Tag Archives: Backdoor

Backdoor in Pokemon Go – Daily Security Byte EP. 287

To keep Friday’s story fun, I covered an incident that involves both gaming and infosec. Attackers have already created a malicious version of the popular Pokemon Go app. If you’re an Android user trying to download Pokemon Go from non-official sources, this story is no joke. Watch below to learn more.

(Episode Runtime: 3:16

Direct YouTube Link: https://www.youtube.com/watch?v=Kt54wJ3gpsY

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Eleanor Mac Backdoor – Daily Security Byte EP. 284

Many Mac users think they’re immune to malware, but unfortunately that’s untrue. Though Windows malware variants still greatly outweigh Apple ones, Mac malware is starting to appear more regularly. Today’s Byte video covers a new Mac trojan discovered by Bitdefender, and what you can do to avoid it. 

(Episode Runtime: 3:04

Direct YouTube Link: https://www.youtube.com/watch?v=6K4lU6bcQ_w

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Mac Ransomware – Daily Security Byte EP. 226

Antivirus companies have found incomplete versions of Mac ransomware, researchers have created proof-of-concept (PoC) variants to demonstrate the possibility, and criminals have experimented with ineffective web-based “policeware” for Macs, but we’ve not seen Cryptolocker-level ransomware targeting Macs in the wild… that is until now. Watch today’s Security Byte video to learn more about the new KeRanger ransomware, and how to defend yourself against it.

(Episode Runtime: 4:42)

Direct YouTube Link: https://www.youtube.com/watch?v=9wPy8GaX10g

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Linux Distro Backdoored – Daily Security Byte EP. 220

It would suck to have your website hacked, and your user database stolen by malicious attackers. However, can you imagine those attackers also creating a backdoored version of your software, and distributing it among your customer from your very own site? Unfortunately, that’s exactly what happened Linux Mint, the makers of a popular Linux distribution. Watch today’s episode to learn more, including what you should do if you downloaded Linux Mint recently.

(Episode Runtime: 2:19)

Direct YouTube Link: https://www.youtube.com/watch?v=q2WpKLJVfUE

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Apple vs.The FBI – Daily Security Byte EP. 218

This week, Apple’s CEO, Tim Cook, posted a public letter to his customers explaining why Apple intends to fight a court order demanding that they help crack the security of a dead terrorist’s iPhone. Hearing this, you might think, “I don’t use Apple stuff, so I don’t care,” or “this doesn’t affect me and I want them to catch terrorists.” The problem is, this issue could set a precedent that will affect all of us. Watch today’s Byte to learn more about this issue and why it could affect you, and check out the references belowespecially Cook’s Letterfor more details.

Show Note: Unfortunately, this episode is posting a few days late, and I missed a day of the Daily Byte. Technical issues forced me to re-shoot the content. 

(Episode Runtime: 8:01)

Direct YouTube Link: https://www.youtube.com/watch?v=IIVHl-tO0BQ

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

GCHQ Encryption Backdoor? – Daily Security Byte EP. 207

First the NSA, and now GCHQ. A university researcher has claimed to find a weakness in a GCHQ-developed encryption algorithm that could allow governments to snoop on VoIP calls. Watch Friday’s video to learn more about it.

(Episode Runtime: 3:25)

Direct YouTube Link: https://www.youtube.com/watch?v=cK1vIEBVcgs

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Backdoors and Watering Holes – WSWiR Episode 162

Cyber security has become mainstream. Nowadays, there’s more information security (infosec) stories each week than the average IT professional can keep up with. If you find yourself falling behind, let our daily and weekly videos keep you informed. If you watch my Daily Security Bytes, you can probably skip this weekly summary. However, if you prefer to recap the week in one go, this video is for you.

This week’s episode includes surprising new updates to the Ashley Madison hack, a backdoor in a bunch of consumer routers, and a watering hole attack targeting the EFF. Watch the video below for the scoop, and check out the references section for more.

(Episode Runtime: 8:41)

Direct YouTube Link: https://www.youtube.com/watch?v=DkcT9sFEfWc

Show Note: A couple notes this episode. First, while I posted last week’s summary video to YouTube, I was not able to blog about it due to my early week travel. If you missed it, you can view it here, or just subscribe to my YouTube channel to see my videos right when they come out. 

Also, I will be traveling in Europe all week to attend WatchGuard partner conferences. I will try to post some videos, but I probably won’t get to one every day, and will post them at unusual times. 

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Backdoor in Multiple DSL Routers – Daily Security Byte EP.132

A few months ago, researchers found a backdoor in an LTE consumer router. Today, we learned that his hole exists in a number of DSL routers, including ones given to customers by ISPs. Watch the video to learn about this secret admin account, and what you can do to mitigate access to it.

(Episode Runtime: 2:25)

Direct YouTube Link: https://www.youtube.com/watch?v=7RCigiLt8gI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

BadUSB – WSWiR Episode 115

Android Fake ID, Backoff PoS Attack, and BadUSB

With Blackhat and DEF CON only a week away, it’s not surprising to see news of new vulnerabilities and attack vectors popping up as researchers hint at their upcoming presentations. If you are interesting in this threat news, but have no time to track it down yourself, this weekly video can fill you in.

Today’s show shares details about the Android Fake ID vulnerability, talks about a new PoS system attack campaign, and warns of an industry-wide USB problem researchers will disclose at Blackhat. Check out the video for the details and some advice, then scroll down to the Reference section if you are interested in other infosec news from the week.

As an aside, I will be attending Blackhat next week, which means I may not post the video at its regular time. However, it also means I’ll cover my favorite briefings from the show, so if you can’t attend be sure to tune in to get a taste of the popular security conference. Have a great weekend.

(Episode Runtime: 10:52)

Direct YouTube Link: https://www.youtube.com/watch?v=51VT-CJJKB4

Episode References:

Extras:

— Corey Nachreiner, CISSP (@SecAdept)

iOS Backdoor – WSWiR Episode 114

Firefox 31, Tails 0day, and iOS Backdoor

Are you curious about the latest network breaches, dangerous new zero day exploits, or breaking security research, but too busy to find all this information on your own? No worries. We summarize the most important security news for you in our weekly security video every Friday.

In this week’s episode, you’ll learn how the latest Firefox update makes it harder to download malware, why you can’t rely on some anonymizers, and whether or not you should worry about the rumored backdoor in iOS. Check out the video for the full scoop, and don’t forget to peruse the extra stories in the Reference section below.

(Episode Runtime: 7:51)

Direct YouTube Link: https://www.youtube.com/watch?v=qg1wsjzjC4Q

Episode References:

Extras:

— Corey Nachreiner, CISSP (@SecAdept)

%d bloggers like this: