Forwarded from BlackBox (Security) Archiv
How Banks Make Online Banking Insecure Through Apps
1. App obligation
Online banking on the smartphone is generally not a good idea. The reason for this is not necessarily the banking apps, but the update policy of the smartphone manufacturers, the misleading advertising of the banks and the naive behavior of the customers. However, all this does not seem to bother the banks much. True to the motto:
"Digital first - Concerns second"
banking apps are made appealing to loyal customers and any risks are simply pushed aside. The fact is: with smartphone apps, banks have moved to a platform that they cannot control. Nevertheless, banking apps are promoted and security mechanisms such as two-factor authentication (2FA) are simply undermined by ill-considered decisions. In the end, online banking via app is not more secure, but exactly the opposite.
1st problem: Android update policy
Both software and hardware have weaknesses, some of which are so serious that attackers can take complete control of a system. It is therefore essential to import available (system) updates promptly in order to keep the risk for data and the digital identity as low as possible. That's the theory. In practice, the world looks very different again - especially in the Android world.
Most Android devices are usually only neglected by many manufacturers with regard to security updates, and at some point they are even completely violated. This inevitably creates a "vacuum" in the Android world that makes many or most devices vulnerable to critical security vulnerabilities. Such vulnerabilities enable attackers to gain control over the device, spy on the user or allow data to flow off unnoticed. Discovering a critical vulnerability would be enough to make millions of devices vulnerable in one fell swoop. Such serious vulnerabilities are not rare, but occur at regular intervals. In 2018 alone, 611 vulnerabilities were identified in Android - in 2017 even 842.
Full translated article:
https://telegra.ph/How-Banks-Make-Online-Banking-Insecure-Through-Apps-07-09
Source (π©πͺ):
https://www.kuketz-blog.de/wie-banken-online-banking-durch-apps-unsicher-machen/
#Kuketz #online #banking #smartphone #apps #insecure #vulnerabilities
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
1. App obligation
Online banking on the smartphone is generally not a good idea. The reason for this is not necessarily the banking apps, but the update policy of the smartphone manufacturers, the misleading advertising of the banks and the naive behavior of the customers. However, all this does not seem to bother the banks much. True to the motto:
"Digital first - Concerns second"
banking apps are made appealing to loyal customers and any risks are simply pushed aside. The fact is: with smartphone apps, banks have moved to a platform that they cannot control. Nevertheless, banking apps are promoted and security mechanisms such as two-factor authentication (2FA) are simply undermined by ill-considered decisions. In the end, online banking via app is not more secure, but exactly the opposite.
1st problem: Android update policy
Both software and hardware have weaknesses, some of which are so serious that attackers can take complete control of a system. It is therefore essential to import available (system) updates promptly in order to keep the risk for data and the digital identity as low as possible. That's the theory. In practice, the world looks very different again - especially in the Android world.
Most Android devices are usually only neglected by many manufacturers with regard to security updates, and at some point they are even completely violated. This inevitably creates a "vacuum" in the Android world that makes many or most devices vulnerable to critical security vulnerabilities. Such vulnerabilities enable attackers to gain control over the device, spy on the user or allow data to flow off unnoticed. Discovering a critical vulnerability would be enough to make millions of devices vulnerable in one fell swoop. Such serious vulnerabilities are not rare, but occur at regular intervals. In 2018 alone, 611 vulnerabilities were identified in Android - in 2017 even 842.
Full translated article:
https://telegra.ph/How-Banks-Make-Online-Banking-Insecure-Through-Apps-07-09
Source (π©πͺ):
https://www.kuketz-blog.de/wie-banken-online-banking-durch-apps-unsicher-machen/
#Kuketz #online #banking #smartphone #apps #insecure #vulnerabilities
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
Forwarded from BlackBox (Security) Archiv
Australia wants to use face-matching to verify people downloading porn
Proving that you're old enough for online porn could get a lot more awkward.
The UK might have ditched plans for an age filter on online porn, but Australia is going all-in with a new proposal that could require internet users to verify their identity in a face-matching database before viewing pornography.
The proposal comes as Australian lawmakers consider new restrictions around age verification for online porn and gambling as part of a bipartisan parliamentary inquiry.
In a submission to the inquiry, first reported by ZDNet, Australia's Department of Home Affairs proposed using its Face Verification Service to verify internet users wanting to look at porn.
"Home Affairs is developing a Face Verification Service which matches a person's photo against images used on one of their evidence of identity documents to help verify their identity," DHA wrote in a submission to the inquiry. "This could assist in age verification, for example by preventing a minor from using their parent's driver licence to circumvent age verification controls."
The first phase of the Face Verification Service launched in 2016 with a database that included citizenship images, accessible by government agencies including the Australian Federal Police. However, the Government has proposed expanding the Service to include drivers' license photos to capture a larger part of the population.
ππΌ Read more:
https://www.cnet.com/news/australia-face-verification-service-proposed-for-online-porn-age-filter/
#Australia #facial #verification #online #age #filter #porn
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
Proving that you're old enough for online porn could get a lot more awkward.
The UK might have ditched plans for an age filter on online porn, but Australia is going all-in with a new proposal that could require internet users to verify their identity in a face-matching database before viewing pornography.
The proposal comes as Australian lawmakers consider new restrictions around age verification for online porn and gambling as part of a bipartisan parliamentary inquiry.
In a submission to the inquiry, first reported by ZDNet, Australia's Department of Home Affairs proposed using its Face Verification Service to verify internet users wanting to look at porn.
"Home Affairs is developing a Face Verification Service which matches a person's photo against images used on one of their evidence of identity documents to help verify their identity," DHA wrote in a submission to the inquiry. "This could assist in age verification, for example by preventing a minor from using their parent's driver licence to circumvent age verification controls."
The first phase of the Face Verification Service launched in 2016 with a database that included citizenship images, accessible by government agencies including the Australian Federal Police. However, the Government has proposed expanding the Service to include drivers' license photos to capture a larger part of the population.
ππΌ Read more:
https://www.cnet.com/news/australia-face-verification-service-proposed-for-online-porn-age-filter/
#Australia #facial #verification #online #age #filter #porn
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
Firefox Privacy - The Complete How-To Guide including a List of about:config customizations
via RestorePrivacy.com
For more info - click ππ» #ff #FireFox #userJS - or here: t.me/NoGoolag/99 to learn about Mozilla-based Fennec browser
#internet #browsing #surfing #privacy #security #online #browser #tutorial #howTo
via RestorePrivacy.com
For more info - click ππ» #ff #FireFox #userJS - or here: t.me/NoGoolag/99 to learn about Mozilla-based Fennec browser
#internet #browsing #surfing #privacy #security #online #browser #tutorial #howTo
Telegraph
Firefox Privacy - The Complete How-To Guide | Restore Privacy
This guide contains updated recommendations and privacy tweaks for Firefox, revised to reflect the latest version and new features (October 2019). Mozilla Firefox is arguably the best browser available that combines strong privacy protection features, goodβ¦
Forwarded from BlackBox (Security) Archiv
Multi-million dollar online fraud: Nigerian Instagram Influencer Arrested
On Instagram he posed with luxury cars and reached millions. The money, however, was probably obtained by a Nigerian who had scammed the Internet.
A Nigerian Instagram influencer and several of his accomplices have been arrested in Dubai for millions of dollars of Internet fraud. Dubai police announced on Thursday that the FBI had thanked the authorities of the United Arab Emirates for the arrest and extradition to the USA. The man, together with accomplices, is said to have defrauded nearly two million victims over the Internet.
