Darren Pauli

Contact Mail Follow Twitter RSS feed

Win 95 code gaffe nearly made Stuxnet Suxnet, say infosec blokes

RSA 2015 [Please see the bootnote on this story, which we've added post-publication. The code shown at the conference does not appear to marry up with the claims made by the speakers. – ed.] Super-worm Stuxnet could have blown its cover and failed its sabotage mission due to a bug that allowed it to spread to ancient Windows boxes, …
Darren Pauli, 24 Apr 2015

Cash register maker used same password – 166816 – non-stop since 1990

RSA 2015 Fraud fighters David Byrne and Charles Henderson say one of the world's largest Point of Sale (PoS) systems vendors has been slapping the same default passwords – 166816 – on its kit since 1990. Worse still: about 90 per cent of customers are still using the password. The enraged pair badged the PoS vendor by its other acronym, …
Darren Pauli, 23 Apr 2015

Crap ad app hack hole affects '100 MEELLLION'

RSA 2015 Two security bods reckon a software library used by popular apps exposes up to 100 million people to smartphone-hijacking hackers. NowSecure's Andrew Hoog and Ryan Welton claim a library called Adlibr executes code downloaded from servers without verifying whether or not the material has been tampered with in transit – allowing …
Darren Pauli, 22 Apr 2015

Infosec bod's brag: Text editor pops Avaya phones FOREVER

RSA 2015 Dr Ang Cui says Avaya's Ethernet office phones can be permanently compromised using nothing more than a text editor (and a few lines of Python.) The Columbia University PhD and Red Ballon Security cofounder revealed to the RSA security conference in San Francisco a few more details about the vulnerabilities he found last year in …
Darren Pauli, 22 Apr 2015

Evil Wi-Fi kills iPhones, iPods in range – 'No iOS Zone' SSL bug revealed

RSA 2015 A vulnerability in iOS 8 can be exploited by malicious wireless hotspots to repeatedly crash and reboot nearby Apple iPhones, iPads and iPods, security researchers claim. Skycure bods Adi Sharabani and Yair Amit say the attack, dubbed "No iOS Zone", will render vulnerable iOS things within range unstable – or even entirely …
Darren Pauli, 22 Apr 2015

Google guru: Android doesn't have malware, it has Potentially Harmful Applications™ instead

RSA 2015 Malware doesn't exist on Android, Google says, but Potentially Harmful Applications™ do. That linguistic flip is one of many at play in the Chocolate Factory's Android security division, which has dumped various general infosec terms overboard. Lead Android engineer Adrian Ludwig told the RSA Conference in San Francisco today …
Darren Pauli, 21 Apr 2015

RSA supremo rips 'failed' security industry a new backdoor, warns of 'super-mega hack'

RSA 2015 RSA president Amit Yoran tore into the infosec industry today, telling 30,000 attendees at this year's RSA computer security conference that they have failed. “2014 was yet another reminder that we are losing this contest,” Yoran said in his keynote this morning at the annual event in San Francisco, California. “The adversaries …
Darren Pauli, 21 Apr 2015

JavaScript CPU cache snooper tells crooks EVERYTHING you do online

Four Columbia University boffins reckon they can spy on keystrokes and mouse clicks in a web browser tab by snooping on the PC's processor caches. The exploit is apparently effective against machines running a late-model Intel CPU, such as a Core i7, and a HTML5-happy browser – so perhaps about 80 percent of desktop machines. …
Darren Pauli, 21 Apr 2015
pipes

Web advertising giant (Google) to spew ads over web – using HTTPS

Google has vowed to serve ads over HTTPS from its massive advertising network. The move will make it easier for website owners to go fully SSL-protected, serving their webpages and ads over HTTPS rather than just the pages over HTTPS and mixing in ads over HTTP, which is insecure. It also means each ad and its link can't be …
Darren Pauli, 20 Apr 2015
Pinocchio CC 2.0 Flickr https://www.flickr.com/photos/jepoirrier/

