Data Security News Headlines 13th April 2017

  1. Cyber fraud: Three cheated of Rs 70,000

GURUGRAM: Online fraud is increasing in India, the latest victims are from Gurugram. Three cases of online fraud were registered at Sushant Lok police station on Tuesday wherein three people were allegedly duped of thousands of rupees. Vasundara Kaul of Faridabad filed a complaint with the police on January 4 about being duped of Rs 32,396, Deepti Tiwari of South city-II too was duped of Rs 24,000 in the same way. D. Jai Prakash was duped of Rs 15,000 on July 22 last year. According to the investigation in all cases, the unidentified fraudsters transferred money from the victims’ accounts by taking their bank and ATM card details over the phone. FIRs has been registered against the unidentified accused under sections 419 (cheating by impersonation) and 420 (cheating) of IPC and Section 66-D of the IT Act.

Cyber Security Tips: Users are strictly recommended that never share your banking details such as account number, OTP, password, ATM details with anyone.

  1. Microsoft release Patches for Actively Exploited Critical Vulnerabilities

Microsoft has released security patches for most active vulnerabilities. Before two days ago researcher found Microsoft word de-execution flaw was being exploited by hackers to spread a version of infamous Dridex banking Trojan and two more critical zero-day vulnerabilities. Microsoft has patched in total 45 unique vulnerabilities in its nine products, including three previously undisclosed vulnerabilities under active attack. Microsoft has patched another critical vulnerability (CVE-2017-0210) under active attack. Microsoft rolled out 15 security updates on Tuesday patching dozens of unique CVEs in its products, including the Windows OS, Exchange Server, Edge and Internet Explorer, Office, Office Services and Office Web Apps, Visual Studio for Mac Silverlight and Adobe Flash.

Cyber Security Tips:  Users and administrators are strongly advised to install updates as soon as possible in order to protect themselves against the active attack

  1. Hackers cloning popular android apps to infect users with malware

The IT security researchers at Palo Alto Network have discovered new samples of the Adware-family “Ewind” but this time it is more dangerous. Ewind is, at very least, an actual Trojan – subverting genuine Android apps. The actor behind this activity can easily take full control of the victim device.” During the investigating multiple samples of the Ewind, researchers found that the Adware can do a lot of damage to its victim and could perform multiple tasks. On gaining the administrative rights, attackers can send several commands to the infected device including locking the screen, displaying different ads, preventing the uninstallation of the app, steals SMS, contact, phone numbers,.

Cyber Security Tips: Users are strictly recommended that avoid to installed application from untrusted sources, check permission while installing applications and use reputed antivirus in your mobile.

  1. Thousands of Hacked Routers Used for WordPress Attacks

Last month WordPress website was targeted by hackers. According to researcher tens of thousands of vulnerable home routers have been hacked and abused to launch attacks on WordPress websites. Wordfence has determined that hackers exploited vulnerabilities in the routers provided by Telecom Algeria to customers, and then abused the hijacked devices to launch brute-force and other types of attacks on WordPress sites. The Researchers identified compromised routers from 27 other ISPs worldwide, including ones in Pakistan, India, the Philippines, Turkey, Egypt, Morocco, Malaysia, Brazil, Indonesia, Serbia, Saudi Arabia, Russia, Romania, Sri Lanka, Croatia and Italy. The Researcher said that the routers of more than a dozen of these ISPs are listening on port 7547, which is used by companies to manage their customers’ devices, and are running a vulnerable version of the AllegroSoft RomPager web server.

Cyber Security Tips: Users are recommended that always keep your router up to date.

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Create a free website or blog at WordPress.com.

Up ↑

%d bloggers like this: