The Loop » Security

Android bug allows hackers to record phone conversations

Jim Dalrymple — Mon, 05 Dec 2011 21:41:05 +0000

The Register:

Computer scientists have discovered a weakness in smartphones running Google’s Android operating system that allows attackers to secretly record phone conversations, monitor geographic location data, and access other sensitive resources without permission.

Well now, there’s a feature the iPhone doesn’t have.

[Via Daring

∞ Permalink

∞ Nearly all mobile malware targeted at Android phones

Peter Cohen — Mon, 21 Nov 2011 16:24:45 +0000

A new study from anti-virus software maker McAfee shows that almost all of the malware available for mobile devices is on the Android platform, not iOS.

∞ Permalink

∞ Researcher finds security bug in iOS

Jim Dalrymple — Tue, 08 Nov 2011 18:06:17 +0000

Reuters:

A software flaw in Apple Inc’s iPhones and iPads may allow hackers to build apps that secretly install programs to steal data, send text messages or destroy information, according to an expert on Apple device security.

Here is a video from the researcher Charlie Miller:

∞ Permalink

∞ ∞ Sony confirms data breach involving 93K online accounts

Jim Dalrymple — Wed, 12 Oct 2011 11:12:26 +0000

Sony has been the target of another hacker attack. This time about 93,000 PlayStation Network (PSN) and Sony Online Entertainment (SOE) accounts were compromised, but no one’s credit card information is in danger. That’s according to a report posted to the PlayStation blog by Philip Reitinger, Sony Group senior vice president and chief information security

∞ U.S. military drones infected by keylogging virus

Jim Dalrymple — Tue, 11 Oct 2011 15:23:54 +0000

CNN:

A computer virus has infected the cockpits of America’s Predator and Reaper drones, logging pilots’ every keystroke as they remotely fly missions over Afghanistan and other warzones.

Military security specialists are unsure if the virus was introduced intentionally or by accident, don’t know how far the virus has spread, and haven’t been able to keep the virus off of drones even though they’ve been trying.
Too bad the drones don’t run OS

∞ Permalink

∞ Mass AG plans to investigate iTunes complaints

Jim Dalrymple — Thu, 22 Sep 2011 15:32:08 +0000

Threatpost:

Massachusetts Attorney General Martha Coakley said on Tuesday that her office would be inquiring into long-standing complaints about fraudulent purchases that leverage Apple’s popular online music store.

In a lunchtime address to business and technology leaders in Massachusetts, Coakley said she was a victim of identity theft in recent months, and that her stolen credit card information was used to make fraudulent iTunes purchases. When asked (by Threatpost) about

∞ Permalink

∞ iPhone users less concerned about security than Android owners

Jim Dalrymple — Thu, 22 Sep 2011 13:14:42 +0000

NPD Research:

Among smartphone users, 82 percent have no security products installed on their phones; however, the percentage of users addressing this concern varies by platform, according to NPD’s “Emerging Technology Trends: Mobile Security” report. Although iPhone and Android smartphone owners share similar security concerns, 30 percent of Android smartphone owners have installed security products on their phones, compared to just 6 percent of iPhone owners.

“Even though iPhone

∞ Permalink

∞ ∞ Apple security update fixes DigiNotar certificate problem

Peter Cohen — Fri, 09 Sep 2011 18:55:39 +0000

Apple on Friday released Security Update 2011-005 for Snow Leopard and Lion (as well as Server versions). The update is available for download through the Software Update system preference and from the Apple Web site.

The update is described as a “Certificate Trust Policy” issue:

An attacker with a privileged network position may intercept user credentials or other sensitive information.

Specifically,

∞ Couple can sue LoJack software maker, court rules

Peter Cohen — Wed, 31 Aug 2011 22:13:29 +0000

Wired:

U.S. District Judge Walter Rice ruled last week against Absolute Software, which provides software and services for tracking stolen computers. Absolute sought a summary judgment in its favor, insisting that one of its theft recovery agents acted properly when he captured sexually explicit images of Susan Clements-Jeffrey communicating via webcam with her boyfriend and passed them to police in an effort to recover the stolen computer.

