Information leakage vulnerability exists in the Mi Sound APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information.
Daily Archives: July 22, 2022
CVE-2020-14114
information leakage vulnerability exists in the Xiaomi SmartHome APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information.
Google Brings Back Android App Permissions Section to the Play Store
The Android Developers team said it reversed the decision due to customer feedback
Hacked Ukrainian Radio Stations Broadcast Fake News About President Zelensky’s Health
The so-far unidentified hackers broadcasted reports that Zelensky was hospitalized “in an intensive care ward”
What is ATM Skimming?
Ever hear of a crime called skimming? It may not be as dramatic a crime as assault or Ponzi schemes, but it can cause significant problems to you as your savings account can be wiped out in a flash.
Picture a scrawny nerd tampering with an automated teller machine (ATM)—the machine you use with your debit card to get cash. The thief places a device over the slot through which you slide your debit card. You have no idea it’s there. You swipe your card, and the device “skims” or reads your card’s information. In the middle of the night, the thief creeps back, removes the skimming device, downloads your data, burns it to a blank ATM card, makes a fat withdrawal and goes home with the loot. Or they could download your information from the skimmer and then use your information to make online purchases or access your account. Either way, they could clean you out before you wake up next morning!
Now, to be successful, the criminal not only needs a skimming device, they also need to attach a tiny wireless camera to capture your PIN. These cameras are usually concealed in the lighting fixture above the keypad, in a brochure near the machine, or attached directly to the ATM.
To protect yourself from being skimmed, and generally staying safe when using your debit or credit cards, follow these tips:
Scrutinize the ATM. This means every ATM, even ones from your bank. You also want to check any of the card sliders like ones at gas stations, etc, especially if you’re using your debit card. If the scanner does not match the color and style of the machine, it might be a skimmer. You should also “shake” the card scanner to see if it feels like there’s something attached to the card reader on the ATM.
Cover the keypad when entering your PIN. In order to access your bank accounts, thieves need to have your card number and your PIN. By covering the keypad, you prevent cameras and onlookers from seeing your PIN.
Check your bank and credit card statements often. If someone does get your information, you have 60 days to report any fraudulent charges to your credit card company in order not to be charged. For a debit card, you only have about 2 days to report any suspicious activity.
Be choosy. Don’t use general ATMs at bars or restaurants. These are not usually monitored and therefore, can be easily tampered with by anyone.
Stay safe from skimming!
The post What is ATM Skimming? appeared first on McAfee Blog.
NSTAC Aces Zero Trust Recommendations for Protecting Government Entities
Kudos to the National Security Telecommunications Advisory Committee for its report on boosting zero trust and ID management. As the Biden administration looks to implement its recommendations, a strong focus on vulnerability management would optimize opportunities for success.
The National Security Telecommunications Advisory Committee (NSTAC) recently approved its Report to the President on zero trust and trusted identity management, as requested by President Biden following a series of significant cyber incidents in 2021. The report is right on point, as it recognizes the federal government’s “broad opportunity and responsibility to help catalyze cybersecurity transformation through zero trust adoption,” offers best practices and deployment models to aid implementation efforts, and provides recommendations for how the federal government can leverage new technologies to influence implementation across federal and non-federal entities.
As it implements the recommendations from the NSTAC report, we believe the U.S. government should ensure that it prioritizes vulnerability management and cyber hygiene practices, both of which are foundational to organizations’ adoption of zero trust. The U.S. government has done significant work emphasizing the adoption of critical cybersecurity practices at all levels, but we must do more to ensure zero trust adoption is built on vulnerability management principles.
What now?
Today, many organizations follow a periodic vulnerability assessment schedule. But siloed, point-in-time assessments deliver a limited view of assets and potential issues, often missing critical vulnerabilities. This point-in-time scanning is the equivalent of having a security camera that takes a photo once a day – not effective at catching criminals unless you get fortunate (and the criminal is very unlucky.)
Government agencies must coordinate and collaborate to ensure they can identify, manage, and reduce risk in real time. By using a continuous network monitoring platform, like Continuous Diagnostics and Mitigation (CDM), agencies can consistently visualize the security posture of their modern attack surface, from IT to OT, and ward off malicious cyberattacks. The Cybersecurity and Infrastructure Security Agency (CISA) understands the importance of this, and is looking at how it can update the CDM program to better connect with zero trust.
One way to do this, and strengthen government networks, is to include protection of Active Directory services in the CDM program. Indeed, the NSTAC report included a zero trust maturity model use case focused on directory services security, highlighting the importance of Active Directory security to federal zero trust adoption. As one of, if not the most highly targeted and compromised pieces of infrastructure, Active Directory provides access control across the network. Active Directory security will sharply lower the risk of misconfiguration exploitation and it will help security teams monitor for ongoing suspicious and high-risk activities.
The U.S. government has also identified external attack surface management (eASM) as another core principle of zero trust architecture and implementation. eASM techniques utilize multiple methods to link various domains, IP blocks, autonomous system numbers (ASNs), and cloud assets to an organization to not only ensure an organization has complete visibility of its IT estates but also to identify vulnerabilities and configuration errors in the assets. eASM also facilitates inclusion of all assets into a CDM program, thus helping to close the operational loop.
In conclusion, we must clearly understand what must be done from the bottom up to ensure the proper steps are taken to implement zero trust among our networks, and that includes focusing on the basics. Cyber risk assessments, asset management, and vulnerability prioritization are non-negotiable and must be perfected to develop more sophisticated and technical cybersecurity strategies.
Learn More
How to Talk to the Board About Zero Trust (blog)
Security Beyond the Perimeter: Accelerate Your Journey to Zero Trust (on-demand webinar)
What Is Malvertising and How Do You Avoid It?
Smartphones and personal computers have enhanced our lives in so many ways that it can be hard to even imagine a world without them. The internet is an awesome place with endless opportunities and possibilities, but it’s also home to some seedy characters that can expose us to certain risks, like malvertising.
Malvertising, which is short for malicious advertising, attacks and compromises systems by spreading advertisements injected with malicious code. Legitimate advertising networks can then display these malicious advertisements without even knowing they’re infected.
In this article, we’ll take a closer look at what malvertising is and what you can do to secure your data and keep your information safe online. We’ll also provide some examples so you can fully understand how malvertising might be used.
Having a thorough understanding of malvertising is the first step toward keeping the internet a safe place for you and your family.
How does malvertising affect you online?
Since malvertising disguises malicious code inside legitimate online advertising, ad networks may find it hard to stop malvertising from appearing as legitimate ads.
Viewing malvertisements can put your personal information at risk, such as your identification information, contact details, and financial data. It can also alter or delete your information, hijack your computer functions, spy on your computer activities, and steal your data. And this all can happen without your knowledge.
The type of risk, though, depends on the programs that the malvertising successfully downloads onto your device. These programs can include:
Malware: This includes any malicious program that can harm your device or steal your information.
Ransomware: Ransomware is exactly what it sounds like. It encrypts your files or locks your devices and requires you to pay a ransom to use them again. Cybercriminals generally require the ransom to be in cryptocurrency because it is untraceable.
Spyware: This is a type of malware that spies on your online activities without your knowledge. Spyware puts your device’s security at risk and violates your privacy.
Adware: Adware is short for advertising-supported software and hides on your device while serving you pop-up ads. This can slow down your device and install spyware or viruses on it.
Viruses: A virus is a computer program that replicates itself onto computer programs and is designed to steal data or damage the device.
Examples of malvertising
Cybercriminals use various methods to inject infected code into online ads. Below are some examples of the types of malvertising that can pose a risk to your cybersecurity and exploit vulnerabilities on your devices.
Ad creative containing malware: Text or banner ads can contain embedded malware. The infected ads — even if they’re display ads that aren’t clicked on — can put all of the devices that displayed the ad at risk for scams or malicious software.
Ad calls containing malicious code: A cybercriminal can add infected code to an ad payload and infect any devices that display the ad.
Video containing malware: Video players are vulnerable to malware since they don’t have any protection against it. Videos can display malicious links and, consequently, infect your device.
Compromised URLs: Whenever a user clicks on an ad, it directs them between several URLs that eventually lead them to a landing page. If any of these URLs get infected with malicious code, the user’s computer can be at risk of a cyberattack.
Landing page with a malware-infected element: Legitimate websites can also contain elements infected with malware. When you click on an ad and get directed to a legitimate landing page, your device can still be infected by a malicious element on the page.
Pixel containing malware: Cybercriminals can intercept the delivery path of a pixel and send malicious code to your browser.
Flash video containing malware: Flash files can load a pre-roll banner injected with malicious code. This can infect your device once it gets exposed to it without you having to click on the video.
Even highly reputable and popular websites, such as The New York Times, the BBC, Spotify, and AOL, have been targeted in the past by malicious ads, putting billions of visitors at risk. Any website can become a target.
What’s the difference between malvertising and adware?
Malvertising is often confused with ad malware. Both are forms of malware and involve infected advertisements, but they’re fundamentally different.
Malvertising uses malicious code that can cause harm to anyone viewing the infected advertisement, while adware is used to target individuals by forcing ads onto their devices to generate clicks. Users can get bombarded with pop-up ads, which can affect their devices. Adware also collects browsing information to sell to advertisers. This is often referred to as browser hijacking.
How to avoid malvertising as a web user
Taking the necessary steps to protect your online activities and personal identifying information can help shield you from malvertising attacks. Massive volumes of online ads are displayed every day, so it’s never been more important to safeguard yourself against any shady activity on the internet.
Taking a few steps can help you avoid malvertising and minimize your risk of identity theft.
Take advantage of identity protection software like McAfee. We can help you stay protected against cybercrime with identity monitoring and identity restoration services (in the event of identity theft).
Always ensure that your ad blocker and antivirus software are up to date. These can help reduce the risk of malvertising. Keep in mind that outdated software becomes less effective with time.
Don’t use Java or Flash. The Flash player is vulnerable to cyberthreats since it’s an outdated plugin. Java is another plugin that allows software to be executed within your browser and carries a high risk of being abused to circumvent security measures on your device. You can disable the plugins or uninstall them entirely.
Keep your information secure online with McAfee
With so much sensitive information being shared online, it’s never been more important to take the necessary steps to help keep your data and privacy safe.
McAfee Total Protection services can help increase cybersecurity on your devices and keep your identity private from hackers. We offer all-in-one protection so you can get the peace of mind you deserve while enjoying the internet.
All products include identity monitoring, automated privacy using a virtual private network (VPN), a password manager, a firewall, and much more. We also offer identity restoration assistance and up to $1 million in identity theft coverage to help relieve the burden of data breaches.
Get comprehensive identity protection from McAfee and get back to surfing the internet with confidence.
The post What Is Malvertising and How Do You Avoid It? appeared first on McAfee Blog.