ππΌ Source π¬π§:
https://www.facebook.com/126070364137174/posts/3126225064121674
ππΌ Read more π©πͺ:
https://www.heise.de/news/Millionenfacher-Online-Betrug-Nigerianischer-Instagram-Influencer-festgenommen-4805836.html
#nigeria #instagram #online #fraud
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@NoGoolag
π‘@BlackBox
On Instagram he posed with luxury cars and reached millions. The money, however, was probably obtained by a Nigerian who had scammed the Internet.
A Nigerian Instagram influencer and several of his accomplices have been arrested in Dubai for millions of dollars of Internet fraud. Dubai police announced on Thursday that the FBI had thanked the authorities of the United Arab Emirates for the arrest and extradition to the USA. The man, together with accomplices, is said to have defrauded nearly two million victims over the Internet.
ππΌ Source π¬π§:
https://www.facebook.com/126070364137174/posts/3126225064121674
ππΌ Read more π©πͺ:
https://www.heise.de/news/Millionenfacher-Online-Betrug-Nigerianischer-Instagram-Influencer-festgenommen-4805836.html
#nigeria #instagram #online #fraud
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@NoGoolag
π‘@BlackBox
heise online
Millionenfacher Online-Betrug: Nigerianischer Instagram-Influencer festgenommen
Auf Instagram posierte er mit Luxuskarossen und erreichte Millionen. Das Geld hatte sich ein Nigerianer aber wohl mit Internetbetrug ergaunert.
Forwarded from BlackBox (Security) Archiv
One of the biggest online piracy groups in the world taken down
On 25 August, an alleged criminal network of copyright infringing hackers, mainly responsible for pirating movies and hosting illegal digital content worldwide was dismantled in a coordinated action between US authorities and their counterparts in 18 countries around the world, with Europol and Eurojust support. Sixty servers were taken down in North America, Europe and Asia and several of the main suspects were arrested.
Streamed prior to release
The Sparks Group obtained DVDs and Blu-ray discs of unreleased content and compromised the copyright protections on the discs to reproduce and upload the content publically to online servers. It is believed that the piracy group, under investigation since September 2016, had successfully reproduced and disseminated hundreds of movies and TV programmes prior to their retail release date, including nearly every movie released by major production studios in the US. The Sparks Group has caused tens of millions of US dollars in losses to film production studios, mainly to the US movie, television, and supporting industries, from the copyright infringement.
π ππΌ https://www.europol.europa.eu/newsroom/news/one-of-biggest-online-piracy-groups-in-world-taken-down
π ππΌ https://www.justice.gov/usao-sdny/pr/acting-us-attorney-announces-federal-charges-and-international-operation-dismantle-0
π ππΌ π©πͺ https://www.golem.de/news/sparks-eine-der-wichtigsten-release-groups-zerschlagen-2008-150546.html
#sparks #online #piracy #raid #takedown #europol
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@BlackBox_Archiv
π‘@NoGoolag
On 25 August, an alleged criminal network of copyright infringing hackers, mainly responsible for pirating movies and hosting illegal digital content worldwide was dismantled in a coordinated action between US authorities and their counterparts in 18 countries around the world, with Europol and Eurojust support. Sixty servers were taken down in North America, Europe and Asia and several of the main suspects were arrested.
Streamed prior to release
The Sparks Group obtained DVDs and Blu-ray discs of unreleased content and compromised the copyright protections on the discs to reproduce and upload the content publically to online servers. It is believed that the piracy group, under investigation since September 2016, had successfully reproduced and disseminated hundreds of movies and TV programmes prior to their retail release date, including nearly every movie released by major production studios in the US. The Sparks Group has caused tens of millions of US dollars in losses to film production studios, mainly to the US movie, television, and supporting industries, from the copyright infringement.
