Data Security News Headlines 15th November, 2016

  1. Wi-Fi signal interference can leak your passwords and keystrokes

Now hackers can steal your sensitive information, such as your Passwords, PINs and Keystrokes, from your phone by observing changes in the wireless signal as you enter them into your smartphones. A group of researchers from the Shanghai Jaio Tong University, the University of South Florida and the University of Massachusetts at Boston have demonstrated a new technique that can get your private information by analyzing the radio signal Interference, using just WiFi hotspot. The attack is called WindTalker. The attack sniffs a user’s fingers movement on the phone’s touchscreen or a computer’s keyboard by reading the radio signal patterns while you are connected to wifi.

How it works: When you enter your PIN number or password in any app or swipe your smartphone lock screen pattern, your finger movements alter the WiFi signals transmitted by a mobile phone, and the movements are imprinted into the signal. Then hackers can intercept, analyze, and reverse engineer those signals to accurately.

Cyber Security Tips:  Avoid connecting public wifi, avoid to perform sensitive transaction while you are connected to public wifi, and keep your screen password changing.

  1. Even Single computer can take down big servers using BlackNurse attack.

Researchers at TDC Security Operations Center have discovered a new attack technique BlackNurse attack. BlackNurse attack or the low-rate “Ping of Death” attack, the technique can be used to launch several low-volume DoS attacks by sending specially formed Internet Control Message Protocol (ICMP) packets, or ‘pings’ that overwhelm the processors on server protected by firewalls from Cisco, Palo Alto Networks, among others. The BlackNurse traffic volume is very small, ranging from 15 Mbps to 18 Mbps (or about 40,000 to 50,000 packets per second). Once the attack successful then it can be down server.

Cyber Security Tips: To prevent from such attack use IDS, Firewall to filter traffic, and keep monitoring of your network.

  1. Over 300 Million AdultFriendFinder accounts exposed in a massive data breach

Adult Friend Finder, a casual dating website, Over 300 Million AdultFriendFinder accounts have reportedly been exposed in a massive data breach that hit adult dating and entertainment company Friend Finder Network. This is world’s largest sex and swinger community that has a number of assets and the hack reportedly exposed the information from more than 412 Million accounts across its corporate holdings, which include AdultFriendFinder, Cams, Penthouse, and Stripshow. As per report it is found that passwords, here are some common passwords that were used by Friend Finder Network users to log in to the websites: 123456, 123456789, password, qwerty, and pussy, fuckme, fuckyou and iloveyou.

Cyber Security Tips:  Never use simple password to your account, avoid to use same password to your different accounts.

  1. Indian Embassy website in New York hacked

Indian Embassy in New York has been hacked and leaked by Kapustkiy on Pastebin.com (http://pastebin.com/Akm9x4dD) on Saturday. As per e-hacking news the hacker published the two database named   indiacg3_cginewyork and information_schema which has total 13 tables, and in newyork_registration table, there are 418 entries. However there was a table named ”Newyork_contact” which had 7000 entries, but the hacker didn’t publish it because it had a lot of private information of the victims. It is happened due to SQL vulnerability present in system.

Cyber Security Tips: To prevent from such attack you need to check for SQL vulnerabilities and input validation testing.

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Create a free website or blog at WordPress.com.

Up ↑

%d bloggers like this: