Advertising, Authentication and Encryption

Security Analysis of Threema

Schneier on Security

JANUARY 19, 2023

We provide an extensive cryptographic analysis of Threema, a Swiss-based encrypted messaging application with more than 10 million users and 7000 corporate customers. As one example, we present a cross-protocol attack which breaks authentication in Threema and which exploits the lack of proper key separation between different sub-protocols.

Encryption

Encryption Authentication Advertising Government

BLURtooth flaw allows attacking Bluetooth encryption process

Security Affairs

SEPTEMBER 10, 2020

versions are affected by the vulnerability dubbed BLURtooth which allows hackers to defeat Bluetooth encryption. The vulnerability could be exploited by attackers to overwrite or lower the strength of the pairing key, defeating the protocol encryption. Bluetooth 4.0 affects “dual-mode” Bluetooth devices, like modern smartphones.

Encryption

Encryption Authentication Wireless Advertising

A flaw in India Digilocker could?ve been exploited to bypass authentication

Security Affairs

JUNE 8, 2020

DigiLocker provides an account in cloud to every Aadhaar holder to access authentic documents/certificates such as driving license, vehicle registration, academic mark sheet in digital format from the original issuers of these certificates. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Authentication

Authentication Mobile Accountability Passwords

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Security Affairs

FEBRUARY 26, 2020

This serious flaw, assigned CVE-2019-15126, causes vulnerable devices to use an all-zero encryption key to encrypt part of the user’s communication.” ” Experts pointed out that the vulnerability does not reside in the Wi-Fi encryption protocol, instead, the issue is related to the way some chips implemented the encryption.

Encryption

Encryption Wireless Manufacturing Advertising

Researchers Quietly Cracked Zeppelin Ransomware Keys

Krebs on Security

NOVEMBER 17, 2022

He’d been on the job less than six months, and because of the way his predecessor architected things, the company’s data backups also were encrypted by Zeppelin. “We’ve found someone who can crack the encryption.” Then came the unlikely call from an FBI agent. “Don’t pay,” the agent said.

Ransomware

Ransomware Encryption Backups Manufacturing

A flaw in Microsoft OAuth authentication could lead Azure account takeover

Security Affairs

DECEMBER 3, 2019

The vulnerability affects the way Microsoft applications use OAuth for authentication, these applications trust certain third-party domains and sub-domains that are not registered by Microsoft. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Disable non-used applications.”

Authentication

Authentication Accountability Social Engineering Advertising

Statc Stealer, a new sophisticated info-stealing malware

Security Affairs

AUGUST 10, 2023

The infection chain starts when victims are tricked into clicking on an ads that appears like an authentic Google advertisement. Below is the attack chain described by the researchers: A user is tricked into clicking on a malicious link somewhere on their Google Chrome browser (typically an advertisement).

Malware

Malware Encryption Advertising Cryptocurrency

Malvertising Is a Cybercrime Heavyweight, Not an Underdog

SecureWorld News

MARCH 29, 2024

The concept of the term "malvertising" (a portmanteau of "malicious advertising") suggests an overlap with ads, albeit dodgy ones, and therefore fuels the fallacy that its impact hardly goes beyond frustration. This interference is a major catalyst for double extortion that involves both a breach and data encryption.

Cybercrime

Cybercrime Advertising Engineering Antivirus

Bluetooth BIAS attack threatens billions of devices

Security Affairs

MAY 19, 2020

“To establish an encrypted connection, two Bluetooth devices must pair with each other using a link key. It is possible for an unauthenticated, adjacent attacker to impersonate a previously paired/bonded device and successfully authenticate without knowing the link key. The issue potentially impact over a billion of devices.

Authentication

Authentication Encryption Wireless Advertising

Cisco fixes critical and high-severity flaws in Data Center Network Manager

Security Affairs

JULY 31, 2020

One of the most security issues is a critical authentication bypass vulnerability, tracked as CVE-2020-3382. The vulnerability can allow a remote, unauthenticated attacker to bypass authentication and perform actions with admin privileges on the vulnerable device. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Authentication

Authentication Advertising Software Encryption

Nexus, an emerging Android banking Trojan targets 450 financial apps

Security Affairs

MARCH 23, 2023

Nexus is available via a Malware-as-a-Service (MaaS) subscription and is advertised on underground forums or through private channels (e.g., However, Cleafy’s Threat Intelligence & Response Team reported having detected the first Nexus infections in June 2022, months before the MaaS was publicly advertised.

Banking

Banking Cryptocurrency Malware Advertising

Google: Security Keys Neutralized Employee Phishing

Krebs on Security

JULY 23, 2018

Security Keys are inexpensive USB-based devices that offer an alternative approach to two-factor authentication (2FA), which requires the user to log in to a Web site using something they know (the password) and something they have (e.g., “Users might be asked to authenticate using their security key for many different apps/reasons. .

Phishing

Phishing Authentication Mobile Passwords

USPS Site Exposed Data on 60 Million Users

Krebs on Security

NOVEMBER 21, 2018

The problem stemmed from an authentication weakness in a USPS Web component known as an “application program interface,” or API — basically, a set of tools defining how various parts of an online application such as databases and Web pages should interact with one another.

Accountability

Accountability Authentication Identity Theft Advertising

3.4 Million user records from LiveAuctioneers hack available for sale

Security Affairs

JULY 14, 2020

” According to the company, attackers accessed personal details of the users, including names, email addresses, mailing addresses, phone numbers, and also encrypted passwords. The experts found a post advertising information of roughly 3.4 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Data breaches Identity Theft Advertising

EventBot, a new Android mobile targets financial institutions across Europe

Security Affairs

APRIL 30, 2020

EventBot is a mobile banking trojan and infostealer that abuses Android’s accessibility features to steal user data from financial applications, read user SMS messages, and steal SMS messages to allow the malware to bypass two-factor authentication.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Mobile

Mobile Financial Services Banking Malware

Microsoft recommends Exchange admins to disable the SMBv1 protocol

Security Affairs

FEBRUARY 13, 2020

It also provides an authenticated inter-process communication mechanism. Since 2016, Microsoft is urging admins to stop using SMBv1, later versions of the protocol implemented security enhancements, such as encryption, pre- authentication integrity checks to prevent man-in-the-middle (MiTM) attacks, and insecure guest authentication blocking.

Authentication

Authentication Malware Advertising Hacking

FBI issued a flash alert about Netwalker ransomware attacks

Security Affairs

AUGUST 2, 2020

. “Once an actor has infiltrated a network with Netwalker, a combination of malicious programs may be executed to harvest administrator credentials, steal valuable data, and encrypt user files. Use two-factor authentication with strong passwords. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware VPN Advertising Government

Visa warns of new sophisticated credit card skimmer dubbed Baka

Security Affairs

SEPTEMBER 6, 2020

The skimmer loads dynamically to avoid static malware scanners and uses unique encryption parameters for each victim to obfuscate the malicious code.” The JavaScript URL is hardcoded in the loader script in encrypted format, experts observed that the attackers can change the URL for each victim. Pierluigi Paganini.

eCommerce

eCommerce Malware Encryption Advertising

Judging Facebook's Privacy Shift

Schneier on Security

MARCH 13, 2019

Increased transparency over advertiser and app accesses to user data. The company could be more transparent about what data it shares with advertisers and others and how it allows advertisers to select users they show ads to. For example, it could allow users to turn off individually targeted news and advertising.

Advertising

Advertising Surveillance Engineering Encryption

Criminal secure messaging system takedown: 6500+ arrests and €900 million+ seized

Malwarebytes

JUNE 27, 2023

Now, Europol has published a progress report showing the enormous impact the infiltration of the encrypted communications tool EncroChat made. EncroChat, a company based in the Netherlands, advertised its services as safer than safe, stating that no messages were saved on its servers, which were located “offshore.”

Encryption

Encryption VPN Banking Advertising

The Future of Privacy: How Big Tech Is Changing the Way We Think About Our Data

Cytelligence

DECEMBER 8, 2023

While these conglomerates use collected data to refine their services and for targeted advertising, concerns are mounting regarding the accumulation of excessive data beyond individual control. Additionally, the utilization of personal data by tech companies for targeted advertising fosters growing distrust among users.

Data collection

Data collection Ransomware Advertising Risk

News Alert: i2Coalition launches ‘VPN Trust Initiative’ to promote VPN operators’ best practices

The Last Watchdog

SEPTEMBER 26, 2023

Advertising Practices: Given the complexity and different use cases for VPNs, claims must not mislead. Privacy: VPNs should keep as little data as they deem necessary to provide the service and only produce data to law enforcement when legally required.

VPN

VPN Internet Internet Technology

Android Pie introduces important security and privacy enhancements

Security Affairs

DECEMBER 27, 2018

The latest version of Google OS, Android Pie, implements significant enhancements for cybersecurity, including a stronger encryption and authentication. The tech giant updated the File-Based Encryption implementing the support for external storage media, it also included the metadata encryption with hardware support.

Mobile

Mobile Encryption Authentication Advertising

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

Security Affairs

AUGUST 3, 2019

The WPA Wireless security standard was designed to authenticate wireless devices using the Advanced Encryption Standard (AES) protocol and to establish secure connections that hackers cannot spy on. The Enterprise mode implements 192-bit encryption for networks that require extra security. Pierluigi Paganini.

Passwords

Passwords Hacking Wireless Authentication

CVE-2019-0090 flaw affects Intel Chips released in the last 5 years

Security Affairs

MARCH 7, 2020

Intel CSME is responsible for initial authentication of Intel-based systems by loading and verifying all other firmware for modern platforms.” “For instance, Intel CSME interacts with CPU microcode to authenticate UEFI BIOS firmware using BootGuard. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firmware

Firmware Technology Advertising Authentication

How Can You Keep Your Personal Information Safe?

CyberSecurity Insiders

OCTOBER 29, 2021

Ideally, your online accounts should be equipped with two-step factor authentication. The Dark Web Uses Encryption to Hide Locations. You can’t access the dark web through a typical search engine because dark websites use encryption to conceal their locations. Be Wary of Targeted Advertising.

Passwords

Passwords Advertising Data breaches Accountability

Key Reuse opens to attacks on IPsec IKE, Cisco, Huawei, ZyXEL products are affected

Security Affairs

AUGUST 14, 2018

Security researchers from the University of Opole in Poland and the Ruhr-University Bochum in Germany have devised a new attack technique that allows cracking encrypted communications. We exploit a Bleichenbacher oracle in an IKEv1 mode, where RSA encrypted nonces are used for authentication.” Many vendors are affected.

Encryption

Encryption Authentication Internet Internet

SILENTFADE a long-running malware campaign targeted Facebook AD platform

Security Affairs

OCTOBER 3, 2020

The social network giant revealed that malware has a Chinese origin and allowed hackers to siphon $4 million from users’ advertising accounts. The attackers primarily ran malicious ad campaigns, often in the form of advertising pharmaceutical pills and spam with fake celebrity endorsements.” Pierluigi Paganini.

Malware

Malware Advertising Accountability Authentication

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Krebs on Security

SEPTEMBER 4, 2018

The database required no authentication. Before it was taken offline sometime in the past 12 hours, the database contained millions of records, including the username, password and private encryption key of each mSpy customer who logged in to the mSpy site or purchased an mSpy license over the past six months. In September 2014, U.S.

Spyware

Spyware Mobile Advertising Software

API Security and Hackers: What?s the Need?

Security Affairs

MAY 30, 2020

Authentication. To increase the complexity of hacking your device, always get to know who is calling your APIs, by using a simple access authentication (user/password) or an API key (asymmetric key). Encryption. The authorization and/or authentication of your APIs should be delegated. Just be cryptic. with ID tokens.

Authentication

Authentication Firewall Encryption Passwords

7 Cyber Safety Tips to Outsmart Scammers

Webroot

FEBRUARY 26, 2024

By encrypting your internet connection and masking your IP address, a good VPN shields your online activities from prying eyes, hackers, and nosy advertisers. That’s where a virtual private network (VPN) swoops in like a digital superhero to save the day. But fear not!

Scams

Scams VPN Passwords Phishing

Hacking the Twinkly IoT Christmas lights

Security Affairs

DECEMBER 24, 2018

The communications are not encrypted, however the WiFi password is sent encrypted during set up (albeit trivial to decrypt).” “As the communications are not encrypted, it is simple to Man-in-the-Middle the traffic and analyse the API.” Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT

IoT Hacking DNS Authentication

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

The AvosLocker ransomware-as-a-service emerged in the threat landscape in September 2021, since January the group expanded its targets by implementing the support for encrypting Linux systems, specifically VMware ESXi servers. Use multifactor authentication where possible. Do not give all users administrative privileges. ?

Ransomware

Ransomware DDOS Passwords Backups

FBI issued a flash alert on Lockbit ransomware operation

Security Affairs

FEBRUARY 5, 2022

After ransomware ads were banned on hacking forum, the LockBit operators set up their own leak site promoting the latest variant and advertising the LockBit 2.0 attempts to encrypt any data saved to any local or remote device but skips files associated with core system functions.” Like other ransomware gangs, Lockbit 2.0

Ransomware

Ransomware Backups Encryption Accountability

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

Security Affairs

MAY 11, 2020

To maximize your network security, always protect your router with a unique password and use an encrypted network. To resolve this issue, organizations must opt for two-factor authentication for their system. Encrypted Tools. Most of the online tools are not secured and do not provide end to end encryption.

Encryption

Encryption Data breaches Advertising Passwords

USBAnywhere BMC flaws expose Supermicro servers to hack

Security Affairs

SEPTEMBER 3, 2019

When accessed remotely, the virtual media service allows plaintext authentication, sends most traffic unencrypted, uses a weak encryption algorithm for the rest, and is susceptible to an authentication bypass. “ ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Hacking

Hacking Firmware Media Authentication

The strengths and weaknesses of different VPN protocols

Security Affairs

APRIL 26, 2019

Different protocols create different ways that connect your device and the internet through encrypted tunnels. The protocol relies on encryption, authentication and peer-to-peer protocol (PPP) negotiation. However, the speed comes at the cost of encryption. Of all the protocols, PPTP has the lowest level of encryption.

VPN

VPN Encryption Firewall Internet

Experts disclose security flaws in Oracle’s iPlanet Web Server

Security Affairs

MAY 11, 2020

The first issue, tracked as CVE-2020-9315 , could allow unauthenticated remote attackers to gain read-only access to any page within the administration console, without authentication, by simply replacing an admin GUI URL for the target page. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Social Engineering

Social Engineering Phishing Advertising Encryption

Black Cat ransomware group wants $4.5m from Reddit or will leak stolen files

Malwarebytes

JUNE 19, 2023

The February attack, billed as a “sophisticated phishing campaign” by Reddit, involved an attempt to swipe credentials and two-factor authentication tokens. Even so, this still presents a major headache for Reddit even without having to worry about encrypted devices. Stop malicious encryption.

Ransomware

Ransomware Backups Encryption Passwords

Moxa Industrial Switches plagued with several flaws

Security Affairs

MARCH 11, 2019

“Successful exploitation of these vulnerabilities could allow the reading of sensitive information, remote code execution, arbitrary configuration changes, authentication bypass, sensitive data capture, reboot of the device, device crash, or full compromise of the device.” Pierluigi Paganini.

Advertising

Advertising Encryption Authentication Passwords

A flaw in US Postal Service website exposed data on 60 Million Users

Security Affairs

NOVEMBER 21, 2018

The problem resides in the USPS Informed Visibility API designed to to let businesses, advertisers and other bulk mail senders “make better business decisions by providing them with access to near real-time tracking data” about mail campaigns and packages. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .”

Accountability

Accountability Advertising Encryption Authentication

CVE-2019-14899 flaw allows hijacking VPN connections on Linux, Unix systems

Security Affairs

DECEMBER 5, 2019

“Additionally, we are able to determine the exact seq and ack num bers by counting encrypted packets and/or examining their size. Using the encrypted replies to unsolicited packets to determine the sequence and acknowledgment numbers of the active connection to hijack the TCP session. Pierluigi Paganini.

VPN

VPN Encryption Advertising Authentication

Thousands credit card numbers of MoviePass customers were exposed online

Security Affairs

AUGUST 21, 2019

The researcher discovered that the records in the database were not encrypted. According to Techcrunch, which analyzed a sample of 1,000 records, data are authentic. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Encryption Authentication Passwords

Mysterious custom malware used to steal 1.2TB of data from million PCs

Security Affairs

JUNE 11, 2021

Multiple posts on the Dark Web advertise similar malware that is available for as little as $100. The malware stole nearly 26 million login credentials holding 1.1 million unique email addresses, 2 billion+ cookies, and 6.6 million files.” Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Malware

Malware Computers and Electronics Software Financial Services

Security Analysis of Threema

BLURtooth flaw allows attacking Bluetooth encryption process

Trending Sources

A flaw in India Digilocker could?ve been exploited to bypass authentication

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Researchers Quietly Cracked Zeppelin Ransomware Keys

A flaw in Microsoft OAuth authentication could lead Azure account takeover

Statc Stealer, a new sophisticated info-stealing malware

Malvertising Is a Cybercrime Heavyweight, Not an Underdog

Bluetooth BIAS attack threatens billions of devices

Cisco fixes critical and high-severity flaws in Data Center Network Manager

Nexus, an emerging Android banking Trojan targets 450 financial apps

Google: Security Keys Neutralized Employee Phishing

USPS Site Exposed Data on 60 Million Users

3.4 Million user records from LiveAuctioneers hack available for sale

EventBot, a new Android mobile targets financial institutions across Europe

Microsoft recommends Exchange admins to disable the SMBv1 protocol

FBI issued a flash alert about Netwalker ransomware attacks

Visa warns of new sophisticated credit card skimmer dubbed Baka

Judging Facebook's Privacy Shift

Criminal secure messaging system takedown: 6500+ arrests and €900 million+ seized

The Future of Privacy: How Big Tech Is Changing the Way We Think About Our Data

News Alert: i2Coalition launches ‘VPN Trust Initiative’ to promote VPN operators’ best practices

Android Pie introduces important security and privacy enhancements

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

CVE-2019-0090 flaw affects Intel Chips released in the last 5 years

How Can You Keep Your Personal Information Safe?

Key Reuse opens to attacks on IPsec IKE, Cisco, Huawei, ZyXEL products are affected

SILENTFADE a long-running malware campaign targeted Facebook AD platform

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

API Security and Hackers: What?s the Need?

7 Cyber Safety Tips to Outsmart Scammers

Hacking the Twinkly IoT Christmas lights

Avoslocker ransomware gang targets US critical infrastructure

FBI issued a flash alert on Lockbit ransomware operation

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

USBAnywhere BMC flaws expose Supermicro servers to hack

The strengths and weaknesses of different VPN protocols

Experts disclose security flaws in Oracle’s iPlanet Web Server

Black Cat ransomware group wants $4.5m from Reddit or will leak stolen files

Moxa Industrial Switches plagued with several flaws

A flaw in US Postal Service website exposed data on 60 Million Users

CVE-2019-14899 flaw allows hijacking VPN connections on Linux, Unix systems

Thousands credit card numbers of MoviePass customers were exposed online

Mysterious custom malware used to steal 1.2TB of data from million PCs

Stay Connected