Microsoft proves Pinocchio's a real boy with proofs tool

Microsoft cloud wonks have developed a tool for developers capable of practical generation of proofs that an outsourced job has been crunched securely. The team of eight including Craig Costello; Cedric Fournet; Jon Howell; Markulf Kohlweiss ; Michael Naehrig, and Bryan Parno together with University of Virginia boffins Benjamin …
Darren Pauli, 20 Apr 2015

Your city's not smart if it's vulnerable, says hacker

"Real world hacker" Cesar Cerrudo has blasted vendors, saying they're stopping security researchers from testing smart city systems, and as a result they're being sold with dangerous unchecked vulnerabilities. The warning will be detailed at RSA San Francisco this week, and comes a year after the IOActive chief technology …
Darren Pauli, 20 Apr 2015
Skull image

Watch: Nasty JPEG pops corporate locks on Windows boxes

Vid Penetration tester Marcus Murray says attackers can use malicious JPEGs to pop modern Windows servers, to gain expanded privileges over networks. In a live hack set down for RSA San Francisco this week, the TrueSec boffin shows how he used the hack to access an unnamed US Government agency that ran a buggy photo upload portal. …
Darren Pauli, 20 Apr 2015

Netflix's house of cards to be fortified with HTTPS appliance

Netflix will this year roll out HTTPS to keep customer's viewing habits secret. The streaming company's April earnings letter (PDF) says it will make the move because it "helps protect member privacy, particularly when the network is insecure, such as public wifi, and it helps protect members from eavesdropping by their ISP or …
Darren Pauli, 17 Apr 2015

Governments lodge just 10 subpoenas for GitHub user info

Law enforcement agencies find Github geeks so boring they submitted a paltry ten subpoenas last year to gain information on 40 of the site's eight million active accounts. GithHub's transparency report for requests received during 2014 reveals information was provided to legal requesters in seven of these cases and about half of …
Darren Pauli, 17 Apr 2015

Public exploit crashes Minecraft servers

A huffy hacker has published detailed steps for anyone to pull off an 'easy' Minecraft exploit capable of causing servers to crash. Developer Ammar Askar dropped the hack which allows attackers to send malformed packets that can crash Minecraft servers by exhausting its memory. The exploit publication comes two years after …
Darren Pauli, 17 Apr 2015
Poor people in India queue for a political party-sponsored medical check. Pic: Welfare Party of India

India tech firms flee from Facebook's 'freebie access' Internet.org

Indian companies have skedaddled from Facebook's Internet.org initiative to supply free internet to under-served countries on the grounds that the scheme was anti-competitive. The free content ad network's plan apparently aims to offer access for free websites and applications signed onto the scheme over participating internet …
Darren Pauli, 16 Apr 2015

D-Link router patch creates NEW SOHOpeless vuln

Hacker Craig Heffner says D-Link has not only failed in its bid to patch its DIR-890L router but has managed to introduce a new vulnerability instead. The Tactical Network Solutions router wrecker says D-Link's quadcopter-esque AC3200, reviewed elsewhere as " the most insane router in the history of mankind", is open to …
Darren Pauli, 16 Apr 2015

Borg routers open to repeat remote DoS attack

Remote attackers can send some Cisco routers into a continuous denial of service funk by rebooting network processor chips with a crafted attack. The high-severity hole (CVE-2015-0695) affects the IOS XR software in Cisco ASR 9000 Series Aggregation Services routers running Typhoon-based cards, the second-generation of line …
Darren Pauli, 16 Apr 2015

Dropbox launches 'limitless' bug bounty

Dropbox has launched a no-limit bug bounty program, back-paying US$14,875 so far for previously and newly-reported vulnerabilities. The HackerOne bounty, which supplements the company's external penetration testing efforts, is unusual in offering back payment for critical vulnerabilities that white hat hackers had already …
Darren Pauli, 16 Apr 2015

There's TOO MANY data-leaking healthcare firms, growls Symantec

Security software company Symantec is being drenched in calls from breached health organisations that have lost devices or suffered an information security snafu. Some 80 per cent of the calls its incident response team has received since December are from healthcare firms, topping the charts for the number of breach incidents …
Darren Pauli, 15 Apr 2015

