Malta Info Security - Articles

Security Holes

nospam@example.com (Donald Tabone) — Thu, 14 Aug 2008 21:06:34 -0700

Google goes 'Dark Knight' style

nospam@example.com (Giannella De Leonardo) — Wed, 13 Aug 2008 00:27:08 -0700

This is definately a facelift that Gmail needed. Check this one out:

Continue reading "Google goes 'Dark Knight' style"

“Is your PC virus-free? Get it infected here!”

nospam@example.com (Giannella De Leonardo) — Fri, 01 Aug 2008 09:19:25 -0700

What would you do if you saw the following Google Adword?

“Is your PC virus-free? Get it infected here!”

This Ad was displayed 259,723 times and clicked on 409 times. That’s a click-through-rate of 0.16%. Would you consider this to be bad? The campaign's costs summed up to a miserable $23 (€17).

Thankfully this ad was created for statistical purposes not with malicious intent.

Didier Stevens wanted to test how easy it is to lure users in clicking on a drive-by download. To make things easier for the average user, Didier used an evident malicious phrase and still users clicked away.

Continue reading "“Is your PC virus-free? Get it infected here!”"

Using CrypTool to learn cryptography

nospam@example.com (Giannella De Leonardo) — Thu, 31 Jul 2008 16:27:44 -0700

Sit back, relax and learn cryptography using CrypTool.

CrypTool is a windows-based e-learning software with which can be used to apply and analyze cryptographic mechanisms used in Information Security.

It contains exhaustive online help with tutorials/scenarios, visualizations (e.g. AES, number theory, Enigma) and a comprehensive script with more detailed information about primes, hash functions, digital signatures and more.

Screenshots:

Continue reading "Using CrypTool to learn cryptography"

Europe Grants First Privacy Certification

nospam@example.com (Donald Tabone) — Tue, 15 Jul 2008 12:25:17 -0700

The European Commission today granted its first privacy "seal of approval" to an online service, paving the way for e-businesses across Europe to certify their practices for protecting users' personal information.

The privacy seal, dubbed EuroPriSe (European Privacy Seal), is a detailed conformance and testing program designed to certify that an online service meets all of the European Union's laws and regulations regarding the handling of customer data.

In a nutshell, the seal assures the user that a Website or online business doesn't store personal data (including IP addresses) for long periods of time or monitor user behavior in ways that are not allowed under EU regulations. The seal also assures users that the personal information collected by the site is kept secure.

Is it a matter of time before we have to comply?

Continue reading "Europe Grants First Privacy Certification"

Dilbert on workplace surveillance

nospam@example.com (Donald Tabone) — Tue, 15 Jul 2008 11:03:26 -0700

Protecting your GMail account

nospam@example.com (Donald Tabone) — Tue, 08 Jul 2008 07:30:50 -0700

Google have added a cool feature for users of GMail - the ability to sign out from previously logged in sessions - therefore if you have the habbit of signing into GMail from multiple PC's and "forget" to logoff, scroll to the bottom of you current GMail screen and you will see the new feature titling "Last account activity: xx minutes ago on this computer. Details.."

Click the <details> link and you're presented with a list of previous sessions which allows you to quickly verify that all the GMail activity was indeed yours. To be extra cautious you can click on "Sign out all other sessions" - this way you prevent any unauthorised usage of previous sessions.

Full report can be read here

An update to the features recently released...

Continue reading "Protecting your GMail account"

The perils of popular Facebook

nospam@example.com (Donald Tabone) — Mon, 09 Jun 2008 10:16:03 -0700

An article written for the Sunday Times of Malta - IT Supplement dated 8-6-2008

Often enough, most people tend to have their own way of perceiving how secure they actual are when doing things online. Indeed a lot of people tend to be naive and prefer not to think of what can go wrong right after they post or publish something personal about themselves or even others.

The way we perceive how secure we are, largely depends on past personal experiences. If you ever suffered some sort of data loss due to a virus - you would know exactly what I mean - in that - once bitten twice shy. So worst memory tends to prevail over your decisions and even perceptions of how secure you really are. More over, misconceptions surround us such as "I have antivirus software, so I am secure" or “I have a firewall, so I am safe”. The reality is that to be secure you need to employ a suite of tools (antivirus being one of them) to help you reduce your risk exposure to an acceptable level.

These days there is a lot of talk about Facebook. First off - it is a social networking tool which anybody can freely sign up for and use. So far so good! One of reasons it is so popular with people (in particular with youngsters) is that it allows for virtual social interactivity - therefore somewhat redefining the way people meet, talk and share things with each other. In many ways I feel it has affected our social culture. If you feel shy, then you can look for your soul mate online without having to sweat it out before you pluck up enough courage to go talk to a guy/girl face to face. One facility Facebook offers is the ability to check how compatible you are with different people and linkup to different friends through existing friends to build a spider web of friends. One idea might be - the more friends you accumulate online (say on Facebook) the more popular you are perceived to be. At face value, Facebook sounds cool especially if you are a budding teen. So where's the catch?

Continue reading "The perils of popular Facebook"

Wireless modem considerations

nospam@example.com (Donald Tabone) — Wed, 30 Apr 2008 08:11:38 -0700

I am pretty sure that there are a number of you out there reading this blog over a wireless network. Given that wireless is so widely distributed these days, its not uncommon that users are unaware of how insecure their wireless setup maybe.

Unfortunately one other reality is that a number of ISP's install wireless modems without setting up any sort of security. What's worse is that if the client doesn't speak up - they don't quite advise the customer of what could be at risk. Basically as long as your laptop/device successfully connects to the wireless LAN that is setup up for you, they're out of there. SOO - this is where we come in to offer some advice.

