Tag Archive for: concerns.

China’s technological advances raise security concerns for lawmakers, defense leaders

/in


WASHINGTON (TND) — China’s cyber capabilities are drawing more focus from Congress, U.S. defense and intelligence officials and private businesses as Washington’s relationship with Beijing becomes more adversarial amid stiff economic competition and China’s efforts to expand its influence as a world power.

While there are lingering concerns about a military conflict with China over Taiwan, many of the battles the U.S. is trying to prepare for and prevent do not involve direct altercations that lead to military warfare.

Many of the recent U.S. initiatives are related to limiting China’s access to American-made technology that can be used to advance its military objections, protecting data from falling into the Chinese government’s hands and bolstering cyber defenses amid concerns about Beijing’s advancing capabilities.

The most recent high-profile example is a Congress-led effort to ban the popular video app TikTok over its parent company’s connections to Beijing. A bill passed the House with broad bipartisan margins and President Joe Biden has pledged to sign it if it passes the Senate, which is more uncertain with questions from lawmakers about targeting a specific company and if it will address the root of the issues with TikTok.

The root of the issue with TikTok is a Chinese law that could compel ByteDance, TikTok’s parent company, to give Americans’ data to China’ intelligence agencies or coerce the app to use its algorithm to sway public discourse. In addition to using its algorithm to create a profile of a user to feed them content they are more likely to stay on the app and watch, people can also opt into sharing more data with TikTok through allowing access to contacts or by simply divulging it in posts on the platform.

TikTok is the most well-known and prominent example of the risks lawmakers and intelligence experts say presents a risk to Americans’ data security, but there are other problems lingering.

Among them is China’s heavy investments and capabilities with blockchain technology. Blockchain is known for its connection to cryptocurrencies but has seen its uses expand with time to cloud-based storage and other applications.

China has invested…

Source…

Massive ‘Apex Legends’ Hack Disrupts NA Finals, Raises Serious Security Concerns

/in


Something rather terrifying has disrupted the North American Finals of Apex Legends, and players are now starting to potentially worry about their own accounts and the overall safety of the game.

Respawn and EA have postponed the North American Finals in the wake of the “competitive integrity” of the game being compromised. This involved a wild situation where someone was giving the pros hacks like aimbots and wallhacks as they were playing in the Finals event, effectively ruining the entire thing without anyone actually attempting to cheat. Here’s what that looked like (warning: language):

This shocked players and one even got banned from the game for using an aimbot cheat before Respawn shut the entire thing down.

What’s unclear is the extent of the breach. There is some concern that it might not just be for messing with the pros at the finals, but a larger security issue with the entire game that could affect the wider playerbase. Some creators are claiming on social media that they’ve scanned their PCs and are finding viruses, though there’s so much panic going around there’s no evidence that has to do with this hack. But if the hack could breach a pro match, it would seem to be something that could breach normal players, even if it’s not actually doing so right now. Many believe this is the work of one hacker, Destroyer2009, who has previously been hacking pros, and this was an RCE remote exploit using their PCs, but none of that has been confirmed.

It’s hard to understate just how unprecedented something like this is in a major esports event. A finals event getting put on ice because someone breached the game to give players hacks is simply something that does not happen.

This has led to a mass of complaints about Apex’s anti-cheat systems, which clearly failed in a massive way for this situation. But it also speaks to just how advanced cheats have become as this is a private lobby for pros playing in an esports final.

Not that this is necessarily related, but Respawn was just hit days ago with 23 layoffs including Apex Legends developers, some of whom were longtime veterans. Though if anything, this shows that EA needs to…

Source…

The 21 apps Android users should delete immediately over malware concerns

/in


A list of more than 20 apps designed for Android users known to contain malware has been released.

The list was released by Malware Fox, an anti-malware program.

“Currently, there is no better medium with a huge user base than Android,” Malware Fox said.

Stream local 7NEWS free on 7plus 7plus

“Over the last decade, Android has become a soft target for cyberattackers to carry out illicit activities.

“It is because Android is an open-source program, making it highly customisable, unlike iOS.

“It is easy for cybercriminals to infiltrate an Android device using malicious apps.”

The compromised apps contain one of four types of malware.

Harly Trojan obtains data about the user’s device, especially data about the mobile network.

This malware is found in:

  • Fare Gamehub and Box
  • Hope Camera-Picture Record
  • Same Launcher and Live Wallpaper
  • Amazing Wallpaper
  • Cool Emoji Editor and Sticker

Joker Spyware gathers contact lists, SMS messages, and details about affected devices.

This malware also has the capacity to register the device for premium services without consent, monetising the malware infection.

It is found in:

  • Simple Note Scanner
  • Universal PDF Scanner
  • Private Messenger
  • Premium SMS
  • Blood Pressure Checker
  • Cool Keyboard
  • Paint Art
  • Color Message

Autolycos Malware is a Trojan spyware that is known for subscribing victims to paid services.

This malware is found in:

  • Vlog Star Video Editor
  • Creative 3D Launcher
  • Wow Beauty Camera
  • Gif Emoji Keyboard
  • Instant Heart Rate Anytime
  • Delicate Messenger

Fleckpe is another Trojan spyware that is known for subscribing victims to paid services.

This malware is found in:

  • Beauty Slimming Photo Editor
  • GIF Camera Editor Pro

Days after McAfee warning

The warning comes just days after computer security company McAfee warned Android users about new malware.

A new variant of Xloader malware, otherwise known as MoqHao, makes it easier for hackers to access your phone’s data.

While previous versions of Xloader required the phone user to download and open the malware, the new programming means the malware can silently run in the background straight…

Source…

The $10 billion cyber-insurance industry sees a dangerous year in cybercrime ahead. AI, ransomware, and war are its biggest concerns

/in


It’s rare to find an insurance policy against war breaking out, but there’s a $10 billion market for cyber-insurance that guards against the threat of ransomware attacks. With the world as violent and turbulent as it is right now, though, lines between the two are blurring.

The ongoing wars in Ukraine and Gaza have insurers on such high alert that many simply aren’t offering coverage any longer, on top of which AI is creating new and unpredictable cybersecurity risks. And insurers expect a “significant” increase in hacks in 2024, to boot.

Those were the three key findings of a new report on cyber-insurance trends from consultancy Woodruff Sawyer. Insuring against cybercrime has grown from a tiny niche to a $10 billion market, with firms that offer coverage ranging from small specialty carriers to household names such as Chubb and Travelers. They offer coverage for losses incurred relating to companies’ IT and computer systems—for example, if companies are hacked and lose data or have to pay ransoms to get it back.

Woodruff Sawyer surveyed over 40 of its clients and found that the industry has a gloomy outlook this year: 56% of respondents said they believed cyber risk would “increase greatly” in 2024. They pointed to ransomware and war-associated risks as two of their biggest concerns.

“If you have an attack that is part of a war campaign, it can affect private companies across the globe that have nothing to do with war,” said Woodruff Sawyer national cyber practice leader Dan Burke in an interview with Fortune. “That is the true risk that’s elevated by conflict and war and geopolitical tension. That’s really what underwriters are mostly concerned about.”

A famous example of this type of ransomware attack was a virus called NotPetya, which circulated in 2017. Originating in Ukraine, it quickly went global and compromised the computer systems of dozens of companies, including drug giant Merck and shipping company Maersk. The White House estimated it caused $10 billion in damages.

“The NotPetya attack was a Russian-based attack against an accounting software in Ukraine. And it turns out that that specific piece of software was used by multinational…

Source…