Tag: Card | Page 3

Hackers Gain Control of Casino Card Shuffling Machine for Godlike Control Over Games

August 12, 2023/in Computer Security

“Basically, it allows us to do more or less whatever we want.”

Shifty Shufflers

The house doesn’t always win.

Researchers at the security firm IOActive say they’ve discovered that a card shuffling machine called the Deckmate, widely used by casinos and long thought to be impervious, is actually vulnerable to hacking, Wired reports — an exploit that could give a skilled cheater omniscient knowledge of every player’s cards.

The investigation was spurred by a gambling scandal last year, when during a game of poker, a newcomer holding a terrible hand called the bluff of a veteran player — a call so baffling that the commentator thought that the live graphics were displaying the cards incorrectly.

Accusations of cheating followed, along with an official investigation by Hustler Live Casino, the host of the scandalous game. The casino’s report concluded there was no evidence of foul play, and averred that the Deckmate used at the game was “secure and cannot be compromised.”

Under the Table

That’s where the IOActive researchers begged to differ.

“At that point, it’s a challenge,” Joseph Tartaro, a researcher at the security firm, told Wired.

Presenting at a Las Vegas security conference, Tartaro and his team found that the latest version of the card shuffler, the Deckmate 2, can be hacked through its exposed USB port.

They theorize that a conniving player could pretend to drop something, go under the table where the Deckmate lies, and plug a device into the USB port. And if physically plugging in a hacking device lacks subtlety, the researchers claim that it could also be hacked remotely through the Deckmate’s internal modem.

From there, cheaters could access the shuffler’s internal camera that watches the cards, and relay that data over Bluetooth to a phone held by a partner nearby who could communicate with a trick like hand signals.

As a test, IOactive researchers made a hacking device out of a Raspberry Pi, exploiting, among several vulnerabilities, faulty firmware that let them tamper with the Deckmate’s encrypted code without detection. They paired this with a Bluetooth app that displayed the hands of other players based on the data.

“Basically, it allows us to do more or less whatever we…

Source…

This macOS malware can steal your private data, passwords, and credit card info — what we know

March 27, 2023/in Computer Security

While macOS doesn’t have as big of a target on its back for hackers as Windows, it isn’t actually immune from malware and a new threat has emerged for modern Macs.

The aptly named MacStealer malware targets macOS laptops and desktops running macOS Catalina or above. That includes those running Intel, M1, or M2 chips. The goal is to steal a wide variety of data from you including iCloud Keychain data, credit card info, passwords, files, images, and more (via The Hacker News).

How does MacStealer work?

The Uptycs researchers that discovered the malware and covered it in their blog were unable to determine how it is being distributed, but it relies on a DMG (macOS installer file) called weed.dmg, which once triggered will open a password prompt that can then be used to gain access to your data.

Fake password prompt created by MacStealer malware — (Image credit: Uptycs)

The malware was spotted in online hacking forums earlier this month and its authors intend to expand on its current features to add support for capturing data from the Safari browser and Apple Notes app. It is currently focused on Google Chrome, Mozilla Firefox, Brave browsers, Microsoft Office files, image files, PDFs, archives, and Python scripts.

How to protect your Mac from MacStealer

Source…

Get BT’s Fibre 2 broadband with BT Sport for £25.49/month for six months + a £100 BT Reward Card

January 12, 2023/in Internet Security

For those of you looking for a new broadband and TV package, we have a deal that might be of interest to you.

You can BT’s fast Fibre 2 broadband (67Mbps), plus BT Sport on a 24-month contract priced at £25.49 for the first six months (opens in new tab). After this initial six month period, the price then goes up to £50.99 a month. However, if you get this deal now then you won’t have any upfront costs and you even get a £100 BT Reward Card.

This bundle is ideal for small to medium households with high UHD streaming and downloading demands thanks to the dependable Fibre 2 broadband you receive. BT’s broadband also comes with its most advanced ‘Smart Hub 2’ router, which can help ensure fast speeds throughout your home.

On top of all this, sports fans will be able to make the most of all four of BT Sport channels, which boast an array of Premier League and Champions League football games. What’s more, this package comes with BT’s latest TV box. This allows you to access all free-to-air channels and record up to 600 hours of live TV.

Finally, the bonus £100 BT Reward Card comes preloaded with money that you can spend anywhere that accepts Mastercard. However, this is only available to new BT customers and can be claimed once your broadband is setup and working.

If you are interested by this deal then you should act now as the offer ends on February 1. However, if you’re just in the market for a broadband-only package then instead you should check out our run down of the best broadband deals available right now.

OUR BT BROADBAND & TV DEAL

What other reasons are there to choose BT for your broadband?

BT is one of the most popular options broadband in the UK, with millions of customers using its Openreach network on a daily basis. However, as you’ll see in our round up of the best BT broadband deals, there are plenty of reasons why so many households choose this provider.

Not only does it offer one of the best selections of speeds – from its slower, but cheaper 10Mbps packages, through to its ultrafast Full Fibre options – it’s also one of the most reliable in terms of connectivity.

BT also boasts a variety of top tech, too. From its excellent ‘Smart Hub’ routers, through…

Source…

167,000 stolen credit card numbers Exposed via PoS Malware

October 25, 2022/in Internet Security

Cybercriminals are increasingly targeting credit card payment terminals to steal sensitive information, reveals new research from Group-IB Botnet Monitoring Team.

The team’s head Nikolay Shelekhov and the company’s analyst, Said Khamchiev, shared details of how cybercriminals used a PoS (point-of-sale) malware to steal over 167,000 payment records from 212 compromised devices. Almost all of the affected users were based in the USA.

The campaign was discovered in April 2022, but researchers believe the campaign occurred between February 2021 and September 8, 2022.

Researchers blamed a poorly configured C2 server for PoS malware MajikPOS. The configuration allowed them to assess the server. They discovered that the server hosted a separate C2 administrative panel for a unique POS malware variant identified as Treasure Hunter (first detected in 2014). This malware also collects compromised card data.

For your information, MajikPOS and Treasure Hunter malware infect Windows POS terminals. For infecting a store, MajikPOS (first detected in 2017) scans the network for open or poorly secured RDP and VNC remote-desktop services. It then brute forces into the network or purchases access to the systems’ credentials.

Both malware can scan the devices and look to exploit the card when the device is reading card data. The malware then stores the information in plain text in memory. Moreover, Treasure Hunter can perform RAM scraping, which pores over the memory of all running processes on the register to locate freshly swiped magnetic stripe data from a shopper’s bank card. Conversely, MajikPOS can scan infected PCs for card details. The information is then sent over to the attacker’s C2 server.

During their month-long investigation, Group-IB assessed around 77,400 card dumps from MajikPOS and 90,000 from Treasure Hunter panels. Around 75,455 or 97% of MajikPOS compromised cards were issued by US banks, and the rest were from banks worldwide. Regarding Treasure Hunter, 96% or 86,411 cards were issued in the USA. They also detected eleven victim firms in the USA.

Further probe revealed that cybercriminals used two POS malware strains to steal details of…

Source…

Tag Archive for: Card

“Basically, it allows us to do more or less whatever we want.”

Shifty Shufflers

Under the Table

How does MacStealer work?

How to protect your Mac from MacStealer