ICYMI: Spyware; US data law; NSA tools hack; Games DDoS'd; Skills gap

News by SC Staff

In Case You Missed It: Spyware in 1,000 apps; US global data grab; NSA tools used to hack hotels; Warcraft DDoS'd; Students narrow skills gap

Spyware found in more than 1,000 apps in Google Play store

Android Apps on the Google Play Store have been discovered to harbour spyware originally created by an Iraqi developer. Surveillance malware records audio and steals data from users.

According to a blog post by security researchers at Lookout, more than a thousand apps on Google Play contain a new spyware family called SonicSpy. According to analysis carried out by the researchers, apps harbouring the malware can silently record audio; take photos with the camera; make outbound calls; send text messages to attacker-specified numbers; and retrieve call logs, contacts, and information about Wi-Fi access points. More...

NSA tools used to hack hotels; WikiLeaks in CIA Couch Potato dump

Travellers to Europe and the Middle East need to be aware of an on-going malware campaign that is targeting hotel and hospitality Wi-Fi networks and being used to glean guest and corporate information.

FireEye researchers have “moderate” confidence that the programme is being run by the Russian group APT28/Fancy Bears, citing the fact that it found malicious documents on these networks that had been used to install the cybergang's signature malware - Gamefish. The document is delivered through a spearphishing attack that uses a document that appears to be a basic reservation form.  FireEye also says that APT28 has incorporated several new techniques with these attacks, including using the EternalBlue SMB vulnerability leaked by ShaddowBrokers, originally from the NSA and behind the WannaCry and NotPetya ransomworm attacks launched in May and June of this year. More...

Microsoft overseas data: US judges claim extra-territorial jurisdiction

Two US judges rule against Microsoft Ireland decision in cases pitting Google against DOJ

In the US a pair of Federal judges have separately issued rulings or statements in the last two weeks that struck a blow against Google in its attempt to block the US Department of Justice from accessing customer data stored overseas.

In both instances, the judges appeared to put little stock in the 2016 "Microsoft Ireland" decision, in which the Second Circuit Court of Appeals ruled that federal subpoena served under the Stored Communications Act do not apply to searches for data stored overseas by service providers. More...

World of Warcraft, Overwatch, Hearthstone and other games hit by DDoS

Games company Blizzard has reported on Twitter that: "We are currently monitoring a DDOS attack against network providers which is affecting latency/connections to our games."  World of Warcraft, Overwatch, Hearthstone and other game servers are believed to have been hit.

At about 5pm Sunday Blizzard noticed Down Detector - which monitors online outages  -logging a huge upsurge of problems and 2800+ reports for Overwatch, World of Warcraft and several other Blizzard gaming services. More...

Students offer hope for narrowing of skills gap in cyber-security

Today's A level results report Maths as the most popular A level with maths and further maths having nearly 25 percent more entries than in 2010 - bodes well to narrow skills gap - but concerns remain and alternatives touted.

It could be a reflection of austerity and the need for financial stability trumping self-expression – or perhaps greater awareness of the opportunities resulting from STEM (science, technology, engineering and maths) as a result of government initiatives, but the end result is today's A level results report Maths as the most popular A level with maths and further maths having nearly 25 percent more entries than in 2010. More...


Find this article useful?

Get more great articles like this in your inbox every lunchtime

Video and interviews