Sci-Verse: Search results for security - tech, Gadgets review, Startups and Programming Hub

Six Free Vulnerability Scanners

Friday, June 27, 2014 Unknown 0 Comments Category :

Vulnerability scanners can help you automate security auditing and can play a crucial part in your IT security.
They can scan your network and websites for up to thousands of different security risks, producing a
prioritised list of those you should patch, describe the vulnerabilities, and give steps on how to remediate them. Some can even automate the patching process. Though vulnerability scanners and security auditing tools can cost a fortune, there are free options as well.
Some only look at specific vulnerabilities, but there are also those that offer broad IT security scanning.

1. OpenVAS
The Open Vulnerability Assessment System (OpenVAS) is a free network security scanner platform, with most
components licensed under the GNU General Public License (GNU GPL). The main component is available via several Linux packages or as a downloadable Virtual Appliance for testing/evaluation purposes. Though the scanner itself doesn't work on Windows machines, they
offer clients for Windows. The main component of the OpenVAS is the security scanner, which only can run in Linux. It does the actual work of scanning and receives a feed updated daily of Network Vulnerability Tests (NVT), more than 33,000 in total.The OpenVAS Manager controls the scanner and provides the intelligence. The OpenVAS Administrator provides a command-line interface and can act as full service daemon, providing user management and feed management.
There are a couple clients to serve as the GUI or CLI. The Greenbone Security Assistant (GSA) offers a web-based
GUI. The Greenbone Security Desktop (GSD) is a Qt- based desktop client that runs on various OSs, including
Linux and Windows. And the OpenVAS CLI offers a command-line interface.
OpenVAS isn't the easiest and quickest scanner to install and use, but it's one of the most feature-rich,
broad IT security scanners that you can find for free. It scans for thousands of vulnerabilities, supports concurrent scan tasks, and scheduled scans. It also offers note and false positive management of the scan
results. However, it does require Linux at least for the main component.

2. Retina CS Community
Retina CS Community provides vulnerability scanning
and patching for Microsoft and common third-party
applications, such as Adobe and Firefox, for up to 256
IPs free. Plus it supports vulnerabilities within mobile
devices, web applications, virtualised applications,
servers, and private clouds. It looks for network
vulnerabilities, configuration issues, and missing
patches.
The Retina CS Community software essentially provides
just the patching functionality. Retina Network
Community is the software that provides the
vulnerability scanning, which must be separately
installed before the Retina CS Community software.
Retina CS Community installs on Windows Server 2008
or later, requires the .Net Framework 3.5 to be installed,
IIS server enabled, and Microsoft SQL 2008 or later to be
installed. Keep in mind, installation on Domain
Controllers or Small Business Servers is not supported.
Once the software is installed you're provided with a GUI
program for Retina Network Community component and a
web-based GUI for the Retina CS Community
component. It supports different user profiles so you can
align the assessment to your job function.
To scan you can choose from a variety of scan and
report templates and specify IP range to scan or use the
smart selection function. You can provide any necessary
credentials for scanned assets that require them and
choose how you want the report delivered, including
email delivery or alerts.
Retina CS Community is a great free offering by a
commercial vendor, providing scanning and patching for
up to 256 IPs free and supporting a variety of assets.
However, some small businesses may find the system
requirements too stringent, as it requires a Windows
Server.

3. Microsoft Baseline Security Analyser (MBSA)
Login | Register Follow us on Twitter
Follow us on Facebook Sign up to newsletters Microsoft Baseline Security Analyser (MBSA) can perform local or remote scans on Windows desktops and servers, identifying any missing service packs, security patches,
and common security misconfigurations. The 2.3 release adds support for Windows 8.1, Windows 8, Windows Server 2012 R2, and Windows Server 2012, while also supporting previous versions down to Windows XP.
MBSA is relatively straightforward to understand and use. When you open it you can select a single Windows
machine to scan by choosing a computer name from the list or specifying an IP address or when scanning multiple machines you can choose an entire domain or specify an IP address range. You can then choose what you want to scan for, including Windows, IIS and SQL administrative vulnerabilities, weak passwords, and
Windows updates. Once the scan is complete you'll find a separate report
for each Windows machine scanned with an overall security classification and categorised details of the
results. For each item you can click a link to read details on what was scanned and how to correct it, if a
vulnerability were found, and for some you can click to see more result details. The reports are automatically
saved for future reference, but you can also print and/or copy the report to the clipboard. Although free and user-friendly, keep in mind that MBSA
lacks scanning of advanced Windows settings, drivers, non-Microsoft software, and network-specific
vulnerabilities. Nevertheless, it's a great tool to help you find and minimise general security risks

4. Nexpose Community Edition
Nexpose Community Edition can scan networks,
operating systems, web applications, databases, and
virtual environments. The Community Edition, however,
limits you to scanning up to 32 IPs at a time. It's also
limited to one-year of use until you must apply for a
new license. They also offer a seven-day free trial of
their commercial editions.Nexpose installs on Windows,
Linux, or virtual machines and provides a web-based
GUI. Through the web portal you can create sites to
define the IPs or URLs you'd like to scan, select the
scanning preferences, scanning schedule, and provide
any necessary credentials for scanned assets.
Once a site is scanned you'll see a list of assets and
vulnerabilities. You can see asset details including OS
and software information and details on vulnerabilities
and how to fix them. You can optionally set policies to
define and track your desired compliance standards. You
can also generate and export reports on a variety of
aspects.
Nexpose Community Edition is a solid full-featured
vulnerability scanner that's easy to setup but the 32 IP
limit may make it impractical for larger networks.

5. SecureCheq
SecureCheq can perform local scans on Windows
desktops and servers, identifying various insecure
advanced Windows settings like defined by CIS, ISO or
COBIT standards. It concentrates on common
configuration errors related to OS hardening, data
protection, communication security, user account
activity and audit logging. The free version, however, is
limited to scanning less than two dozen settings, about
a quarter of what the full version supports.SecureCheq is
a simple tool. After scanning the PC you'll see a list of
all the checked settings and a Passed or Failed result.
Click a setting and you'll find links to references about
the vulnerability, summary of the vulnerability, and how
to fix it. Though you can't save the results for later
viewing in the application, you can print them or view/
save the OVAL XML file.
Although SecureCheq is easy-to-use and scans for
advanced configuration settings, it actually misses some
of the more general Windows vulnerabilities and
network-based threats. However, it complements the
Microsoft Baseline Security Analyser (MBSA) well; scan
for basic threats and then follow up with SecureCheq for
advanced vulnerabilities.

6. Qualys FreeScan
Qualys FreeScan provides up to 10 free scans of URLs or
IPs of Internet facing or local servers or machines. You
initially access it via their web portal and then download
their virtual machine software if running scans on your
internal network.
Qualys FreeScan supports a few different scan types;
vulnerability checks for hidden malware, SSL issues, and
other network-related vulnerabilities. OWASP is for
auditing vulnerabilities of web applications. Patch
Tuesday scans for and helps install missing software
patches. SCAP checks computer settings compliance
against the SCAP (Security Content Automation
Protocol) benchmark provided by National Institute of
Standards and Technology (NIST).
Though you first see just an online tool that appears to
just do scanning via the Internet, if you enter a local IP
or scan, it will prompt you to download a virtual scanner
via a VMware or VirtualBox image. This allows you to do
scanning of your local network. Once a scan is complete
you can view interactive reports by threat or by patch.

INFORMATION SECURING

Tuesday, April 01, 2014 Unknown 0 Comments Category :

Home Office →
IT Security
Most people understand their department and know how to use their tools to get their tasks done, but are isolated and unaware of security issues all around them. The weakest link in most security programs is people. To be part of the process and not part of the problem, you need to be knowledgeable and aware.

Security awareness is recognizing what types of security issues and incidents may arise Security is about People, Processes and Technology Explaining existing policies and best practices
Security is more than just Technology - There is no Security without U

Network eavesdropping
Data flows across networks every day, including passwords, private personal information, personnel records, email messages, financial documents, and more. By default, data that flows across the network is not protected. Hackers, malicious insiders, and others may want to steal that data and use it for their own advantage. A hacker can tap into a network using a wireless device.
This is known as War Driving. A hacker can literally construct a device, that will allow them to park in front of a building or your home and gain access to a network while sitting in their car. Secure Your Wireless Network
Your operating system will tell you if a wireless network is secured or not.
You should not connect to an insecure network because the data that you send out would be available to everyone around you! Wireless networks are extremely convenient, but that convenience comes at a price: security. With a traditional wired network, data is channelled through cables and cannot be easily intercepted. With a wireless
network, data is beamed through the sky and can be more easily intercepted – unless, that is, you have appropriate security measures in place. Passwords
There several things you should be aware of concerning password security.
Passwords (can be and) are often written down by users who have trouble remembering them. Passwords are also more and more stored electronically, on PDAs or mobile phones. Do not leave passwords recorded anywhere for others to find.

Social engineering and Phishing scams
These scams can trick a user to disclose the password, just by asking the password in some way (e.g. a so called helpdesk-person calling). Key-logging: Passwords can be intercepted by key-loggers (hardware or software) and then transmitted to other people.
Shoulder surfing: refers to using direct observation techniques, such as
looking over someone’s shoulder, to get information. Shoulder surfing is particularly effective in crowded
places because it is relatively easy to observe someone as they: Fill out a form Enter their PIN at a cash machine or a POS terminal Use a calling card at a public pay phone Enter passwords at a cybercafe, public and university libraries, or airport kiosks. Enter a code for a rented locker in a public place such as a swimming pool or airport
Shoulder surfing can also be done at a distance using binoculars or other vision-enhancing devices. Inexpensive, miniature closed-circuit television cameras can be concealed in ceilings, walls or fixtures to observe data entry. To prevent shoulder surfing, it is advised to shield paperwork or the keypad from view by using
one’s body or cupping one’s hand.
Cracking: Passwords can be cracked, especially if they are short (although short is a relative concept, taken into account the increased computing power available today). Guessing:
Passwords can be guessed, e.g. if no strong password policy is enforced.
To counter guessing, quite simply, the passwords need to be made as long and as complex as is practicable. Be
significantly different from your previous passwords. Not
contain your own name or user name. (Nor the name of
spouse, children, pets etc.)
Have at least one symbol character in the second
through sixth positions.
Packet Sniffing:
Passwords can be sniffed, intercepted when in transit
between a PC and a server (e.g. on the Internet)
Packet sniffing is the monitoring of data traffic on a
computer network. Computers communicate over the
Internet by breaking up messages (emails, images,
videos, web pages, files, etc.) into small chunks called
“packets”, which are routed through a network of
computers, until they reach their destination, where they
are assembled back into a complete “message” again.
Packet sniffers are programs that intercept these packets
as they are travelling through the network, in order to
examine their contents using other programs. A packet
sniffer is an information gathering tool, but not an
analysis tool. That is it gathers “messages” but it does
not analyze them and figure out what they mean.
Resetting:
Passwords can be reset (which is often easier than
cracking a password). If you have created a password
restore disk for your computer always ensure that it is
stored safely. Anyone can use this disk to reset your
password. No matter how many times you have changed
your password since the disk was created.
Password Best Practice
You should not include personal information in your
password, such as your birthday, the name of your dog,
favourite sports team, etc.
Use as many characters as possible; the longer the
password, the harder it is to crack.
Phrases are better then passwords, e.g. ‘Your
company is #No1′
Do not use dictionary words in any language
Do not use easily guessed patterns (1234,1bcd,
qwerty, etc)
Use a mix of upper and lower case letters, numbers
and special characters
Change your password as often as possible.
Threats and Frauds
Threats
The trends in the use of World Wide Web technology are
changing with the aim to enhance creativity, information
sharing and collaboration among users
But it also comes with new Risks, Threats and Fraud!
Malware
Malware stands for ‘Malicious Software’. It includes any
program or file that is designed to do harm. To distribute
them hackers will often hide them inside other programs
on websites or send them to you by e-mail. These
include:
Viruses and Worms
Trojan Horses
Adware and Spyware
Phishing / Pharming
Spam and Hoax letters
Types of Malware
Malware can gain remote access to your system thus
allowing data to be sent to the hacker and further infect
others through disabling anti-virus and firewall
software.
Pharming
Pharming is an attack in which a user can be fooled into
entering sensitive data such as a password or credit
card number into a malicious web site that impersonates
a legitimate web site. The attacker does not have to rely
on having the user click on a link in an email. Even if
the user correctly enters a URL (web address) into a
browser`s address bar, the attacker can still redirect the
user to a malicious web site.
Adware
Adware stands for ‘Advertising Supported Software’. It
refers to any software that automatically plays, displays
or downloads advertisements. These adverts are seen
after software is installed on a computer or while the
application is being used.
Viruses
A virus is a malicious computer program that can copy
itself and infect a computer by corrupting or modifying
files. It does this without permission or knowledge of
the user. A virus replicates itself by attaching to another
object e.g. via e-mail attachments, internet downloads,
diskettes, CD’s, etc.
Spyware
Spyware is software that is used to gather information
about a person or organization without their knowledge.
Spyware displays advertisements related to what it finds
from spying on you. This is called ‘Targeted
advertising’.
Phishing
An e-mail that masquerades as a legitimate contact from
a business or organization in an attempt to steal
personal or financial information is called Phishing.
Phishing often states that there is a problem or threatens
to terminate an account if you do not respond.
Spam
Spam is unsolicited e-mail on the Internet. In almost all
cases, the sender’s address is ‘spoofed’ – i.e. it
pretends to be from a legitimate sender. Spam is a
common carrier of malicious code. Difficult to stop
completely without stopping a valid mail from time to
time.
Trojan Horses
These are delivery vehicles for malicious or destructive
computer programs, similar to viruses or worms.
Hackers, virus writers, and even advertisers can embed
malicious code into any program or file that appears to
be harmless or useful, such as an animation or video
game.
Worms
A malicious computer program, like a virus, but a worm
can spread itself without any user interaction Usually
more dangerous than a virus as they can cause harm to
the network. Worms are also invisible to the user.
Antivirus Software
Regardless of the type of anti virus software software
running on your PC it should have the following
characteristics.
It will have an antivirus detector, that continuously
monitors your system.
An email scanner than detects viruses in incoming
emails.
An update manager which ensures your virus database
is up to date. You can also update the database now
rather than waiting for periodic updates.
Do not permit activities which can distribute viruses
such as peer-to-peer file sharing from your computer.
Also scan all new files, such as those on CDs, DVDs,
USB drives, flash memory sticks, and diskettes.
Malware Examples
Adware / Spyware
Adware / Spyware comes in many different forms, a
common approach is to try to get you to click on a
button which will install the malware onto your
computer.
Do not install ‘Free Anti-Spyware’ software or software
claiming to speed up your PC. It is usually spyware
itself. Pop-up Windows should be closed down
immediately.
Never click on links that you receive through Instant
Messaging software either. Again this is probably a
hidden installation of Spyware or Adware.
Phishing Attacks
A classic phishing attack will often state that there is a
problem and threatens to terminate an account if you do
not respond by installing software or entering account
details on another site. Now if you look at the properties
of the sender, it appears genuine BUT if we hover over
the link you can see that it is clearly from another
domain. www.tsb.co.uk
Never install unauthorized software on your PC or reply
to an email with personal or financial information. If you
fear you may be a victim of phishing, contact the
appropriate financial institution etc.
Pharming Attacks
A pharming website is one which allows a hacker to
redirect that website’s traffic to another web site. At this
site they can steal your financial or personal details
typically on a registration form.
Pharming conscious websites typically use the HTTPS
web protocol on their login page to allow the user to
verify the web site’s identity.
If an attacker attempts to impersonate a site using
HTTPS, the user will receive a message from the browser
indicating that the web site’s “certificate” does not
match the address being visited.
Under these circumstances you should never proceed
and press “No”. You will return to the previous page.
Spam Email
Spam email is often (although NOT ALWAYS) redirected
to your “Junk” email folder or else quaranteened on the
company mail server.
Do not open unsolicited messages, just delete them.
Be very wary of emails with links on them, especially
when they link to other domains.
Do not reply to emails trying to sell you something if
the supplier is unknown to you.
Do not respond to emails from financial institutions.
Reputable organisations will never ask you for account
details etc by email.
Never open mail that has “Re:” in the subject line if
you did not originally send a message to that address.
Do not post your email on any websites and do not
use a second disposable email account from providers
such as hotmail or yahoo as this will greatly increase
the amount of junk mail you get.
Do not forward chain letters
Never open mail that has “Re:” in the subject line if
you did not originally send a message to that address.
Do not post your email on any websites and do not
use a second disposable email account from providers
such as hotmail or yahoo as this will greatly increase
the amount of junk mail you get.
Do not forward chain letters.
Email Golden Rules
Remember these golden rules surrounding email:
Never open unfamiliar “RE:” emails.
Do not put your email on the web (e.g. Facebook,
Twitter etc.)
Do not use free mailboxes for work emails such as
Hotmail or Yahoo.
Ignore chain letters.
Be wary of replying to spam messages or clicking
‘unsubscribe’.
Do not send personal or financial data via email.
Install latest patches
It is very important to keep your Operating System up to
date with the very latest updates, services packs and
patches. Ensure that updates are automatically
downloaded.

6 Forestanding Ways Your Smartphone could be hacked

Thursday, August 24, 2017 Unknown 0 Comments Category : Cyber-security

Have you ever been a victim of cyber espionage? Can you vouch for inbuilt security features or measures?

It is a fact that governments, the NSA, private organizations and individuals hack smartphones using malicious backdoors, phone apps, ATM skimming type software and wireless radio wave technology to gain illegal access to the unsuspecting smartphone user.

Through unfixed bugs in social media apps like Instagram earlier this year, or like the renown wannaCry virus

But how exactly are these backdoors opened or even created?. How did they even get into our phones. Well, you'll probably should be more conscious of these:

Text Messages

Hackers can take over your smart phone by sending a text message with a photo or video attached. In 2015, over a billion Android phones were affected by this security flaw known as “Stagefright.” According to arstechnica a disparaging Qualcomm security-bug, leaves many phones open to attack. The fix is unavailable for most users, and many will probably never get it. “The flaw, which is most severe in Android versions 4.3 and earlier, allows low-privileged apps to access sensitive data that’s supposed to be off-limits, according to a blog published by security firm, Fire Eye, but instead, the data is available by invoking permissions that are already requested by millions of apps available in Google Play.”

Inbuilt Security Flaws

Unfortunately even with Apple’s strong encryption standards, even an iPhone user’s privacy is still at serious risk and exposure. According to digitaltrends.com the illegal exposure was possible from a security flaw in Signaling System 7 (SS7), alittle-knownglobal network that connects all the phone carriers around the world. It’s known as the heart of the phone system. The bad news here is that it affects every phone on a cellular network, whether it’s running iOS, Android, or even Windows. Even if a user turns off location services on their phone, hackers would still be able to see the phone’s location via the network. “The theory is that the SS7 flaw is well known within the government, but it’s a hole that security agencies might not want plugged since it provides access to everyone’s phone.”

More Hardware Capabilities

The numerous hardware functions like the camera, accelerometer, gps, NFC in our smartphones are of great importance and even makes our phones smart, but also has its downfall.

According to cracked.com, once your phone has been hacked, your cell phone tilt sensor can “sense” what you are typing on your computer. Your phone’s accelerometer can pick up information such as messages, chats and passwords just based on the distance from the keys to the phone and deduce which letters you type.

GPS could reveal your exact location .and all this is done by a simple "SLY" request.

So beware.

Any Smartphone with near field capabilities (NFC)can steal credit card information just by being near them. According to Cracked, “the program’s creator, Eddie Lee, demonstrated the hack with his own phone at DefCon 2012, then released his simple app on the Internet as a flashing ‘Fuck you, fix this!’ sign to credit card companies.”

Unsecure Radio AirWaves

Ralf-Philipp Weinmann of the University of Luxembourg discovered that hackers infiltrate your phone through the airwaves themselves, through fake cell phone towers, completely bypassing your operating system and antivirus software to hack directly into the radio processor. This fake cell phone tower tricks your phone into thinking you are connected to a network. Much like the security flaw in SS7.

Unsecure Wifi in restaurants, hotels, and airports allows the hackers to view everything you do while connected. On iPhones, a message will warn the user by saying the server cannot be verified.

According to John Marinho, vice president of Technology & Cyber Security at CTIA, the wireless association, which represents phone carriers and manufactures. “The U.S. has one of the lowest malware infection rate in the world thanks to the entire wireless ecosystem working together and individually to vigilantly protect consumers.”

That might be true, but might also be a false security talk.

According to PCWorld, Edward Snowden has created an iPhone case meant to kill surveillance efforts by hackers who attempt to find your location. You can’t just turn off your location in settings on an iPhone, hackers have found a way around this. Snowden warned, “The GPS, for instance, will still remain active on some handsets, like the iPhone. In the worst-case scenario, malware could also infect the handset to secretly send radio transmissions, he added.”

Snowden’s iPhone case is designed to protect journalists from governments spying their locations. “Unfortunately, journalists can be betrayed by their own tools,” he added. “That may have happened in 2012, when U.S. reporter Marie Colvin was killed while covering the Syrian civil war.” A lawsuit alleges that the Syrian government assassinated her by tracking Colvin’s satellite phone communications to find her location.

Robert Nazarian, from Digitaltrends.com shared critical information in an article dated April 2016. Nazarian says, “U.S. Rep. Ted Lieu, D-Calif., a member of the House Budget Committee and the House Committee on Oversight and Government Reform, called for a full investigation into the SS7 issue and sent a Letter dated April 18, 2016, to Honorable Jason Chaffetz, Chairman, and Honorable Elijia Cummings, Ranking Member, of the House Committee on Oversight and Government Reform.

In the letter to Chaffets and Cummings, Lieu says:

“ANYONE WHO KNOWS ABOUT THIS FLAW AND DIDN’T ACTIVELY TRY TO REMEDY IT SHOULD BE FIRED. WE CAN’T HAVE 300 SOME MILLION AMERICANS, AND REALLY THE GLOBAL CITIZENRY, BE AT RISK OF HAVING THEIR PHONE CONVERSATIONS INTERCEPTED WITH A KNOWN FLAW SIMPLY BECAUSE SOME INTELLIGENCE AGENCIES MIGHT GET SOME DATA,” HE SAID. THAT IS NOT ACCEPTABLE.”

Of course, Edward Snowden outed himself as the NSA whistleblower, because he thought the current NSA surveillance techniques were a threat to democracy, and many individuals agree with him and are in his corner. It was confirmed that the NSA has DEEP HOOKS in Big Tech, including real time access to the data of American citizens.

George Orwell warned of big government overstepping their boundaries. In his book titledNineteen Eighty Four the term Big Brother is a fictional dictatorship used to refer toany ruler or government that invades the privacy of its citizens.

In 1961, Dwight D. Eisenhower warned “In the councils of government, we must guard against the acquisition of unwarranted influence, whether sought or unsought, by the military industrial complex. The potential for the disastrous rise of misplaced power exists and will persist.”

Security Tips for Smartphone Users

Thursday, February 02, 2017 Unknown 0 Comments Category : gadgets , mobile

When it comes to smart-phone security and privacy, people are usually divided into two major camps.
On one side, there are the ones who don’t even care about this issue. They aren’t aware of the potential vulnerabilities they expose themselves to. They can’t imagine why would anyone want to breach into their smart-phone or what can be done with their data. They’ve never even given a thought on how valuable is the data accessible through their phones and what would happen if it got leaked to their business competitors, sold or simply deleted.
Here are some scary statistics that might make them rethink the way they use their phones:

“67% of organisations had a data breach as a result of employees using their mobile phones to access the company’s data.”