Don't collect bugs, invest in fly-spray says bug bounty operator

Kate Moussouris says security defenders should spend cash to acquire and build the tools of the bug hunting trade rather than dole out cash for warm bodies or endless zero day. The chief policy officer for bug bounty outfit Hacker One and former Microsoft security boffin says in new research that defenders need to catch up to …
Darren Pauli, 15 Apr 2015
Don Draper is sad

Verizon, NetFlix, KFC ad-men pay traffic cons $500k a month

Gergő Varga reckons Verizon, Fedex, and Smirnoff are being robbed half a million dollars a month by advertising scammers. The risk boffin and founder of advertising security firm outfit Enbrite.ly says the telco, transport and tipple trio which also includes Netflix and KFC are paying for fraudulent ad clicks. "A relatively …
Darren Pauli, 15 Apr 2015

Apple splats Safari flaw affecting a BEELLION iThings

Jouko Pynnönen, a security chap with Finnish firm Klikki Oy, has found a since patched bug he says could affect a billion Apple iDevices. Pynnönensays the cross-domain vulnerability in Safari's file transfer URL schemes allows attackers to modify website HTTP cookies and have documents loaded from malicious sites. "An attacker …
Darren Pauli, 15 Apr 2015
Game of Thrones Season One Blu-ray disc set

Dev gives HBO free math tips to nail Game of Thrones pirate leakers

Developer Bruno Cauet has offered HBO a series of mathematical equations that could have tracked the Game of Thrones season five leaker, or even killed the leak completely. The massively popular series thought to be HBO's most profitable production was rocked over the weekend when a leaker, thought to be a translator with an …
Darren Pauli, 14 Apr 2015

Android gets biometric voice unlocking

Google is deploying what it calls Trusted Voice to allow Android users to unlock phones using their voice, according to reports. The feature is filed under the Choc Factory's Smart Unlock feature which sports easier unlock mechanisms like Trusted devices, places, and faces. Once activated, it would allow punters to unlock their …
Darren Pauli, 14 Apr 2015

Unpatched 18-year-old Windows man-in-the-middle diddle revived

Security boffin Brian Wallace has revived an 18-year-old Windows bug affecting at least 31 top vendors, which could allow an attacker to steal usernames and passwords from millions of Microsoft boxes. The respun vulnerability, dubbed Redirect to SMB, requires victims to visit or be pushed to a malicious server which could steal …
Darren Pauli, 14 Apr 2015

USA is home to largest number of data perves, study finds

The US is home to the largest number of data perverts, according to research. The research Where's Your Data (pdf) reveals more American Tor dark net lurkers had viewed supposedly 1568 legitimate personal details, and credit card and social security numbers in a spreadsheet than any of the other 22 countries where snoops' …
Darren Pauli, 13 Apr 2015
Lock security

Credit card factories given new secure manufacturing rules

The world's payment card producers have released the latest guidelines to help interested businesses to protect payment data. Version 1.1 of the PCI Card Production Security Requirements (pdf) modifies and introduces features for physical and logical security advising on everything from printing PINs to guarding vaults. The …
Darren Pauli, 13 Apr 2015
australian credit cards fraud contactless

Bulgarian Bill Gates blagger busted, banged up, again: report

A Bulgarian carder has been arrested withdrawing money from stolen cards four years after he was accused of plundering the bank account of Microsoft mogul Bill Gates. Bulgarian national Konstantin Simeonov Kavrakov, 31, was arrested last Thursday in the Philippines pulling cash from ATMs, local media report. Kavrakov was jailed …
Darren Pauli, 13 Apr 2015

Wi-Fi hotspots can put iPhones into ETERNAL super slow-mo

A vulnerability fixed in this week's Apple patch run can easily brick iPhones, researchers say. The flaw (CVE-2015-1118) dubbed "Phantom" allows attackers who can trick users into changing their iDevice proxy settings to tap into multiple use-after-free vulnerabilities. Doing so causes constant ubiquitous app crashing including …
Darren Pauli, 10 Apr 2015

