Security Archives

Elcomsoft Can Now Download iCloud Data With Trusted Device Authentication

Andrew Orr · October 26, 2021

Elcomsoft has announced an update to its Phone Breaker, a forensic tool used to extract data from iPhones. A trusted iOS device can now be used to authenticate into iCloud. This will let the tool decrypt data protected by end-to-end encryption.

By using a trusted device, experts benefit from unrestricted access to all kinds of information stored in the user’s iCloud account including cloud backups produced by all Apple devices sharing the same Apple ID, photos, synchronized data, as well as end-to-end encrypted data such as the user’s passwords, browsing history, and health information.

News

FBI Document Reveals Guide to Get Location Data From Carriers

Andrew Orr · October 25, 2021

An internal document for the FBI reveals how the agency obtains phone location data from carriers like AT&T, Verizon, and others.

Podcast

Security Friday: News and Apple Watch Tips – TMO Daily Observations 2021-10-22

Kelly Guimont · October 22, 2021 · Add Comment

Andrew Orr joins host Kelly Guimont to discuss Security Friday news and updates on ransomware and hacking, and share how your Watch can make you safer.

VIew all episodes

Link

'REvil' Ransomware Group Taken Down Through Multi-Country Effort

Andrew Orr · October 22, 2021

The FBI, working with Cyber Command, the Secret Service, and other countries, took down REvil.

According to three people familiar with the matter, law enforcement and intelligence cyber specialists were able to hack REvil’s computer network infrastructure, obtaining control of at least some of their servers. After websites that the hacker group used to conduct business went offline in July, the main spokesman for the group, who calls himself “Unknown,” vanished from the internet.

News

US Bans Export of Hacking Tools to Authoritarian Regimes

Andrew Orr · October 21, 2021

The Commerce Department’s Bureau of Industry and Security (BIS) announced new rules for hacking tools and their export to other countries.

News

Ransomware Attack on Sinclair Broadcasting Linked to Russian Group 'Evil Corp'

Andrew Orr · October 20, 2021

Last weekend, Sinclair Broadcast Group found itself the victim of a ransomware attack, and sources claim Russian group Evil Corp. was behind it.

Podcast

Security Friday: News, Shenanigans, and Encrypted Backups – TMO Daily Observations 2021-10-15

Kelly Guimont · October 15, 2021 · Add Comment

Andrew Orr joins host Kelly Guimont to discuss Security Friday news, including This Week In Data Breaches and willful misunderstanding of “hacking.”

VIew all episodes

News

Missouri Governor Pursues Journalist Who Read Website Code

Andrew Orr · October 15, 2021

Missouri Governor Mike Parson wants to prosecute a journalist who discovered the government’s website was leaking Social Security Numbers.

Link

WhatsApp Rolls Out Support for End-To-End Encrypted Backups

Andrew Orr · October 14, 2021

WhatsApp is rolling out support for end-to-end encrypted backups for Google Drive and iCloud. Here’s how to enable the feature.

Make sure you’ve got the latest version of WhatsApp.
Open Settings.
Tap Chats > Chat Backup > End-to-end Encrypted Backup.
Click Continue, then follow the prompts to create your password or 64-digit encryption key.
Hit Done, and wait for your end-to-end encrypted backup to be prepared. You may need to connect to a power source.

Link

NFT Marketplace 'OpenSea' Has Serious Security Flaws

Andrew Orr · October 14, 2021

OpenSea, one of the biggest marketplaces for NFTs, has security flaws that leave user wallets open to attack.

The researchers stated that the vulnerability allowed hackers to steal users’ entire crypto wallets. As said, OpenSea has been the biggest marketplace for buying, selling, and trading NFTs and other digital collectibles.

CheckPoint came across the vulnerability for the first time following reports of stolen crypto wallets triggered by airdropped NFTs. The Check Point researchers later discovered critical security issues “that, if exploited, could have led hackers to hijack user accounts and steal entire crypto wallets of users, by sending malicious NFTs”.

News

W3C, Yubico Offer Web Authentication Course for Developers

Andrew Orr · October 14, 2021

Yubico, along with the World Wide Web Consortium (W3C) are partnering to create an Introduction to Web Authentication course for developers.

News

Customer Accounts of 'Visible' Phone Carrier Hacked, Unauthorized Purchases Made

Andrew Orr · October 14, 2021

Visible, a carrier owned by Verizon, suffered what some believed was a data breach on Wednesday, with some customer accounts hacked.

News

1Password Users Can Now Share Passwords and Other Data

Andrew Orr · October 12, 2021

1Password announced on Tuesday that its users can now share virtually anything inside their vault, even if the recipient doesn’t use 1Password.

News

iOS 15.0.2 Fixes a Zero-Day Bug That May Have Been Exploited

Andrew Orr · October 11, 2021

Along with bug fixes, iOS 15.0.2 released on Monday patches a zero-day exploit that Apple believes may have been actively used.

Podcast

Secure Your Stuff Friday: Twitch and Licenses – TMO Daily Observations 2021-10-08

Kelly Guimont · October 8, 2021 · Add Comment

Andrew Orr and Kelly Guimont talk about the latest Security Friday headlines including Twitch and a new standard for ID on phones.

VIew all episodes

News

ISO Approves and Publishes Standard for Mobile Driver's License

Andrew Orr · October 7, 2021

The International Organization for Standardization has approved and published ISO/IEC 18013-5 for mobile driver’s licenses and mobile IDs.

Link

Anonymous Hacker Shares Twitch Source Code and Payout Data

Andrew Orr · October 6, 2021

An anonymous hacker shares data claimed to be Twitch source code. That’s right, not just Twitch data but Twitch itself, its source code and user payout data.

The user posted a 125GB torrent link to 4chan on Wednesday, stating that the leak was intended to “foster more disruption and competition in the online video streaming space” because “their community is a disgusting toxic cesspool”.

VGC can verify that the files mentioned on 4chan are publicly available to download as described by the anonymous hacker.

I have to chuckle about the part where they go on 4chan to complain about toxic websites. Update: Twitch has confirmed the incident.

News

Proposed Bill Would Require Disclosures of Ransomware Payments

Andrew Orr · October 5, 2021

Under the Ransom Disclosure Act, victims of ransomware who pay their attackers would have to report the payment within 48 hours.

Link

Researcher Discloses Telegram Bug After Disappointing Response From Company

Andrew Orr · October 4, 2021

A security researcher has shared a bug with Telegram’s auto-delete feature. But the company has seemingly ignored him.

The researcher contacted Telegram in early March. And after a series of emails and text correspondence between the researcher and Telegram spanning months, the company reached out to Dmitrii in September, finally confirming the existence of the bug and collaborating with the researcher during beta testing.

Since then, the researcher claims he has been ghosted by Telegram, which has given no response and no reward.

Link

SMS Routing Company 'Syniverse' Admits it was Hacked in 2016

Andrew Orr · October 4, 2021

Syniverse provides backbone services to wireless carriers like AT&T, Verizon, T-Mobile, and several other carriers. It discovered the breach in May 2021 but it began in May of 2016.

Syniverse repeatedly declined to answer specific questions from Motherboard about the scale of the breach and what specific data was affected, but according to a person who works at a telephone carrier, whoever hacked Syniverse could have had access to metadata such as length and cost, caller and receiver’s numbers, the location of the parties in the call, as well as the content of SMS text messages.

Podcast

Security Friday: Privacy Not Included – TMO Daily Observations 2021-10-01

Kelly Guimont · October 1, 2021 · Add Comment

Andrew Orr joins host Kelly Guimont to discuss Security Friday news including Mozilla’s product guide and an AirTag attack.

VIew all episodes

News

Researchers Hack Apple Pay to Steal Money With Visa

Andrew Orr · September 30, 2021

Apple claims that the problem lies with Visa’s network, while Visa says the payments are secure and “attacks of this type were impractical outside of a lab.”

How-To

iOS 15: Here's How to Set Up an iCloud Data Recovery Contact

Andrew Orr · September 30, 2021

In recent versions of its operating systems, Apple has added a way to set up an iCloud Data Recovery contact.