Cybersecurity for journalists and the news media

Cybercrime and other forms of “cyber-badness” affect different professions in different ways. Recently I participated in a panel about the cybersecurity concerns of journalists and the news media, hosted by the Inter America Press Association (IAPA). An account of the panel was published on WeLiveSecuritylast month but in this article I want to pass along some of the … More Cybersecurity for journalists and the news media

Multi-stage malware sneaks into Google Play

Another set of malicious apps has made it into the official Android app store. Detected by ESET security systems as Android/TrojanDropper.Agent.BKY, these apps form a new family of multi-stage Android malware, legitimate-looking and with delayed onset of malicious activity. We have discovered eight apps of this malware family on Google Play and notified Google’s security … More Multi-stage malware sneaks into Google Play

How to secure your router to prevent IoT threats?

Earlier this year I was forced to buy a new router for my home. As it is, with so many devices to connect, the old TP Link no longer provided me with what I needed. Two computers, three cell phones, video game console, TV, Chromecast, stereo, smart lights, thermostat, smartwatch… There are 13 computers permanently … More How to secure your router to prevent IoT threats?

Fake cryptocurrency trading apps on Google Play

Users of the popular cryptocurrency exchange Poloniex have been the target of two credential stealing apps, discovered on Google Play disguised as legitimate Poloniex mobile apps. Apart from harvesting Poloniex login credentials, the fake apps also try to trick victims into making their Gmail accounts accessible to the attackers. Poloniex is one of the world’s leading cryptocurrency … More Fake cryptocurrency trading apps on Google Play

DoubleLocker Android ransomware explained

Cybercriminals have developed an innovative ransomware that is based on the foundations of a particular banking Trojan to misuse Android accessibility services. Discovered by ESET malware researcher, Lukáš Štefanko, DoubleLocker, has two powerful tools for extorting money from its victims, and includes a combination that has not been seen previously in the Android ecosystem. WeLiveSecurity sat down … More DoubleLocker Android ransomware explained

DoubleLocker: Innovative Android Ransomware

ESET researchers have spotted the first-ever ransomware misusing Android accessibility services. On top of encrypting data, it also locks the device. Detected by ESET products as Android/DoubleLocker.A, the ransomware is based on the foundations of a particular banking Trojan, known for misusing accessibility services of the Android operating system. However, DoubleLocker doesn’t have the functions related … More DoubleLocker: Innovative Android Ransomware

Your Android lock screen pattern isn’t as safe as a PIN code

What’s safer? Using a numeric PIN code to unlock your Android smartphone or relying on a finger squiggle? Newly-released research suggests that, at least when someone close by could be looking over your shoulder, you might be safer with an old-fashioned PIN. The research, presented in a paper entitled “Towards Baselines for Shoulder Surfing on Mobile … More Your Android lock screen pattern isn’t as safe as a PIN code