Schneier on Security

OCTOBER 18, 2022

Everyone travelling to Qatar during the football World Cup will be asked to download two apps called Ehteraz and Hayya. Some of them just didn’t bother downloading the apps, and were never asked about it at the border. Everyone visiting Qatar for the World Cup needs to install spyware on their phone.

Spyware 354

Spyware Mobile 354

SecureList

DECEMBER 17, 2024

The link directed users to a phishing site offering to download Mamont for Android ( 12936056e8895e6a662731c798b27333 ). If the POST request returns a 200 code, the Trojan opens a window that supposedly downloads order details. Avoid downloading apps from anywhere but official sources.

Scams 72

Scams Malware Social Engineering Banking 72

Schneier on Security

DECEMBER 6, 2024

But the company also offers a free version of the feature for anyone who downloads the iVerify Basics app for $1. For paying iVerify customers, the tool regularly checks devices for potential compromise. These users can walk through steps to generate and send a special diagnostic utility file to iVerify and receive analysis within hours.

Spyware 335

Spyware Mobile Malware 335

Schneier on Security

MAY 9, 2022

Apple Mail downloads all images for all emails before you open them. Practically speaking, that means every message downloaded to Apple Mail is marked “read,” regardless of whether you open it. Apples also routes the download through two different proxies, meaning your precise location also can’t be tracked.

Marketing 304

Marketing Internet Internet 304

Troy Hunt

FEBRUARY 9, 2023

We always had both as a downloadable corpus but as of just over a year ago with the introduction of the FBI data feed , we stopped maintaining downloadable behemoths of data. But because we only had an API for SHA-1 hashes, the downloader couldn't grab the NTLM versions and increasingly, we had 2 corpuses well out of parity.

Passwords 308

Passwords 308

Troy Hunt

MAY 20, 2022

More specifically, that really cool Pwned Passwords downloader that I know a bunch of people have been waiting on, and now we've finally released. this is a great little tool put together by Stefán) Sponsored by: Kolide provides endpoint security for teams that value privacy, transparency, and employee productivity.

Passwords 59

Passwords Data breaches 59

Krebs on Security

JANUARY 25, 2024

Google continues to struggle with cybercriminals running malicious ads on its search platform to trick people into downloading booby-trapped copies of popular free software applications. 252 do serve actual software downloads, but none of them are likely to be malicious if one visits the sites through direct navigation.

Software 301

Software Advertising Malware Accountability 301

Schneier on Security

AUGUST 26, 2021

If you plug a Razer peripheral (mouse or keyboard, I think) into a Windows 10 or 11 machine, you can use a vulnerability in the Razer Synapse software — which automatically downloads — to gain SYSTEM privileges.

Software 349

Software 349

Schneier on Security

NOVEMBER 10, 2022

They estimated that those apps were downloaded more than 60 million times, including 10 million downloads of Muslim prayer apps. Measurement Systems’ website was registered by Vostrom Holdings, according to historic domain name records.

Spyware 327

Spyware Internet Internet Government 327

Krebs on Security

SEPTEMBER 19, 2024

Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. Executing this series of keypresses prompts the built-in Windows Powershell to download password-stealing malware.

Phishing 320

Phishing Scams Malware Passwords 320

Krebs on Security

MAY 29, 2021

45 malicious extensions that collectively had close to 100,000 downloads. -25 Some of the fake extensions have only a handful of downloads, but most have hundreds or thousands. A fake Microsoft Teams extension attracted 16,200 downloads in the roughly two months it was available from the Google store.

Accountability 335

Accountability Authentication Scams Software 335

Schneier on Security

JULY 22, 2021

Look for your printer here , and download the patch if there is one. The bug (CVE-2021-3438) has lurked in systems for 16 years, researchers at SentinelOne said, but was only uncovered this year. It carries an 8.8 out of 10 rating on the CVSS scale, making it high-severity.

Encryption 334

Encryption Accountability 334

Schneier on Security

FEBRUARY 23, 2022

Apple wrote an Android app that can detect AirTags, but how many people are going to download it?) So now we have several problems with the system. Apple’s anti-stalker security only works with iPhones. And now non-AirTags can piggyback on Apple’s system without triggering the alarms.

Surveillance 338

Surveillance 338

Schneier on Security

SEPTEMBER 12, 2022

Shikitega also downloads Mettle, a Metasploit interpreter that gives the attacker the ability to control attached webcams and includes a sniffer, multiple reverse shells, process control, shell command execution and additional abilities to control the affected system. […].

Malware 301

Malware Backups IoT Software 301

Krebs on Security

FEBRUARY 28, 2024

The file that Doug ran is a simple Apple Script (file extension “ scpt”) that downloads and executes a malicious trojan made to run on macOS systems. But Doug does still have a copy of the malicious script that was downloaded from clicking the meeting link (the online host serving that link is now offline).

Malware 309

Malware Cryptocurrency Software Phishing 309

Schneier on Security

SEPTEMBER 1, 2022

The email lists a phone number to dispute the charge, which is not PayPal and quickly turns into a request to download and install a remote-access tool. Basically, the scammers use the PayPal invoicing system to send the email.