+5 ROOTKIT OF VENGEANCE defeats forces of gaming good

Security boffins Joel St. John and Nicolas Guigo have developed a rootkit-like gaming cheat system they say bests anti-cheating mechanisms. The iSec Partners hackers say the anti-cheating platforms in use by the world's most popular games cannot stop cheating and actually increase the attack surface open to hackers. In a …
Darren Pauli, 10 Apr 2015

All Mac owners should migrate to OS X Yosemite 10.10.3 ASAP

Swedish hacker Emil Kvarnhammar has reported a since-fixed four-year-old local root 'backdoor' OS X that allows remote attackers to increase the damage of their hacks. Kvarnhammar says the unpublished API, which he dubs a backdoor, grants root access to local users on unpatched boxes. The flaw (CVE-2015-1130) is fixed in Apple's …
Darren Pauli, 10 Apr 2015

iOS, OS X apps sent into infinite dizzy DoS by this one weird kernel bug

Kenton Varda has found a 'weird' kernel bug used in Apple gear that could result in trivial denial of service by remote attackers. The hacker and LAN gamer bod says the Darwin kernel vulnerability (CVE-2015-1105) now patched by Cupertino for iOS and OS X is "no Shellshock" but could cause apps like Google Chrome to crash and …
Darren Pauli, 09 Apr 2015
pipes

Denial of service attacks pour through rift in Network Time Protocol

Red Hat security chap Miroslav Lichvar has revealed two vulnerabilities in the widely used and open-source Network Time Protocol daemon (NTPd) that allow attackers to mess up people's clocks. Lichvar reported the two since-patched holes in which packets without proper message authentication codes are accepted regardless (CVE- …
Darren Pauli, 09 Apr 2015

LG monitor software quietly kills UAC, dev says

German developer Christopher Bachner has alleged LG monitor software is quietly disabling User Account Control (UAC), putting Windows punters at risk of malware infection. Introduced with Windows Vista and available on higher Microsoft platforms, UAC boosts security by restricting applications to standard user privileges unless …
Darren Pauli, 09 Apr 2015
Cartoon of  green skeletal figure reaching out of phone

DARPA-funded team says it can SMELL Android malware

A trio of DARPA-backed Iowa State University researchers have developed a tool to help speed up android malware analysis. The Security Toolbox developed by the DARPA blue team uses features including 'smells' which sport stronger heuristics to flag possible signs of hidden malware badness. Benjamin Holland, Tom Deering, and …
Darren Pauli, 09 Apr 2015

Google Ads go NUCLEAR, foist exploit kit

Security bod Maarten van Dantzig says a large number of Google ads sold through Bulgarian reseller EngageLab have been pointing users to the dangerous Nuclear exploit kit. The Fox-IT binary basher found the campaign, which may at the time of writing have been subject to the Choc Factory's boot, could result in a "very large" …
Darren Pauli, 08 Apr 2015
WordPress

FBI to WordPress users: patch now before ISIL defaces you

The United States Federal Bureau of Investigation (FBI) has issued a warning to WordPress users: hurry up and patch your content management system before web site is defaced by ISIL sympathisers. The Bureau has issued a notice titled "ISIL defacements exploiting WordPress vulnerabilities" in which it warns that "Continuous Web …
Darren Pauli, 08 Apr 2015
heartbroken

Most top corporates still Heartbleeding over the internet

A depressing 76 percent of the top 2000 global organisations have public facing systems still exposed to Heartbleed, researchers say. The exposure means attackers could nab passwords, login cookies, private cryptographic keys and more using the vulnerability first disclosed 12 months ago. Australia is the least-repaired nation …
Darren Pauli, 08 Apr 2015
Collection of antique keys

Popular crypto app uses single-byte XOR and nowt else, hacker says

A programmer claims the makers of a popular encryption app have failed to implement its core feature: encryption. The hacker, using the alias NinjaDoge24, analyzed the NQ Vault app, which supposedly encrypts files on smartphones and other gadgets. Ninja claims the software used only XOR (exclusive or) and a single-byte key to …
Darren Pauli, 07 Apr 2015
Close-up of a YouTube logo as viewed on a computer screen in close up...

Choc Factory's king codec serves 25 BEELLION Tube hours

Users have watched 25 billion hours of YouTube videos encoded with Google's VP9 codec, which the company says brings the net closer to instant high-quality bufferless video. The Choc Factory's open source VP9 is designed as a replacement for the popular patented H.264 and HEVC codecs and is particularly valuable for mobile user …
Darren Pauli, 07 Apr 2015
Flytrap

Linux Australia hacked, warns personal details exposed

The names, phone numbers and street and email addresses of delegates for Linux Australia conferences and PyCon have been exposed in a server breach. The March attack was detected two weeks ago and is revealed in an email to Linux Australia members. Linux Australia's server held information on delegates to its popular annual …
Darren Pauli, 07 Apr 2015

This tool detects then ATTACKS evil twin access points

Mohamed Idris has created a tool to help network administrators discover and DoS rogue access points. The EvilAP Defender open source tool published to GitHub can be run by admins at intervals to determine if attackers are attempting to get their users to connect to malicious networks. Those evil twin attack networks are …
Darren Pauli, 02 Apr 2015
Solar panels

Energy utilities targeted by Office-spawned recon attack tool

Malware writers are targeting international energy utilities with a new trojan that creates beachheads to enable subsequent more advanced attacks. Symantec security boffin Christian Tripputi says the campaign, detected in the first two months of 2015, has a particular focus on creating beachheads on petroleum and gas utilities …
Darren Pauli, 02 Apr 2015

Mozilla project spits out threat modelling tool for sysadmins

A trio of university undergraduates have worked with Mozilla to create an online threat modelling tool designed to help system administrators better understand the threats they face. The open source SeaSponge tool, developed under Mozilla's Winter of Security initiative, sports a graphical flow its designers say could be a …
Darren Pauli, 01 Apr 2015

This one weird trick deletes any YouTube flick in just a few clicks

Security bod Kamil Hismatullin has disclosed a simple method to delete any video from YouTube. The Russian software developer and hacker found videos can be instantly nuked by sending the identity number of a video in a post request along with any token. Google paid the bug hunter US$5000 for the find along with $1337 under its …
Darren Pauli, 01 Apr 2015

Ebay snuffs malware upload bug

Hacker Aditya Sood has disclosed two vulnerabilities in eBay that allow hackers to upload files for drive-by-download attacks. The security bod (@AdityaKSood) told ThreatPost the flaws allow attackers to upload malicious content that appear to be benign. Once uploaded to eBay, malware can be sent to victims using direct links …
Darren Pauli, 31 Mar 2015
Rubbish bin

Pre-Snowden NSA grunts wanted to nix phone spying: report

Even before Edward Snowden spilled the beans on the National Security Agency's(NSA's) extensive surveillance programs, high-level US bureaucrats were considering spiking the program. So says The Associated Press, thanks to unnamed sources who told the wire service the mass surveillance was disappointing as a counter-terrorism …
Darren Pauli, 31 Mar 2015

Unlimited stolen Uber accounts flogged for $5

Fraudsters are flogging an 'unlimited' number of stolen Uber accounts containing personal details and limited credit card data for less than $5. The accounts are being flogged on Tor hidden service AlphaBay and have forced the taxi company to investigate a possible breach. Credit cards in the stolen accounts thankfully only show …
Darren Pauli, 30 Mar 2015
Homer Simpson confronts rigged voting machine

Starry-eyed hackers stuff Eurovision's voting app

The Eurovision Song Contest has been targeted by obsessed hackers who stuffed the voting ballots during the final qualifier song performance. Votes flooded into the Melodifestivalen app during the final performance by Jon Henrik Fjällgren, forcing the contest organisers to nix the votes. Head mananger Christel Tholse Willers …
Darren Pauli, 30 Mar 2015