Tag Archive for: attackers

New technique allows attackers to hide stealthy Android malware in images

/in

A new technique that allows attackers to hide encrypted malicious Android applications inside images could be used to evade detection by antivirus products and possibly Google Play’s own malware scanner.

The attack was developed by Axelle Apvrille, a researcher at Fortinet, and reverse engineer Ange Albertini, who presented their proof-of-concept at the Black Hat Europe security conference in Amsterdam Thursday.

It’s based on a technique devised by Albertini dubbed AngeCryption that allows controlling both the input and the output of a file encryption operation using the Advanced Encryption Standard (AES) by taking advantage of the properties of some file formats that allow files to remain valid despite having junk data appended to them.

To read this article in full or to leave a comment, please click here

Network World Security

DDoS attackers turn fire on ISPs and gaming servers

/in

DDoS attackers seem to have switched their attention from banks to gaming hosts, ISPs and even enterprises, half-year figures from Chinese mitigation vendor NSFOCUS have confirmed.

The firm’s recent statistics show that the peak for DDoS attacks on banks happened in the first half of 2013 when they accounted for an extraordinary 45 percent of all attacks, with enterprises second in the target list at around 25 percent.

By the second half of last year, this had started to change with bank attacks slipping under 10 percent – this has since dropped to fractions of a percent. If banks are now off the menu, online gaming and ISPs are suddenly popular, rising in the first half of 2014 to 10 percent and nearly 15 percent of attacks respectively.

To read this article in full or to leave a comment, please click here

Network World Security

Attackers to Basecamp: If you ever want to get back online, pay us or else

/in

Basecamp, maker of the popular project-management app by the same name, was back online Monday afternoon after sustaining a crippling denial-of-service attack earlier in the day that rendered its services unavailable to virtually all users.

In a blog post published Monday, Basecamp officials said the attack began after they spurned a demand to pay an unspecified ransom to avoid a threatened assault on their site. The flood of data that came after the demand was rebuffed peaked at about 20 gigabits per second, preventing legitimate traffic from passing through the site’s overwhelmed data connections.

“We’ve learned that the very same criminals currently attacking and trying to extort us hit others just last week,” the Basecamp blog post stated. “We’re comparing notes with everyone affected who have been in touch. The blackmail came from an address matching this pattern: dari***@gmail.com. If you have been extorted by this person, please get in contact so we can compare notes on both technical defenses and the law enforcement effort to hunt them down.”

Read 2 remaining paragraphs | Comments


Ars Technica » Technology Lab

Android security hole could enable attackers to bypass VPN – FierceMobileIT

/in

Android security hole could enable attackers to bypass VPN
FierceMobileIT
An Android vulnerability could enable an attacker to bypass a secure virtual private network (VPN) connection and divert traffic from the Android device to a system controlled by the attacker, according to researchers at Ben-Gurion University's Cyber
VPN bypass attack possible also on Android KitKatHelp Net Security

all 3 news articles »

“android security” – read more