Cybercrime Week in Review 31 July 2015
Stagefright vulnerability allows criminals to send malware by text (CSO)
Vulnerabilities in Android’s “Stagefright” code allows criminals to send malware via text, and infect the user even if they didn’t open the message.
Dark web drug dealer pleads guilty, gets 2 years to ponder “anonymity” (Naked Security)
A drug dealer from Wales has been sent to prison for two years. Unlike most busts, however, Cei William Owens wasn’t a street dealer trapped in an undercover deal in the pub car park, or spotted selling his wares in person.
DNS Threats, Led by Phishing, Up 58% in Q2 (Info Security)
Malicious DNS-related cyber-activity skyrocketed in the second quarter, up 58 percent year-over-year.
Critical vulnerability in Apple App Store, iTunes revealed (ZD Net)
A critical flaw has been discovered in Apple’s App Store and iTunes invoice system which could result in session hijacking and malicious invoice manipulation.
Planned Parenthood’s Web site on the defense after hacking claims (Washington Post)
Planned Parenthood has been swept up in a storm of controversy in recent weeks, after an antiabortion group started to release undercover videos of officials at the organization discussing how it provides organs from aborted fetuses for research.
Windows 10 Shares Your Wi-Fi With Contacts (Krebs on Security)
Starting today, Microsoft is offering most Windows 7 and Windows 8 users a free upgrade to the software giant’s latest operating system — Windows 10. But there’s a very important security caveat that users should know about before transitioning to the new OS.
Hackers Can Disable a Sniper Rifle—Or Change Its Target (Wired)
Put a computer on a sniper rifle, and it can turn the most amateur shooter into a world-class marksman. But add a wireless connection to that computer-aided weapon, and you may find that your smart gun suddenly seems to have a mind of its own—and a very different idea of the target.
Banks Brace for Fraud Migration (Bank Info Security)
A new report from the consulting firm Aite Group finds that most top-tier North American banking institutions expect to increase their spending on online and mobile fraud mitigation in the next two years, with about a third expecting spending to grow by at least 20 percent.
World’s worst exploit kit now targeting point-of-sale systems (The Register)
Trend Micro researcher Anthony Joe Melgarejo says the sophisticated Angler exploit kit popular in cybercrime circles is now targeting point-of-sale (PoS) systems.