used for automating tasks. Unfortunately, if the VBA code is malicious and is inserted in, for example, a Word file, it will execute automatically once the file is opened.



Top News

'RipSec' goes to Hollywood: how the iCloud celeb hack happened

The chief hacker behind the infamous iCloud celebrity hacks has revealed in a documentary how the group dubbed RipSec shook Hollywood by plundering thousands of photos and financial data of Tinsel Town icons.

The hacker broke silence and spoke to Canadian tech and producer Travis Doering who provides information security consultancy services to film producers, Hollywood stars, and businesses. Doering told Vulture South he obtained access to the secretive group and says he was able to establish the real identities of some of the iCloud hackers. Read more...



SIX MILLION fingerprints of US govt workers nicked in cyber-heist

 The fingerprints of nearly six million US government workers were copied by hackers who raided Uncle Sam's Office of Personnel Management (OPM).

The OPM said on Wednesday that figure should be 5.6 million.

A good number of these prints will belong to government employees who have applied for security clearances. The agency said it had found evidence of the latest theft when it was checking over records with the Department of Defense as part of the post-attack forensics. Why this took three months to spot has not been explained. Read more...



Silensec Cyprus HQ

Silensec Africa

Feel free to contact us if you have any problems.

Silensec UK

Feel free to contact us if you have any problems.

News Feed