Your Library for the latest IT Security News, Alerts, Threats and Tips and Android Games
Recent Articles
Showing posts with label Phishing. Show all posts
Showing posts with label Phishing. Show all posts

Friday, 12 December 2014

Malware Alert! Android Virus Steals Personal Data including Passwords

Friday, 12 December 2014 - 0 Comments




Computer Emergency Response Team of India (CERT-In) has issued an advisory, warning users against a new Android virus that is out on the streets. Named as Android/SmsSend, this virus affects Android smartphones and steals personal information including sensitive data such as passwords.
Scroll further to read more about this mobile virus.

What is Android/SmsSend?

Android/SmsSend is a newly detected Trojan virus that affects Android smartphones.

What does this Virus do?

Once inside an Android device, the virus can perform the following malicious and illegal activities:

  • Sends text messages to numbers on the victim’s contact list. These messages most likely contain a link to download the virus itself, or to other threats.

Steals basic information of the infected device such as:



  1. IMEI number
  2. Device ID
  3. Device type

  • Android/SmsSend is also capable of installing spyware on the infected device, which in turn, can spy on what the user does on their phone.
  • The virus can also steal sensitive information such as:


  1. Pictures
  2. Passwords
  3. Banking information


  • The notoriety level of this virus goes up to a level where it can also track the device’s location, access text messages, crash the affected device, and even disable any firewall protection.

How does Android/SmsSend Spread?

The main source of this Android malware are unofficial, third party app stores.

What Should You Do to Avoid this Malware?



  1. Download apps only from trusted, official stores such as Google Play.
  2. Always check for permissions before installing an app. For instance, if a Flash Light app asks for your permission to use Internet or view your contacts or media, then avoid installing it.
  3. Do not click links in unknown and unexpected emails.
  4. Avoid clicking links in text messages from unknown senders. Even if the link seems to have sent by someone you know, verify it first before acting on it.
  5. Get a reliable mobile security app that performs real-time virus scan as soon as an application is installed on a device.
  6. Use the device encryption feature that is available in Android Gingerbread 2.3.4 and above. Encrypting your device will prevent a hacker from misusing your data even if they get access to it.
  7. Never log on to any website while using public, unsecured Wi-Fi networks.
  8. Regularly back up your device’s important files and keep them safe.

How does Quick Heal help?

Quick Heal mobile security app detects and blocks this Android malware from affecting your device or its data.


If you come across any incident that is related to the {Android Smssend} virus or any other malware, please do leave your comments below.

Source:
timesofindia.indiatimes.com
gadgets.ndtv.com
http://ibnlive.in.com

Wednesday, 19 November 2014

What is Phishing and How to Avoid it?

Wednesday, 19 November 2014 - 0 Comments

Phishing is one of the oldest tricks in the book of hackers. But as old as it might be, phishing still remains the most lucrative tool for cyber criminals; as they say, old is gold. This post tells you about phishing and measures you can take to avoid it.

What is Phishing?

Phishing is a fraudulent activity that is designed to trick the victim into revealing their personal and confidential information. This information usually includes bank account details, credit card numbers, and social security numbers to name a few. There are different ways a hacker can launch a phishing attack on his targets.

Phishing by Email

This is the most common phishing technique deployed by cyber criminals. Fake emails posing as crucial communication from a bank, ecommerce site or known legitimate entities are sent to the victim. These emails contain links to a fake Web site, which usually appears like a legitimate site and prompts the victim to sign in or divulge their personal information. In some instances, the phishing email itself contains an attachment of a form to be filled out by the victim. To trick the victim into visiting the fake Web site or fill out the form, such emails show a sense of urgency or a threatening situation. For instance, the target is informed that their bank account is at a risk of identity theft. To fix the issue, the user must verify their account by providing their banking details. The email might also claim that unverified accounts will be discontinued.

Here is an example of a phishing email that looks like it has come from Lloyds Bank:
                                               [Source: http://www.banksafeonline.org.uk]

Phishing by Call

Phishing is no more dependent on emails. Fraudsters have started using the telephone as their new pawn. In a phishing call scam, the victim will receive a phone call from a person posing as an employee of a bank, a software firm, or any other known organization. If it is from a bank, then the issue will be usually related to the security of the victim’s bank account. The caller instructs the victim to call another number, which in most cases, will be an automated attendant. The attendant will ask the caller for their bank account details like account number, pin number, password, etc. In some instances, a phishing email may instruct the victim to call a number, instead of urging them to visit a website or open an attachment. Phishing by phone is also called vishing.

This is how a phishing call might go:


“Is this Mr. Brown? This is a call for you from (a popular) Bank. We have received reports of illegal withdrawals from your bank account. In order to contain the situation, and safeguard your account, we need to confirm your account number, expiration date, four digits at the back…” and so on.

SMiShing

Cyber criminals leave no stone unturned when it comes to having their way. Recently, there has been a sharp surge of phishing attacks that involve Short Message Service (SMS). Targets will be sent SMSs where they will be asked to click a link to a spoofed website. The website might ask the target for their personal information, or infect their computer with a malware. In some SMSs, the target is asked to call a certain number (sometimes toll free) and verify their personal information. Even here, phishers use scare tactics to trick the target. For instance, you might receive an SMS reading that your ATM card has been suspended or deactivated. To reactivate the service, you must call xxxxxxxxxxxx immediately.

Example:
Credit Union N.A. Please call us immediately at 1-888-xxx-xxxx regarding a recent restriction placed on your account. Thank you. [Source: www.t-mobile.com]

How to Avoid Phishing Attacks
Here are some simple measures you can take to prevent phishing attacks.

- Never entertain unsolicited emails, calls or SMSs.

- Your bank will never ask you for confidential information via emails, calls or texts. If you do receive any such communication, do not respond; even better, report the incident to your bank.

- Avoid accessing websites via links in email messages; especially those asking for personal information. It is always a safe bet to type the URL manually into the web browser.

- Do not fill any kind of form that comes along with an email.

- Provide your personal information only on secure websites. A secure website’s URL should always begin with “https” instead of “http”. Also important is the presence of a lock symbol on the website (see figure A). Clicking the lock icon should display the digital certificate that verifies the authenticity of the website.
Fig A.

- Look for spelling mistakes, grammatical errors or bad language in any email you receive; especially the ones you were not expecting. Emails from a genuine organization are proofread and edited before they are sent out to the customers.

- If you receive an email containing link(s), do not click it. Hover your mouse over the link and take a look at the left hand corner of the browser. It will display a link. Check if this link matches the one in the email. If it doesn’t, then suspect it as a phishing attack.

- If you receive any email from your bank that conveys a sense of urgency or threat, then call up your bank and verify the situation.

- Keep your system’s operating system updated and patched

- Go for an antivirus program that is capable of blocking phishing emails and websites.

- Keep a regular check on your bank account. Even if there is anything amiss, you will have enough time to contain the situation.

- Keep your web browsers updated and patched.

There is no silver bullet for phishing attacks or cybercrime for that matter. But taking the right precautionary measures, seeking help from the right authorities, and using the right security solution, do place us at a safer spot.

3 Important Things You Should Know About Heartbleed

Password leaks and targeted attacks are nothing new and the latest security bug related to a massive loss of passwords across the world is ‘Heartbleed’. This bug has received a lot of media coverage over the last few days, so there is a lot of confusion about what it is and what one needs to do to fix the issue.
This blog post aims to help you better understand what Heartbleed really is and what you need to do in order to secure your presence online. Heartbleed has affected about 17% (close to 500,000) of the web servers across the world, so there is a high chance that you are affected by this too. With that in mind, here’s what you need to know now.

Fact # 1: What exactly is Heartbleed?


Heartbleed is a security bug that affects servers that use OpenSSL (Secure Sockets Layer) technology. When you log in to your email account, or make a financial transaction online, the server that hosts this activity is protected by the SSL technology, which is denoted by the symbol of the padlock near the address bar and the unmistakable presence of “HTTPS” as a prefix of the URL itself.
Heartbleed is a bug that afflicts this very protective measure and exposes information that SSL attempts to protect. What this means then, is that sensitive information like passwords, credit/debit card details and more are susceptible to this bug and can be stolen.

What this means is that there is nothing wrong with your PC or your antivirus software. This is an issue that needs to be dealt with by the people who run the websites that make use of SSL. Moreover, if you are surfing the Internet you will not be able to tell if a service you are using is affected by Hearbleed or not.

Fact # 2: Which websites and online services are affected?


While most of the sites that have been affected have taken corrective steps already, there are bound to be many more which are still working on it. If you use some of the following services then there is a high chance that your password and details may have been leaked.
Facebook
Gmail
Amazon
SoundCloud
Instagram
Yahoo Mail
Flickr
YouTube
Pinterest
Google
Minecraft
Wikipedia
Tumblr
GoDaddy
Netflix
Dropbox

As you can see, the list is huge. There are several more services that have been affected, so the potential damage here is substantial.

This online tool can also help you ascertain whether a particular URL is afflicted or not. If you carry out online banking transactions, then we highly recommend that you change your account passwords. Also, check this tool to see if your bank’s online portal is affected by Heartbleed or not.

Fact # 3: What do you need to do?


While there is nothing specific that you can do to combat Heartbleed, one major precaution you should take is change ALL your online passwords right away. This will ensure that if any of the services you use have been afflicted by Heartbleed, then at least your passwords will be safe. Apart from this, stay alert about any unusual activity on your accounts. If you feel something is out of the ordinary, take the necessary corrective steps as soon as possible. Moreover, spread the word about Heartbleed and inform your friends and family members as well.
WARNING: Be on the lookout for fake password reset emails

With such widespread activity occurring simultaneously with regards to password changes all over the world, this is bound to lead to several phishing emails about password resets. Be on the lookout for such emails and stay away from fake emails that ask you to change your passwords. Read here for some tips on how to recognize fake phishing emails.

Quick Heal will keep you updated about any further developments and news regarding Heartbleed, so keep checking back for more information.

Get Our App

Subscribe

Please Enter Your Email Id

© 2013 Blogger World. All rights reserved.
Designed by Think Exchanger