Google's Project Zero reveals update flaws in Malwarebytes' antivirus software

"Malwarebytes is struggling to fix flaws in its antivirus software
that were highlighted by Google’s Project Zero security research team.
Google’s bug-seeking division found that updates for Malwarebytes'
software were not signed or downloaded over a secure

Selasa, 16 Feb 2016
T9000 backdoor, a sophisticated malware that spies on Skype users

"“In addition to the basic functionality all backdoors provide, T9000
allows the attacker to capture encrypted data, take screenshots of
specific applications and specifically target Skype users. The malware
goes to great lengths to identify a total of 24 potential se

Selasa, 16 Feb 2016
Google Blocked 780 Million "Bad Ads" in 2015

"During 2015, the company blocked over 10,000 sites and 18,000
accounts that attempted to sell counterfeit goods. The company also
blocked more than 12.5 million ads that violated its healthcare and
medicines policy, including ads for pharmaceuticals that weren’t

Selasa, 16 Feb 2016
Will your Swiss email account stay private (or can the govt take a look)?

"Last week, the crew at ProtonMail mobilized their customer and fan
base and gathered more than 70,000 signatures opposing the
Nachrichtendienstgesetzt (NDG) or la Loi sur le renseignement (Lrens)
legislation. The result is that they have forced the privacy issue to

Selasa, 16 Feb 2016
Intel agencies will target newer, encryption-free tech for surveillance programs: Harvard report

"The report, “Don't Panic. Making Progress on the Going Dark Debate,”
predicted that in lieu of backdoors to encrypted messaging apps, law
enforcement will increasingly turn to less fortified vectors to
conduct offensive online investigations, including Inte

Selasa, 16 Feb 2016
Metel Infiltrates Banks with Malware and Robs ATMs via Transaction Rollbacks

"At the Security Analyst Summit (SAS 2016) held in Tenerife, Spain,
security researchers from Kaspersky have uncloaked a new cyber-crime
ring that's using a pretty clever and never seen before tactic to rob

The group, nicknamed Metel based on the malware

Selasa, 16 Feb 2016
UmbreCrypt Ransomware manually installed via Terminal Services

"A new CrypBoss ransomware variant has been released called
UmbreCrypt.  This ransomware family encrypts a victim's data with AES
encryption and then requires them to email the developers for payment
instructions. At this time there is no way to decrypt these files

Selasa, 16 Feb 2016
Password Security Is So Bad, President Obama Weighs In

"In a Wall Street Journal op-ed, Obama says he wants to "encourage
more Americans to move beyond passwords — adding an extra layer of
security like a fingerprint or codes sent to your cellphone." It's a
message you'd expect from IT support, not from

Selasa, 16 Feb 2016
Fisher-Price smart bear allowed hacking of children's biographical data

"Researchers at Rapid7, a Boston-based security company, found that
the app connected to the Fisher-Price toy had several security flaws
that would allow a hacker to steal a child’s name, birthdate and
gender, along with other data. The toymaker encourages parents to

Selasa, 16 Feb 2016
3 Fundamental Traits of an Infosec Aficionado

"The first thing is a passion for tinkering
The second fundamental characteristic that is required is the ability
to effectively communicate.
The third one is a little tricky… this one is more of a balancing act"

Selasa, 16 Feb 2016
Disclaimer | Copyright © 2013 - Id-SIRTII/CC
Id-SIRTII/CC - Indonesia Security Incident Response Team on Internet Infrastructure/Coordination Center
Menara Ravindo Lt. 17, Jl. Kebon Sirih No. 75 Jakarta Pusat, 10340, Indonesia
Member of: