android malware google play store

ClickSSL Weekly InfoSec Snipper January 23, 2017

This entry is part 140 of 148 in the series Weekly Infosec Snipper

Supercell Forum admitted about breach of 1 million accounts

Supercell community forum has suffered from data breach in 2016 but admitted few days before that the data breach has hacked millions of Supercell forum accounts. Supercell is a maker of Clash of Clans, Hay Day, Clash Royale, and Boom Beach games. It is believed that around 1 million accounts were compromised during data breach. Hackers were successfully in exploiting Vbulletin CMS that is used by Supercell for its forum. However, the game accounts were not affected. The data included emails and passwords of users.

New framework set to address trusted mobile applications

GlobalPlatform – a technical standard body has published a framework that addresses issue of trusted mobile applications and IoT devices. This framework is applicable for any device including mobile and IoT devices, TEE (Trusted Execution Environment) implementers, device makers, trusted application providers. It defines standard techniques to accomplish the lifecycle of TEE applications. The framework enables users to install, update, and personalize trusted applications in a TEE environment.

Third party apps secretly downloads and purchased from Google Play Store

Android is facing a new malware namely Android.DownLoader, that secretly downloads and purchases the applications from Google Play Store. This type of malware also able to steal information like configured Google accounts. The malware is spread as part of applications found in third party app stores. Security Company Dr. Web said that Skyfin is a code and it is used in apps that are stored in downloads folder and the user does not notice it.

Cheap SSL

The UK faced around two Million Cyber Incidents in 2016

According to Office National Statistics report (ONS), in 2016, there were around 2 million cyber incidents have been taken place in the UK. There were 1.3 M incidents related to virus while the rest were featuring unauthorized access to personal data. The ratio of online channel fraud was recorded at 3.6 million incidents including 2.9 million victims. Businesses are requested to secure their customer’s data with strict policy making.

Deutsche bank banned use of Mobile based Messaging

German bank Deutsche bank is going to ban use of mobile based messaging to develop compliance efforts. This move will ban SMS messages, and third party apps including WhatsApp, G-Talk, and Apple iMessage. After the poor performance of Deutsche bank in case of regulatory compliance, this move was introduced. Deutsche Bank staff will now have to use the lender’s own in-house systems.

Series Navigation<< ClickSSL Weekly InfoSec Snipper January 16, 2017ClickSSL Weekly InfoSec Snipper January 30, 2017 >>
 

Leave a Reply

Your email address will not be published. Required fields are marked *