And then there are the ones under the illusion that, in order to be protected and untraceable while using your phone, they should give up on their comfort and convenience.
They are convinced that, if you want privacy and security, you can only achieve that either by using a burner, tons of layers of firewalls and proxies, or one of those new (and expensive) phones that focus on strong encryption.

It’s true that lately there’s been a market invasion of phones and apps that promote themselves as enhancers of your protection and security.
While we applaud the initiative, we should also point out that cyber security education is also very important. If you don’t set up some essential security layers, you’ll be extremely vulnerable on any phone you use, no matter its brand or operating system.
What it’s important is that you know how to properly use that phone and create some basic security habits in order not to expose yourself.

After they purchase a new phone, most people don’t even take their time to check all the existent settings.
Yes, it’s a shame that some of them aren’t activated by default. Things like two-factor authentication and automated screen-lock should be imposed by companies, and not offered only as optional settings.
However, basic security settings for smartphones can be tweaked by anyone, without any advanced tech skills, to enforce some much needed security layers.
This is exactly what we plan to show you in this article: an essential list of things that you can do right now in order to keep your smartphone and data safe.
Let’s go!

Smartphone security guide – the easiest way to keep your phone & data safe

1. First layer of protection: activate a screen lock.

Activate a screen lock – after a short period of inactivity (30 seconds, for example), your phone should auto-lock itself. It’s a must not only for your mobile device, but also for your laptop or tablet. This is the easiest way to keep intruders away.
It’s also essential that you enforce automatic wiping of the device after 10 failed login attempts.
The reason behind this is that you can never know where you’ll accidentally forget your phone and who will end up accessing it. No matter how protective you are with it, there’s no guarantee that it won’t end up stolen one day.
You can simply leave it on your table while in a bar or at work for a quick break, and someone will peek into it. Or, even worse, install a keylogger or screen recorder on it.
Yes, you may currently vouch for your friends and work colleagues and jump into fire for them, but you can never know if that trust is mutual or how your relationship will evolve. Are you willing to take that chance?
Six years ago, I got burned because of my naivety. An employee I had just fired wanted to get revenge, so he hacked into my website and personal accounts and did as much harm as possible. While he was still employed, he managed to install a keylogger on my laptop – laptop I left unattended and without any screen lock on it, thus making all my other security layers useless. Now that I’m looking back at what happened, I feel stupid. Learn from my mistakes!

And now, moving on to the details: don’t use a PIN code for locking the screen. That’s the easiest one to breach, someone just has to be peeking while you unlock your phone.
Instead, treat your screen lock just like you treat any other password: use a unique password, that’s long enough and mixes letters with digits and symbols.
Another option to lock your screen is using a pattern. Choose a complicated one and then deactivate the option that makes it visible when you enter it.
You can also use your fingerprint to wake and unlock your phone, in addition to the pattern, if you have it as an option. Here’s how you set it up in Android (click on the screenshots to enlarge them):

Biometrics are one of the most secure ways of authenticating oneself, and not because of its secrecy, but because it’s so difficult to replicate the data. While we do leave our fingerprints everywhere, it’s much easier for someone to spy on you from behind your shoulder while you enter your PIN than try to replicate your fingerprints.
And looks like biometrics are quickly gaining ground in the mobile world. The company Mastercard is working on a system that will allow us to pay with our faces.
Literally, all we’ll need to do to confirm a payment is take a selfie through a special app and blink while we do it. The blink will be a way to prevent fraud and illegal payments done with our photos, for example. We’ll most likely hear more details about it soon – the due date for starting to implement this option is summer of 2016.

2. Second layer of protection: mind your apps.

In the past decade, there were huge innovations regarding the mobile phone market. Now basically everybody owns a smartphone and it’s also incredibly accessible to create a mobile app.
In the same time, security stagnated and just couldn’t keep up. Companies are focused more on marketing than on protecting their user’s data. They don’t care about proactive security and are willing to invest in it only when something bad happens.
Cases of smartphones that got infected with viruses and malware have been on a rise. Some of them ended up with annoying adware, while others were infected with ransomware:

“[…] in 2015 there was a 500% increase in the instances of smartphone users being targeted by so-called ransomware, with cybercriminals using exploitative apps to con money from users, in exchange for restoring full functionality to a device.”

(source)
The Apple ecosystem is extremely targeted by cyber crooks, as iPhone owners are considered to be more wealthy and likely to pay a ransom. And because of their centralized system, a security vulnerability can affect a bigger percentage of the users base.
However, devices with iOS are generally considered to be safer than Android because of two main reasons:
1. Market fragmentation: Google allowed every phone manufacturer to personalize its own Android version. While this is also a strength, it’s also harder to control the security for every device that runs on Android, exposing users more to potential bugs.
2. Google is also more permissive with the apps that they allow in their official store. Unlike Apple, Google doesn’t check as thoroughly the apps that they allow users to install.
Of course, this is just a simplified view of the two biggest operating systems existent in the mobile market at this point. They both have their advantages and disadvantages when it comes to cyber security.
What you should keep in mind is that bugs and vulnerabilities will always exist, no matter what operating system you use. What’s important is the way you use it and what privacy layers you enforce.

Here’s what you can do about apps in order to decrease your chances to be infected:
Always use official app stores to download and install an app. Disable the option to allow installation of third party apps. Third party apps usually carry malware that will harm your smartphone. Is that a risk worth taking?
Only install applications that you find in the official app store. That means no apps from third parties – no matter if those third parties are your online buddies, ads, blogs or torrents.
If you have Android, you can disable the option to allow installation of apps from sources other than the Play Store (from Settings -> Security – screenshot below, you can click on it to enlarge it).

However, this doesn’t mean that an app or game from the official store is 100% secure – sometimes, even popular apps, with more than 5 million downloads, can prove to be infected.
Also check the permissions for the installed apps (here’s how to do it). If anything looks out of order, then deny them access to what they’re requesting. A flashlight app doesn’t need permission to access your text messages or contacts, right?
If you have Android, you can go to Settings -> Apps -> App permissions and check exactly what apps required permissions:

Or you can individually check permissions granted for each app: go to Settings -> Apps and scroll through the list of apps, click on one and individually check what permissions they requested and what you gave them access to:

Or here’s a helpful tool that can ease that task for you: Clueful is a free mobile app developed by Bitdefender that takes a look over what permissions are requested by each app and warns you of the potential threats.
Do a spring cleanup of your apps. Take a look over all the installed apps and remove the ones you’re not using anymore. Those are potential security risks and it’s better to be safe than sorry.
You should also check out the apps that consume the most battery, data or memory, to see if there’s anything suspicious around there. Look for significant changes – this way, you can detect if your smartphone has been compromised.
Update your apps. With each app that remains outdated, including commonplace browsers, your phone is more vulnerable to infections. All it takes is clicking on a link that will redirect you to an infected website – it can be a link from an ad, a spam email, or your friend’s social account that got hacked. Outdated apps leave your data exposed to attacks.

This free step by step smartphone security guide covers all the basics:

3. Third layer of protection: be careful with that web browsing.

Install an ad blocker. No, not because ads are intrusive and have been failing potential customers, but because they can be exploited by cyber criminals. Malvertising can be served right on your smartphone through ad servers – and you don’t even need to click on anything in order to get infected!
A few weeks ago, a massive Angler malvertising campaign hit major websites, such as The New York Times, BBC, AOL. An ad block software will help decrease your chances of infection.
Blocking pop-ups will also help – you can easily do that from the browser settings. For Chrome, for example, you just have to go to Settings -> Site Settings -> Pop-ups -> and make sure it’s on Blocked.
It’s also recommended that you disable JavaScript for your mobile browser.
This will also help you reduce the data you consume: according to recent studies, ad content is accountable for between 18 to 79% of transferred mobile data. That’s especially true if you navigate through a lot of news websites.

“JavaScript elements – often used by publishers for ads, but also for visual elements such as animations – added an extra 6% to 68%. Enders noted that the JavaScript it came across in the study wasn’t central to the articles being loaded.”

And last but not least, watch out for where you tap over your screen, be careful not to end up clicking by mistake where you didn’t want in the first place. Ads can be placed close to legit content and you can accidentally end up clicking on them.

4. Fourth layer of protection: beware of phishing.

It’s much harder to spot a phishing page on your mobile phone than on your PC or laptop.
Keep your guard up against phishing on all your devices, no matter if it’s a desktop, laptop, tablet or smartphone. No clicking on short, suspicious links, that you didn’t request. And be careful with those attachments you download via email or instant messaging services.
Cyber attackers can use phishing techniques to withdraw money from you, steal your identity, open credit card accounts in your name and much more. Not even the strongest antivirus will protect you from phishing and malware.
A recent mobile threat is Mazar BOT – a virus that our team detected back in February. It’s spread via links sent in text messages and can give an intruder administrator rights on the victim’s phone. This allows the attackers to read, send and receive SMS, call people, and even erase the phone.
That’s why it’s important that you don’t click on links that you never requested and don’t know where they lead (especially short, hidden links). If somehow you end up clicking on them and they require you to sign-in, don’t give away your credentials.
Do you remember the Fappening, the huge scandal from the summer of 2014? Lots of pics (especially naked ones) with celebrities were stolen from their phones and leaked online. One of the attackers involved pleaded guilty for the attack. His method to access celebrities’ phones? Plain old email phishing:

“From the court documents, it became clear that the victims of Collins’ attack fell prey to a phishing scam. Collins allegedly sent e-mails to the victims that appeared to come from Google or Apple, warning the victims that their accounts might be compromised, and asking for their login details. The victims would enter their password information. Having gained access to the e-mail address, Collins was able to download e-mails, and get further access to other files, such as iCloud accounts.”

Take your time and read our anti-phishing guide – it will help you detect and prevent the techniques used by cybercriminals.

5. Fifth layer of protection: activate remote device locator.

In case your smartphone is ever lost or stolen, the easiest way to remotely locate it is by installing a dedicated app and making sure that the option to track its location is always turned on.
For iOS there’s the tracking solution called “Find my iPhone”, Microsoft has “Find my phone”, and Android has “Android Device Manager”.
Here’s how Android Device Manager looks like:

6. Sixth layer of protection: activate automatic backup.

Have automatic backups in cloud.
This option is available on all operating systems, you just have to enable it (or don’t disable it, in case it’s already set as default).
In case that your phone is lost, destroyed or stolen, you won’t have to worry about the fact that you didn’t get the chance to backup all your data on it. All apps and data will be automatically synchronized in the cloud.
Here’s how you activate backup in Android (to backup your Photos you’ll have to go in the Photos app and configure it separately – you can choose what folders to backup and at what size to upload the photos):

“According to records submitted to the National Assembly by mobile carriers, 2.35 million mobile phones were lost in 2014 and only 1.26 million returned to their owners.”

(source)
When you’ll set up a new device, you’ll just have to enter the credentials for your Apple or Google account, and all apps, settings and data will be automatically restored.
You can also set up your data to automatically backup in other accounts, such as Dropbox.
If you don’t want to quickly exhaust the internet traffic included in your data plan, set it up to backup only when it connects to wi-fi.

7. Seventh layer of protection: activate two-factor authentication.

No matter if you have an Apple, Google or Microsoft account, activating the two-factor authentication is a must.
This will act as a second layer of security. Every time you’ll want to sign in on a new device or from a new location, it will require you to verify your identity through a unique, time sensitive code, that you’ll receive via text message.
In case you travel a lot and your phone is unavailable, you’ll be able to use backup codes instead. These are codes that you can use only one time.
Yes, it’s important that you use different passwords for all your accounts. However, in case that someone manages to steal your phone, access it and find out your password, they won’t be able to get through this second step of authentication.

8. Eighth layer of protection: turn on encryption.

If your smartphone offers the option to encrypt the data on it, enable it.
Google explains how encryption works for Android:

“Full disk encryption is the process of encoding all user data on an Android device using an encrypted key. Once a device is encrypted, all user-created data is automatically encrypted before committing it to disk and all reads automatically decrypt data before returning it to the calling process.”

Once you encrypt it, the phone will ask you to set a password to unlock it and decrypt the data on it. If you forget it, only a complete factory reset will get access back into the system.
Unfortunately, the option to encrypt your data is available for a limited number of operating systems, such as the latest Android versions and iOS.
Here’s a guide for how to encrypt your Android device, one for iOS and one for Windows Phone.

9. Ninth layer of protection: install an antivirus.

Install a trustworthy antivirus. Although they aren’t as potent as their desktop versions, it’s still a better alternative than having no antivirus installed.
Hope you also have an antivirus product installed on your PC. If your PC is infected with a virus and you connect your phone to it via USB, then your phone will also be infected.
And since we brought up this subject: don’t connect your smartphone to unknown computers. They might be infected with malware and end up infecting your mobile too.

10. Tenth layer of protection: use a secure connection.

Only use secure wireless connections. That means no free or public wi-fi, especially when you’re accessing sensitive data (yes, we’re talking about that Starbucks connection. And the airport wi-fi also falls under this warning!). Information sent via public networks can be accessed by anyone who knows how to view it.
Use your mobile data instead – it will cost you more, but your data won’t be at risk anymore.
A VPN can also protect you – that’s short for Virtual Private Network, a network created to protect your activity, that will encrypt your internet traffic and data. You can easily set up a VPN on today’s smartphones.
You should also keep your Bluetooth turned off – it’s not a secure way to communicate. Enable it only when necessary.

11. Eleventh layer of protection: have a Factory Data Reset.

If you’re planning on selling your phone, make sure you don’t forget to do a Factory Data Reset before you give it away.
This way you’ll wipe all the data that was stored on it, including access to your accounts, system and app data and settings, downloaded apps, photos, music or any other data.

Conclusion

Just because you don’t have a state of the art phone or the latest operating system, it doesn’t mean that you can’t keep it safe.
What’s important is the way you put to use that technology, that smartphone, that laptop, that tablet. The everyday usage habits.
Kevin Mitnick, one of the most well known security experts of our days, said that:

“It’s much easier to hack a human than a computer because computers follow instructions, they don’t vary – humans go by emotion, by what’s happening in their day… so it’s not hard” to socially engineer someone – “especially if they haven’t been burned before.” […] Hackers will take advantage of the fact that people are lazy. […] The best defense against phishing isn’t antivirus or firewall software per se, but training, education and awareness.”

Trump blocks sale of US tech firm to Chinese Investors

Thursday, September 14, 2017 Unknown 0 Comments Category : enterprise , Government

The Trump administration has barred the sale of a US technology firm to a Chinese-backed company, citing national security risks.

Since November, Chinese-backed Canyon Bridge Capital Partners has been seeking approval for a $1.3bn (£984m) deal to buy Lattice Semiconductor.

The firms said they were "disappointed" by the decision.

The order comes as the US has been toughening its stance on business dealings with China.

The US last month launched a formal review of China's intellectual property practices, which it says may force US companies to surrender valuable information.

US politicians and military leaders have also urged the administration to take a closer look at Chinese investments in the US, particularly in the technology industry.

'Excellent deal'

In its announcement, the Trump administration said it was concerned about the "potential transfer" of intellectual property from Lattice, which makes advanced computer chips.

It also cited the use of Lattice products by the US government.

Mr Trump's decision was in line with an earlier recommendation by the US government panel that reviews foreign transactions for national security considerations.

That step typically decides such matters, but the companies made the rare move to appeal directly to the president in an effort to win approval.

Oregon-based Lattice has faced falling revenue, with losses in 2016 and 2015. The proposal from Canyon Bridge offered a premium on its share price.

In a statement, Lattice chief executive Darin Billerbeck said the failed deal "was in the best interests of our shareholders, our customers, our employees and the United States".
President Barack Obama

The chipmaker, which makes about a third of its revenue in China, has shifted its business away from the military and said it did not think the deal posed a security risk.

It had also pledged to double the number of US jobs in a bid to win approval.

Canyon Bridge did not address the security concerns raised by the US government in its response.

The company, which is backed by the China Venture Capital Fund, said it would continue to pursue other investments. The China Venture Capital Fund is owned by state-owned entities, according to the US.

"We are obviously disappointed in today's decision by the President of the United States to forgo what we believe to be an excellent deal for Lattice's shareholders and its employees by expanding the opportunity to keep jobs in America," the company said in an emailed statement.

Growing Chinese investment

Mr Trump's decision is the fourth time a president has barred a private deal on national security grounds. President Barack Obama used that authority twice, in both cases against Chinese companies.

In 1990, President George HW Bush also blocked a Chinese company from acquiring a Seattle manufacturer,

The decisions have come as Chinese investment in the US surged, exceeding $46bn in 2016, triple the amount in 2015, according to the Rhodium Group.

Chinese investors are on track to surpass that number this year.

Other deals waiting approval include Jack Ma's Ant Financial bid to buy US money transfer company MoneyGram for $1.2bn.

China Oceanwide Holdings Group is also seeking approval of its $2.7bn acquisition of US insurance company Genworth Financial.

US politicians have urged rejection of other deals as well, including a bid to buy to the Chinese stock exchange.

Making Your Internet Connection Faster

Friday, August 18, 2017 Unknown 0 Comments Category : how-tos

High speed internet is far more affordable today than it ever was, but it’s not always accessible. You could be at a bar, attempting to access the internet through a hotspot, on a flight or in a hotel, it’s during these circumstances when you may struggle to get a fast connection.

So what can you do to get the most out of a bad connection? Well, there are a number of different things, many of which I have outlined below:

Free Up Hard Drive Space

Your temporary internet folder is designed to hold the files of websites that you browse, this makes accessibility much faster, but it’s not without its issues, as it can also clog up your system. Fortunately, you can alleviate this problem by deleting the contents of this folder, along with your cookies and cache files.

You can find many different guides online that will show you how to erase this data; overall, it’s a fairly simple process which tends to vary depending on your web browser.

For Internet Explorer users you would do the following:

1. First, boot into your computer with full administrative rights.

2. Then load up Internet Explorer and click on Tools -> Internet Options.

3. Once Internet Options loads up, click on Delete under Browsing History.

4. A Delete Browsing History applet will load up, make sure the box next to Temporary Internet Files is ticked, and then click on Delete.

Remove Adware

Adware are small little programs that may be installed on your computer unbeknownst to you. These programs can be harmless, but in most cases they are just annoying. At the other end of the spectrum, you have adware programs that are dangerous as they may access and/or steal private information.

That said, no matter how harmful or harmless these programs may be the one thing that is always a constant is how much bandwidth they tend to use up. Depending on the level of security on your computer, such programs can be deleted or removed automatically. However the best solution is just to ignore downloading things that you do not need, these adware programs usually come as extensions to other programs that you download.

Check who’s on Your Network

One thing you do not want to do is have your wireless signal broadcasting without being backed up with some kind of security. There are various levels of security available on your router, so you will need to log into it to determine what kind of security is accessible to you.

Often times you will find drop down menus that will allow you to choose different levels of security; the weakest being WEP, which is not so difficult for hackers to break, WPA is definitely more secure, while WPA2 is amongst the most secure, however it’s not without its own drawbacks as some systems may not be compatible with it. All in all, you’d probably want to use WPA as it’s the most widely supported and amongst the most secure.

Check Your Internet Speed

Although most people are aware of their internet package, or at least what they are supposedly paying for, when you check your connection speed it will put you in a better position to determine whether or not the speeds you are receiving are as good as the speeds you were promised.

There are many small little LAN Speed Test programs that you can use to determine your download and upload speeds in megabits. Once you have your recorded speed, you can then check those speeds against your promised ISP speeds, which you can use to determine whether you should purchase a faster connection or not.

To get a more accurate result, you will have to run the test several times, at different times of the day, as this will give you an overall feel of how fast your internet connection is throughout the generality of the day.

Change the Channel

If you have wireless internet that is not running as fast as it should, then you may want to consider changing your broadcast channel. If your internet router is fairly new, and thus automatically chooses the appropriate channel before it broadcasts, then you will not get much out of pinning your wireless connection to a specific channel, however if you have a fairly old router, then this method may actually yield great results.

The method that you will need to follow in order to utilise this method will vary, depending on your version and brand of router, but generally you’ll want to locate the router’s wireless settings, from there you should be able to see the wireless channel options. American users can broadcast using channels 1, 6 and 11. So try switching between these three different channels and evaluate what kind of performance you’re receiving from doing it.

--AUTHOR INFO—

Uchenna Ani-Okoye is a former IT Manager who now runs his own computer support website www.compuchenna.co.uk

Nigeria Cyber-Security Association to host Cyber-Security conference in March

Wednesday, April 26, 2017 Unknown 0 Comments Category : events

First Android-Rooting Trojan With Code Injection Ability Found On Google Play Store

Tuesday, June 13, 2017 Unknown 0 Comments Category : security

Pink White Black Purple Blue Textile Web Scripts

A new Android-rooting malware with an ability to disable device’ security settings in an effort to perform malicious tasks in the background has been detected on the official Play Store.

What's interesting? The app was smart enough to fool Google security mechanism by first pretending itself to be a clean app and then temporarily replacing it with a malicious version.

Security researchers at Kaspersky Lab discovered a new piece of Android rooting malware that was being distributed as gaming apps on the Google Play Store, hiding behind puzzle game "colourblock," which was being downloaded at least 50,000 times prior to its removal.

Dubbed Dvmap, the Android rooting malware disables device's security settings to install another malicious app from a third-party source and also injects malicious code into the device system runtime libraries to gain root access and stay persistent.

"To bypass Google Play Store security checks, the malware creators used a very interesting method: they uploaded a clean app to the store at the end of March, 2017, and would then update it with a malicious version for short period of time," the researchers said.

"Usually they would upload a clean version back on Google Play the very same day. They did this at least 5 times between 18 April and 15 May."

Here's How Dvmap Malware Works

Dvmap Trojan works on both 32-bit and 64-bit versions of Android, which once installed, attempts to gain root access on the device and tries to install several modules on the system including a few written in Chinese, along with a malicious app called "com.qualcmm.timeservices."

To make sure the malicious module gets executed with system rights, the malware overwrites system's runtime libraries depending on which Android version the device is running.
To complete the installation of the above-mentioned malicious app, the Trojan with system rights turns off "Verify Apps," feature and modify system setting to allow app installation from 3rd party app stores.

"Furthermore, it can grant the "com.qualcmm.timeservices" app Device Administrator rights without any interaction with the user, just by running commands. It is a very unusual way to get Device Administrator rights," the researchers said.

This malicious 3rd party app is responsible for connecting the infected device to the attacker's command-and-control server, giving out full control of the device into the hands of attackers.

However, the researchers said, they haven't noticed any commands received by the infected Android devices so far, so it's unclear "what kind of files will be executed, but they could be malicious or advertising files."

How to Protect Yourself Against Dvmap Malware

Researchers are still testing the Dvmap malware, but meanwhile, advise users who installed the puzzle game in question to back up their device's data and perform a full factory data reset in an effort to mitigate the malware.

To prevent yourself from being targeted by such apps, always beware of fishy apps, even when downloading from Google Play Store, and try to stick to the trusted brands only. Moreover, always look at the comments left by other users.

Always verify app permissions before installing any app and grant only those permissions which have relevant context for the app's purpose.

Last but not the least, always keep a good antivirus app on your device that can detect and block such malware before it can infect your device and keep it up-to-date.

Older Posts