Author: Disini & Disini Law Office

Security Researchers Hack iOS 11.1 Right After Release

Security Researchers Hack iOS 11.1 Right After Release

At Trend Micro’s recently held Mobile Pwn2Own contest in Tokyo, researchers from Tencent Keen Security Lab were able to exploit two bugs in iOS’ browser, Safari. One of the bugs let a malicious app to persist in the browser and system service after a reboot, while the other allowed the researchers to break the sandbox and run the malicious code. The researchers earned $70,000 for their efforts. Specific details about the bugs will only be disclosed after Apple comes up with the fix, or when the three-month period of responsible disclosure ends. Apple did not yet say when a fix […]

Singapore’s Personal Data Protection Commission Launches DPMP and DPIA Guides

Singapore’s Personal Data Protection Commission Launches DPMP and DPIA Guides

Last Wednesday, Singapore’s Personal Data Protection Commission published two guides which intends to help organizations improve policies and practices in relation to personal data management. The Guide to Developing a Protection Management Programme (DPMP) details a systematic framework which organizations can use to set up a personal data protection infrastructure, while the Guide to Data Protection Impact Assessments (DPIAs) provides key principles and illustrations for use in assessments where data protection risks are identified and addressed. Source: PDPC

Data from Malaysian Breach May Have Been Available for Some Time

Data from Malaysian Breach May Have Been Available for Some Time

According to the founder of Lowyat.net, the personal data of million of Malaysians involved in the recently revealed data breach may have already been available online for some time. Vijandren Ramadass said that a user previously tried to sell him the the leaked data which contains the mobile phone numbers, identification card numbers, home addresses, and SIM card data of 46.2 Malaysians, and possibly tourists. Upon further investigation, he found that the data was already downloadable for free on the dark web, which led him to believe that the data had been there for a while. Ramadass told Reuters that […]

Police Arrest Mandiant Hacking Suspect

Police Arrest Mandiant Hacking Suspect

Reports this week revealed that a suspect in the alleged hacking of Mandiant, a cybersecurity company, was arrested by the police. The individual is said to be behind the multi-stage cyberattack named Operation #LeakTheAnalyst where the hackers threatened to release sensitive information on cybersecurity companies and researchers. The operation took place over the summer where an attacker named “31337 Hackers” leaked a batch of files last July 31, and another last August 14. While the hackers claimed that the information was taken from Mandiant or FireEye servers, further examination showed that it might have come from the personal computer of […]

Dev Confesses to Running Spam Botnet for College Funds, Avoids Prison Time

Dev Confesses to Running Spam Botnet for College Funds, Avoids Prison Time

A malware developer was recently sentenced by a Pittsburgh judge to two years probation, but no prison time, for running a spam botnet. Sean Tiernan of Santa Clara, California, was caught by the FBI in 2012 for running a botnet with 77,000 infected computers. Tiernan was said to have confessed and cooperated right away after being caught, and pleaded guilty to a CAN-SPAM violation in 2013. According to court documents, Tiernan was able to avoid a prison sentence since his crime was considered to be non-intrusive. His camp argued that the malware merely used the affected computers as proxies, and […]

Bitcoin Hits Another Record High in a Week at $7000

Bitcoin Hits Another Record High in a Week at $7000

Bitcoin’s rapid ascent continues this week as the popular cryptocurrency reached another high of $7000 yesterday. It was reported that prices saw a nine percent increase in the last 24 hours to reached $7,140 on popular digital asset broker Coinbase. The surge went up to $7,200 on other exchanges, after which it finally retreated to $7,075. Bitcoin’s takeoff defied the expectations of even the most optimistic of traders. Since the early October, the digital currency’s value had already accrued an additional $2000 in value. Source: TechCrunch

Coin Miners in Apps and Sites Become More Prevalent

Coin Miners in Apps and Sites Become More Prevalent

Experts have recently expressed their concerns over the rise in cryptocurrency miners in apps and websites that stealthily use the device’s hardware without the user’s permission. Trend Micro researchers disclosed the presence of three such apps in Google Play last Monday. They identified the apps Recitiamo Santo Rosario Free, SafetyNet Wireless App, and the Car Wallpaper HD to be using said miners and reported them to Google, who removed them immediately. The researchers added that these cryptominers significantly degrade the performance and lifespan of the device’s CPU and battery. Source: ZDNet

Bitcoin Continues to Soar to $6450

Bitcoin Continues to Soar to $6450

Bitcoin once again hit another record high of $6450 last Wednesday, fueled in part by reports that the world’s largest derivatives exchange operator would be launching a futures contract for the popular cryptocurrency. The CME Group Inc (CME.O) announced last Tuesday that it will be providing a regulated trading venue for cryptocurrency. The group also said that the new derivatives will be launched in the fourth quarter of this year. Bitcoin has already seen more than a sixfold increase this year, doubling its price since mid-September.   Source: Reuters

Muddy Waters Forces Google to Reveal Gmail Fraudster

Muddy Waters Forces Google to Reveal Gmail Fraudster

Muddy Waters recently filed a petition in a New York court, seeking to expose the identity of Gmail fraudsters who targeted its founder, prominent short-seller Carson Block. The fraudsters, who previously posed as a WSJ reporter, an investigator from Autorite des Marches Financiers, and a Paris bank employee, made numerous calls and emails to Muddy Waters, seeking information on Block and his research on supermarket operator Casino Guichard-Perrachon SA (CASP.PA). It is said that Casino might have hired the impersonators, but the group vehemently refuted the accusations, saying that it was just another destabilization attempt. Google meanwhile said that they […]

Grab Steps Into Digital Payments Market, Rolls Out “GrabPay”

Grab Steps Into Digital Payments Market, Rolls Out “GrabPay”

Grab, Uber’s main competitor in SouthEast Asia, starts its foray into the fintech industry by officially launching its GrabPay digital payments system among third party merchants last Wednesday. The company has initially signed up 25 merchants on its platform, catering mostly to street food sellers in Singapore, but is planning to raise it to 20,000 by the year’s end. Grab co-founder Hooi Ling Tan said that they are looking to make GrabPay a veritable cash replacement. While there are already a large number of fintech startups looking to provide digital payments to Singaporeans, Grab says its main advantage is that […]