Tag Archive for: Click

Billions of iPhone and Android owners warned over ‘cursed movie’ – one click steals your money and puts you in danger

/in


IT’S almost time for the Oscars and cyber criminals are hoping to cash in on unsuspecting movie fans.

Security experts at Kaspersky are warning that one of the most popular Oscar-nominated movies is being used to steal people’s data and even money.

Security experts are warning about a fake movie scamCredit: Getty

Scammers are said to be creating fake websites that offer victims a fake chance to stream nominated movies for free.

The aim is to steal personal and banking information from victims and sell this on the dark web.

Kaspersky experts have found several websites that aim to do just that.

They ask for “small subscription fees” and promise access to movies but will actually just steal your bank information.

The experts warn that victims then become vulnerable to unauthorized transactions.

Movies being offered by scammers include Everything Everywhere All at Once and Avatar 2.

If an offer to stream a movie seems too good to be true it probably is.

Olga Svistunova, a security expert at Kaspersky, said: “The Oscars 2023 is lucrative for cybercriminals who intensify their malicious activity every year.

Most read in Phones & Gadgets

“It’s crucial to be extra cautious during this event and double-check the authenticity of any website offering free streaming of movies.

“Don’t fall for fake websites or giveaway scams that trick users into giving away their personal information.

“Always use reputable streaming services and double-check website authenticity.”

Kaspersky advises checking the authenticity of websites before you enter any personal data.

You should also be wary of sites that promise early viewings of movies before they’re released.

Source…

Azov Ransomware can modify its own code to delete every single file on a machine with a single click

/in


A ransomware attack that is successful may be very detrimental to a company. In the event that an organization is caught unprepared, they may be forced to choose between paying a ransom demand or erasing all of the data that was taken. The WannaCry attack, which occurred more than 5 years ago, fundamentally altered cybersecurity. It was the first global-scaled, multi-vectored cyberattack in the form of an attack encrypting for and foremost, a compromised machine’s files, rendering it unusable, though reversible. Its outsized influence on the cyber threat landscape was outstanding, and it was an attack that encrypted for and foremost, a compromised machine’s files.

Since then, ransomware attacks have increased in number, form, and forms, and have evolved to use a variety of strategies and approaches.

The information security industry first became aware of Azov when it was discovered as a payload of the SmokeLoader botnet. This botnet is often located at fraudulent sites that provide unlicensed software and cracks.

The fact that Azov modifies some 64-bit executables in order to run its own code is one of the things that distinguishes it unique from the many other ransomware attacks that have been seen in recent years. The change of executables is accomplished via the use of polymorphic code in order to avoid the possibility of being blocked or discovered by static signatures. In addition, the modification is performed to 64-bit executables, which the typical malware programmer would not have bothered with.

According to the researchers at the Checkpoint “Because of this aggressive polymorphic infection of victim executables, there has been an increase in the number of Azov-infected files that are accessible to the public. VirusTotal receives hundreds of new Azov-related samples on a daily basis, and as of November 2022, the total number of these samples has already surpassed 17,000.”

Malware like Azov is one of a kind since it has the ability to develop its own code, making it simple for it to share personal information with other pieces of malware.

In addition to being able to write code, it also has the power of producing code, which allows it to…

Source…

One wrong click could wipe out your savings

/in


KUALA LUMPUR: Thanks to smartphones, we have the entire world at our feet, but one wrong click could be enough to put your data and life savings at risk.

Of late, some individuals have reportedly suffered losses from cyber-crime frauds. The issue has undoubtedly triggered concerns among the public, especially on the cyber security risk level of the nation’s financial institutions.

Without a doubt, the spate of cyber crime cases has caused some members of the public to lose faith in banks as the custodian of public money as they felt that their deposits are no longer safe in the bank. Of concern are reports that banks are not taking responsibility for the crimes which are committed before “their very eyes.”

In light of these developments, Bank Negara Malaysia (BNM) has recently instructed financial institutions to implement five measures to further strengthen safeguards against financial scams.

Among others, banks are required to migrate from SMS One Time Passwords (OTP) to more secure forms of authentication; tighten fraud detection rules and triggers for blocking suspected scam transactions; and customers will be restricted to one mobile or secure device for the authentication of online banking transactions.

Meanwhile, the banking industry has also launched the National Scam Awareness Campaign to help members of the public remember three simple steps, also known as the 3-second rule, that is, ‘Stop, Think, Block (‘Awas, Fikir, Blok’).

Data intrusion

However, albeit the various initiatives undertaken by the relevant authorities, experts said the financial fraud will continue to rear its ugly head as long as users lack the technological knowledge and are letting their guard down.

A senior lecturer at the School of Economics, Finance and Banking, Universiti Utara Malaysia Dr Juhaida Abu Bakar told Bernama, ‘phishing’ is commonly used by cyber criminals to ‘fish’ for users’ data from their smartphone.

She said through phishing, bank customers are trapped by the various links via e-mails, SMS and also mobile apps that are sent by irresponsible parties including scammers or hackers to their smartphone.

She said phone users are also exposed to mobile spyware, a…

Source…

Holiday shoppers beware: Ransomware can be just 1 click away

/in


(KXAN) — One wrong click is all it can take for a hacker to lock your files or account and demand money.

It happened to Austin business Tiny Pies’ Instagram last year.

“We got an email from someone. And we accidentally clicked on it — it looks legitimate. We clicked on it. And then it was a hacker, and they asked us to give them ransom, or they threatened to delete our account,” Amanda Wadsworth, co-founder of Tiny Pies, a small business in Austin told KXAN News.

Ransomware attackers can also threaten to reveal customers’ information on the dark web, and there’s a lot of that data right now.

“Organizations are managing about 10 times more data than they were even five years ago,” said Bobbie Stempfley, vice president and business unit security officer for Dell Technologies.

“It’s an astronomical amount of data,” she added.

She said there’s been an increase in attack attempts. In fact, she said businesses like Dell have to fend them daily.

“It’s an environment where, when you put in better protections, the threat actors work to find better ways to go work around those protections,” Stempfley said.

She said Dell is constantly doing training and simulations for employees throughout the year so they don’t fall for ransomware attacks like phishing — when hackers try to lure you via email to click on a fake link.

Holiday shoppers beware

Security company Tanium said attacks like these increase during the holiday shopping season, as hackers try to capitalize on the surge of people surfing the web for deals.

“You’re going to potentially want to look for people impersonating your brand, by stealing websites or sending out emails,” said Melissa Bischoping, Tanium endpoint security research director.

It’s not just companies that hold your data that need to watch out for attacks, Bischoping said. Shoppers should be aware, too.

“Be aware when you receive an email, maybe advertising a holiday sale. Check…

Source…