Scams 269

Scams Phishing 269

Schneier on Security

FEBRUARY 1, 2024

Participants downloaded an archive of the previous three years of their data from their Facebook settings, then provided it to Consumer Reports. That number varied significantly, with some panelists’ data listing over 7,000 companies providing their data. The Markup helped Consumer Reports recruit participants for the study.

Surveillance 352

Surveillance Advertising Media Data privacy 352

Schneier on Security

SEPTEMBER 17, 2024

Interesting social engineering attack: luring potential job applicants with fake recruiting pitches, trying to convince them to download malware.

Malware 275

Malware Social Engineering Engineering Hacking 275

Troy Hunt

DECEMBER 19, 2021

K-anonymity API vs. Downloadable Corpus The k-anonymity API is the fastest possible way of getting up and running with Pwned Passwords. The downloadable corpus, on the other hand, is. Lastly, as of right now, the code to take the ingestion pipeline and dump all passwords into a downloadable corpus is yet to be written.

Passwords 362

Passwords Cybercrime Accountability Risk 362

Schneier on Security

JUNE 9, 2023

The code within the exploit downloads several subsequent stages from the C&C server, that include additional exploits for privilege escalation. After successful exploitation, a final payload is downloaded from the C&C server, that is a fully-featured APT platform.

Malware 249

Malware Backups Mobile 249

Schneier on Security

SEPTEMBER 1, 2023

By exploiting other flaws in the spyware maker’s web dashboard—used by abusers to access the stolen phone data of their victims—the hackers said they enumerated and downloaded every dashboard record, including every customer’s email address. “Which we definitely did.

Spyware 316

Spyware Hacking 316

Krebs on Security

SEPTEMBER 13, 2023

Hudson Rock said it recovered the log files created by a RedLine infection on the Turkish airline employee’s system, and found the employee likely infected their machine after downloading pirated and secretly backdoored software for Microsoft Windows.

Cybercrime 323

Cybercrime Passwords Authentication Malware 323

Schneier on Security

SEPTEMBER 8, 2022

At one point, the court-appointed special master noted that the “Download Your Information” file provided to the suit’s plaintiffs must not have included everything the company had stored on those individuals because it appears to have no idea what it truly stores on anyone.

Engineering 256

Engineering Software Data collection 256

Krebs on Security

APRIL 20, 2023

In late March 2023, 3CX disclosed that its desktop applications for both Windows and macOS were compromised with malicious code that gave attackers the ability to download and run code on all machines where the app was installed. “This could cause the file to run when double-clicked instead of opening it with a PDF viewer.”

Malware 322

Malware Software Technology Accountability 322

Schneier on Security

SEPTEMBER 14, 2023

An app with the name Signal Plus Messenger was available on Play for nine months and had been downloaded from Play roughly 100 times before Google took it down last April after being tipped off by security firm ESET. Google removed fake Signal and Telegram apps from its Play store.

Malware 335

Malware Accountability Hacking Spyware 335

Krebs on Security

AUGUST 18, 2022

Recipients who call the supplied toll-free number to contest the transaction are soon asked to download software that lets the scammers assume remote control over their computer. com to download a remote administration tool. Very quickly into the conversation he suggested visiting a site called globalquicksupport[.]com

Scams 351

Scams Phishing Accountability Software 351

Schneier on Security

AUGUST 1, 2022

In each case, Ring handed over private recordings, including video and audio, without letting users know that police had access to—and potentially downloaded—their data. The Amazon company responded to an inquiry from US Senator Ed Markey (D-Mass.),

Surveillance 333

Surveillance 333

Schneier on Security

DECEMBER 31, 2021

Earlier this month, Apple released an Android app that can scan for AirTags — but you have to be vigilant enough to download it and proactively use it. AirTags aren’t compatible with Android smartphones. People who said they have been tracked have called Apple’s safeguards insufficient.

Mobile 324

Mobile Technology Surveillance 324

Schneier on Security

DECEMBER 13, 2024

of the popular AI library ultralytics —which has almost 60 million downloads—was published to the Python Package Index (PyPI) package repository. The package contained downloader code that was downloading the XMRig coinminer. A quick summary : On December 4, a malicious version 8.3.41

158

158

Krebs on Security

APRIL 15, 2024

“I use Android, which has a pretty simple workflow for downloading and decompiling the APK apps,” Brown told KrebsOnSecurity. “Given that I am pretty picky about what I trust on my devices, I downloaded Chirp and after decompiling, found that they were storing passwords and private key strings in a file.”

Software 325

Software Mobile Marketing Engineering 325

Troy Hunt

MARCH 19, 2022

Download it for free. (that's a link through to 1Password's Masked Email feature that leverages Fastmail, the video is a good primer) Sponsored by: CrowdSec - The open-source & collaborative IPS: respond to attacks & share signals across the community.

IoT 289

IoT 289