Clements-Jeffrey is a

∞ Permalink

∞ ∞ SecureMac updates MacScan, giving away a MacBook Air

Jim Dalrymple — Wed, 31 Aug 2011 13:54:43 +0000

SecureMac:

SecureMac is celebrating the release of MacScan 2.9.1, the latest version of it’s award-winning anti-malware privacy and security software for Mac OS X. The Download, Tweet and Win! Campaign allows Mac users the opportunity to download MacScan and audit their computer for security threats and privacy issues such as tracking cookies and tweet their results for a chance to win great prizes such as a

∞ ∞ SecureMac releases MacScan 2.9 with support for Lion

Jim Dalrymple — Mon, 01 Aug 2011 15:27:00 +0000

SecureMac on Monday updated MacScan, the company’s anti-spyware privacy and security software, adding support for Apple’s recently released OS X Lion.

∞ ∞ iOS update fixes certificate validation

Peter Cohen — Mon, 25 Jul 2011 18:06:32 +0000

Apple on Monday released iOS 4.3.5. You can download the new update by connecting tethering your iPhone to your Mac, opening iTunes and clicking the Update button.

∞ ∞ iOS 4.3.4 fixes PDF security issue

Peter Cohen — Fri, 15 Jul 2011 17:38:50 +0000

Apple on Friday released iOS 4.3.4 – new software for the iPhone, iPod touch and iPad. It’s available for download and installation through iTunes.

∞ ∞ Hacker group targets Apple servers, publishes usernames and passwords

Jim Dalrymple — Tue, 05 Jul 2011 13:23:16 +0000

Anonymous said on Sunday via its account on microblogging site Twitter that Apple could be a target for hackers and released the data as part of its Anti Security, or “AntiSec,” campaign.

Anonymous said the data included 27 usernames and passwords for the www.abs.apple.com website.

Apparently the Web site was only used for online surveys, but I think they made their point.

∞ ∞ Sega has 1.3 million customer records hacked

Jim Dalrymple — Mon, 20 Jun 2011 13:21:04 +0000

First it was Sony, and now Sega has its online customer database hacked. I guess if there is a positive side to this breach it’s that no credit card information was stolen when the accounts were hacked. According to Sega, payment information was stored with external service providers.

Information taken includes names, birth dates, e-mail addresses and passwords, according to e-mails sent by Sega to affected customers. The information taken was part of Sega’s “Sega Pass”

∞ ∞ More malware on the Android store

Jim Dalrymple — Tue, 14 Jun 2011 20:08:36 +0000

No matter how much Google does to convince consumers it is good and open, continued reports of malware will hurt its reputation. Google already had to remove apps containing malware once and a report in May said malware on the store grew 400 percent. Now, Google removes more malware.

Unlike other code embedded in apps that have appeared in the market, Plankton doesn’t rely on a

∞ ∞ Snow Leopard security update quarantines, removes malware

Peter Cohen — Tue, 31 May 2011 22:59:03 +0000

Apple on Tuesday released Security Update 2011-003, aimed at Snow Leopard (Mac OS X 10.6). The update is recommended for all users, and is available either through the Software Update system preference or through Apple’s Web site.

∞ ∞ Apple details how to remove MacDefender malware

Jim Dalrymple — Tue, 24 May 2011 22:40:42 +0000

Apple updated its Web site on Tuesday with details on how to remove the much talked about MacDefender malware.

“A recent phishing scam has targeted Mac users by redirecting them from legitimate websites to fake websites which tell them that their computer is infected with a virus,” Apple wrote on its support site. “The user is then offered Mac Defender ‘anti-virus’ software to solve the issue.”

Read the rest of this story

∞ ∞ Android sees 400 percent increase in Malware

Jim Dalrymple — Tue, 10 May 2011 22:29:00 +0000

It’s a big news day for Google, but it’s not all good news for the search and mobile operating system company.

In a new global mobile threat report released on Tuesday, Juniper Networks said cyber criminals are turning to smartphones instead of PCs. Along with that shift is a widening gap between hacker capabilities and an organization’s defenses.

Read the rest of this story on The Loop

∞ ∞ Report: iPhone, iPad track your every move

Jim Dalrymple — Wed, 20 Apr 2011 14:21:33 +0000

Researchers have discovered a file on Apple’s iPhone and iPad that apparently keeps track of everywhere you go.

The file reportedly keeps the latitude, longitude and a timestamp of the iPhone’s location, according to the Guardian. Privacy advocates were quick to point out the dangers of such a file.

Read the rest of this story on The Loop