If you connect to your wireless router without a password, its time to get hold of a technician who knows his business and set up some security on it. That's not all...

Recent developments published by Petko D. Petkov reveal some pretty nasty things an attacker can do to Thomson Speedtouch wireless modems - which is what a lot of us Maltese people have at home to connect to the internet.

Thanks to a friend of mine who first pointed out the article above, it is now possible that if an attacker sees your default network name (SSID) then it would be possible for him to crack your default password and use your internet connection. Therefore here are some healthy tips you could pass onto your technician if you're not confident to set them yourself.

Use WPA2 encryption rather than WEP/WPA.

Note that this will affect usage of early PDA's wireless and even computers with Windows XP. In fact you will need to download a patch for Windows XP to use WPA2. Also certain old wireless adapters (802.11b) might not have updated drivers, so do your homework to see if your adapter can use WPA2 before you start changing anything.

Change the default network name (SSID)

Change the default name of your router to something else. Invent an name.

Change the default password (preshared key)

If you don't have a password - PUT ONE. If the router is using a default password, its a good idea to change it unless you don't mind sharing your internet conenction with your neighbours.

Continue reading " Wireless modem considerations"

Open ID & Alternative Login Methods

nospam@example.com (Giannella De Leonardo) — Tue, 15 Apr 2008 11:04:25 -0700

Recently I created an Open ID Login in order to log-in to a website. Since this was something new for me I did some research of my own and I found this instructional video that explains this in detail:

More Info:

Continue reading "Open ID & Alternative Login Methods"

Businesses: Top 10 security threats to watch out for

nospam@example.com (Donald Tabone) — Tue, 15 Apr 2008 08:12:50 -0700

There are lots of ways business networks can be compromised, and more are developing all the time.

They range from technology exploits to social engineering attacks, and all can compromise corporate data, reputation and the ability to conduct business effectively.

Since we all like lists here are 10 such threats and some suggestions on what to do about them.

1. Virtual host security
2. Protecting the virtual machine monitor (hypervisor)
3. Botnets
4. Targeted attacks
5. Attacks via gaming and virtual reality sites
6. Browser threats
7. Mobile phone browser exploits
8. Lost mobile devices
9. Insecure Web applications
10. Rust-out

Read the full-article and grab the details here. Take a look at the NSA's published 10 best security practices.

Credit Card Data Leaks

nospam@example.com (Donald Tabone) — Wed, 09 Apr 2008 13:58:23 -0700

In view of a recent article on the Times of Malta dated 9-4-2008 titled Some Visa cards replaced due to possible fraud we would like to take the opportunity to remind our readers about exercising caution to disclosing personal card details to untrusted people or websites through email or otherwise.

VISA provides a link with Fraud Prevention TIPS some of which are listed below - so there is no excuse for being negligent. Take your time to make sure you are duly diligent with personal details. There are many physical and logical attacks that can take place such as skimming, phising and even social engineering.

When providing payment information online, look for the 'padlock' icon on your browser's status bar - this signals that your information is kept secure during transactions.

Do not reply to unsolicited e-mails or telephone calls that request your personal information such as your SIN, password or bank account number.

When possible, keep an eye on your Visa card when it is swiped at the merchant's terminal to ensure information on the magnetic stripe is not copied through a skimming device.

Precautionary measures are good - but prevention is better than cure - and preceding that being aware is the first step. The hard part is getting the message out there - and that is where strive to make a difference.

Sources/References
http://www.timesofmalta.com/articles/view/20080409/local/some-visa-cards-replaced-due-to-possible-fraud
http://www.visa.ca/en/personal/securewithvisa/fraudprevtips.cfm
http://www.visa.ca/phishing/

Blackhat Europe + Twitter

nospam@example.com (Sandro Gauci) — Thu, 27 Mar 2008 11:57:45 -0700

[Sandro]
Just a quick notice - If anyone's interested in what's going on @ Blackhat Europe, I'm posting quick notes on my twitter account. http://twitter.com/sandrogauci

[Donald]
So we're back from Black Hat and the cold Dutch weather and I must admit that overall the amount of cool stuff that goes on during the conference overwhelmed me. More than the presentations (which hook you in themselves) - it was the people that we met and socialized with in the evenings. Amsterdam city is a great city for the urban runner - a must visit if you enjoy hectic run-arounds. Fine restaurants and lots of good company. On the other hand, if you're a bit like me, I would tend to go for a more relaxed area - nevertheless (I'm not complaining) - I loved it and would definitely jump at the opportunity to go there again next year.

SMART City - Malta

nospam@example.com (Donald Tabone) — Wed, 19 Mar 2008 19:02:57 -0700

We'd like to show you some big aspirations for Malta through SMART City - Malta!
Original source

Continue reading "SMART City - Malta"

Congrats: you are a winner

nospam@example.com (Donald Tabone) — Wed, 19 Mar 2008 10:11:21 -0700

PLEASE BEWARE:

This morning I recieved an SMS with the following text:

CONGRATS: YOUR MOBILE NUMBER HAS WON FOR YOU THE SUM 192,000 POUNDS IN THIS YEARS NOKIA MTN PROMO. FOR CLAIM CALL: +2347035278214 & E-MAIL: nokia@luckymail.com

Doing a little research, first thing to notice is that the number above (+234) is Nigerian. Already smells bad...
A little more research on google and you will find other reports of this message with people asking whether it is a hoax or not.
The sum, number and email vary accordingly - and it IS a hoax.

So readers BEWARE - as much as everybody likes the sound of it, don't bother calling or emailing or disclosing any personal information.

If you know of any other reports, feel free to comment below.