Software

Painting Tool Malware Harvests Facebook Credentials and Payment Information

Painting Tool Malware Harvests Facebook Credentials and Payment Information

Researchers from Radware recently reported that a painting software called StressPaint that carries a malware has already affected around 45,000 Facebook users after being spread just a few days ago. The malware is said to steal the credentials, payment information, and various other data from Facebook page owners which can be used for identity theft, malvertising or propaganda campaigns. The app does this by copying the content of Chrome browser cookies and login date files. Any Facebook credentials are then sent to a C2 server. The malware can often go undetected by the device’s antivirus software as it only goes […]

EU Antitrust Head Reports Progress in Android, AdSense Probe

EU Antitrust Head Reports Progress in Android, AdSense Probe

European Competition Commissioner Margrethe Vestager reported Wednesday that the EU Commission’s investigation into Google’s anti-competition case involving Android and AdSense is advancing. The case had been opened in 2015 after a lobbying group called FairSearch had filed a complaint. A 2016 document revealed a proposal to levy a large fine against the search giant for its revenue-sharing agreements with smartphone makers that pre-install Google Search. Google was also accused of being anti-competitive by requiring Chrome and other Google apps to be installed with Google Play, as well as blocking competitors using AdSense. Lawmaker Ramon Tremosa lamented that “Five years in […]

Two New TNC’s Accredited by LTFRB

Two New TNC’s Accredited by LTFRB

The Land Transportation Franchising and Regulatory Board (LTFRB) last Wednesday had accredited two new TNC’s, Hype and HirNa, which is expected to directly compete with Grab. Hype, which has a business model that closely resembles Grab’s, is expected to serve the public by mid-May. HirNa will be initially rolled out in Davao City, while u-Hop is already operating as a TNC. Hype COO Jen Silan says that starting Monday, they will be accepting pre-qualifications and pre-accreditations for all drivers and TNVS with existing provisional authority permits, Certificates of Public Convenience, and case numbers with the LTFRB.   Source: CNN Philippines

Dow Jones Media, Brave, to Test Consent-Based Ads

Dow Jones Media, Brave, to Test Consent-Based Ads

According to a press release last Wednesday, The Dow Jones Media Group has formed a partnership with privacy-focused browser Brave to test blockchain technology for digital advertising. Brave says that it will be providing access to either Barrons.com or the MarketWatch newsletters to a limited number of users, as the two will become verified publishers on the browser’s BAT platform. Users can earn BAT tokens by engaging ads from verified publishers which they can use to pay for premium content. Brave browser author Brendan Eich says that they are “trying to reconnect the funding that comes in gross payments after […]

VPNs Still Working in China Despite Ban

VPNs Still Working in China Despite Ban

Despite China’s ban taking effect last March 31, several virtual peer network providers have recently revealed that their services are still working in the country. China initiated a crackdown on unauthorized VPNs which began in 2007, culminating with the removal of all VPN apps from the Chinese Apple App store. The government also ordered ISPs such as China Mobile, China Unicom, and China Telecom, to block access to VPNs a month before the scheduled ban. However, VPN provider NordVPN says that the ban has not yet been implemented, and there had also received no updates from authorities. The company also […]

Russia Moves to Block Telegram via Lawsuit

Russia Moves to Block Telegram via Lawsuit

Russia’s communications watchdog, Roskomnadzor, said that it has filed a lawsuit against popular encrypted messaging app Telegram for refusing to give the FSB access to its users’ private messages. The Russian security service said that it needed access to the secret messages to aid its work, particularly against terrorism, and said that Telegram had to comply with its obligation as an organizer of information distribution. However, founder and CEO Pavel Durov had already said on Twitter that “Threats to block Telegram unless it gives up private data of its users will not bear fruit. Telegram will stand for freedom and […]

Cisco Issues Warning Against State-backed Hackers

Cisco Issues Warning Against State-backed Hackers

Cisco’s Talos Intelligence group warned this week that nation-state hackers are exploiting a “protocol misuse” issue in Cisco’s Smart Install Client to gain access to critical infrastructure providers in the energy, nuclear, commercial facilities, water, aviation, and critical manufacturing sectors. Symantec additionally reported that the suspects may be the hacking group Dragonfly which may have carried out attacks that the US CERT had issued an alert for. The new warning comes after the release of a patch addressing a critical remote code execution flaw affecting the Smart Install Client which Talos researcher Nick Biasini urged customers in a post last […]

Microsoft Bans Swearing, “Inappropriate Content” on Skype

Microsoft Bans Swearing, “Inappropriate Content” on Skype

A blogger named Jon Corbett recently wrote that Microsoft had already implemented some changes to Skype’s “Code of Conduct” to ban inappropriate content such as offensive language. Microsoft’s Skype and other services prohibit the sharing of content that include “nudity, bestiality, pornography, offensive language, graphic violence, or criminal activity”. However, a number of users pointed out that while this is makes sense for public platforms like Twitter, the policy change raise privacy and censorship questions since Microsoft would effectively be policing sharing a private conversation between two consenting adults. Microsoft has not yet responded to questions on how it will […]

Hacking of British Surgeon May Have Led to Air Strike

Hacking of British Surgeon May Have Led to Air Strike

British surgeon David Nott recently revealed to the BBC that hackers may have compromised his computer and gotten information that led to the bombing of an Aleppo hospital. Nott had reportedly helped his colleagues in Syria via Skype and WhatsApp on one occasion which was broadcasted in 2016. The hospital where his colleagues worked at was hit by a bunker buster bomb weeks later. However, cybersecurity researcher Graham Cluely said that while Nott’s theory may be plausible, he thinks it is more likely that the phone of the doctors in Syria had been infected. Matthew Hickey from Hacker House additionally […]

Firefox Password System ‘Insufficiently Secured’ for Years

Firefox Password System ‘Insufficiently Secured’ for Years

Wladimir Palant, the author of the AdBlock Plus extension, recently revealed that the encryption scheme used by Firefox for years had relatively been unsecure and could easily be broken by brute force attacks. Palant said that Firefox’s and Thunderbird’s master password system, which has an SHA-1 function iteration count of 1, is a huge red flag since the industry standard is 10,000. Software engineer Justin Dolske had reported the same issue nine years ago right after the master password feature’s launch. However, Mozilla only responded to Palant’s report and said that the issue would be fixed in the new password […]