π ππΌ https://www.europol.europa.eu/newsroom/news/one-of-biggest-online-piracy-groups-in-world-taken-down
π ππΌ https://www.justice.gov/usao-sdny/pr/acting-us-attorney-announces-federal-charges-and-international-operation-dismantle-0
π ππΌ π©πͺ https://www.golem.de/news/sparks-eine-der-wichtigsten-release-groups-zerschlagen-2008-150546.html
#sparks #online #piracy #raid #takedown #europol
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@BlackBox_Archiv
π‘@NoGoolag
Europol
One of the biggest online piracy groups in the world taken down | Europol
On 25 August, an alleged criminal network of copyright infringing hackers, mainly responsible for pirating movies and hosting illegal digital content worldwide was dismantled in a coordinated action between US authorities and their counterparts in 18 countriesβ¦
Forwarded from BlackBox (Security) Archiv
EPRS_STU(2021)656336_EN.pdf
3.6 MB
Online platforms: Economic and societal effects
Online platforms such as #Google, #Amazon, and #Facebook play an increasingly central role in the economy and society. They operate as digital intermediaries across interconnected sectors and markets subject to network effects. These firms have grown to an unprecedented scale, propelled by data-driven business models. Online platforms have a massive impact on individual users and businesses, and are recasting the relationships between customers, advertisers, workers and employers.
https://www.europarl.europa.eu/RegData/etudes/STUD/2021/656336/EPRS_STU(2021)656336_EN.pdf
#online #platforms #study #pdf
π‘@cRyPtHoN_INFOSEC_FR
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_DE
π‘@BlackBox_Archiv
π‘@NoGoolag
Online platforms such as #Google, #Amazon, and #Facebook play an increasingly central role in the economy and society. They operate as digital intermediaries across interconnected sectors and markets subject to network effects. These firms have grown to an unprecedented scale, propelled by data-driven business models. Online platforms have a massive impact on individual users and businesses, and are recasting the relationships between customers, advertisers, workers and employers.
https://www.europarl.europa.eu/RegData/etudes/STUD/2021/656336/EPRS_STU(2021)656336_EN.pdf
#online #platforms #study #pdf
π‘@cRyPtHoN_INFOSEC_FR
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_DE
π‘@BlackBox_Archiv
π‘@NoGoolag
This media is not supported in your browser
VIEW IN TELEGRAM
If You Care About Privacy, Itβs Time to Try a New Web Browser
A new crop of internet browsers from Brave, DuckDuckGo and others offer stronger privacy protections than what you might be used to.
Most of us use web browsers out of habit.
If you surf the web with Microsoft Edge, that may be because you use Windows. If you use Safari, thatβs probably because you are an Apple customer. If you are a Chrome user, that could be because you have a Google phone or laptop, or you downloaded the Google browser on your personal device after using it on computers at school or work.
https://www.nytimes.com/2021/03/31/technology/personaltech/online-privacy-private-browsers.html
#online #privacy #browsers #thinkabout
π‘ @nogoolag @blackbox_archiv
A new crop of internet browsers from Brave, DuckDuckGo and others offer stronger privacy protections than what you might be used to.
Most of us use web browsers out of habit.
If you surf the web with Microsoft Edge, that may be because you use Windows. If you use Safari, thatβs probably because you are an Apple customer. If you are a Chrome user, that could be because you have a Google phone or laptop, or you downloaded the Google browser on your personal device after using it on computers at school or work.
https://www.nytimes.com/2021/03/31/technology/personaltech/online-privacy-private-browsers.html
#online #privacy #browsers #thinkabout
π‘ @nogoolag @blackbox_archiv
Forwarded from BlackBox (Security) Archiv
Jamulus - Play music online. With friends. For free.
What is Jamulus?
Jamulus is software for playing music, rehearsing, or just jamming with anyone online with low latency. You can use your Windows, macOS or Linux machine to connect to Jamulus servers worldwide. Jamulus is free and you can just use your normal broadband connection. Simply connect to a public server or host your own private one. Jamulus has been in development since 2006 and is designed for high quality, low-latency sound, making it easy to play together remotely and in time.
https://jamulus.io/
https://github.com/jamulussoftware/jamulus
π‘ For detailed information about how Jamulus hacks the space-time continuum to produce a near-perfect 5th dimension of collaborative sound, see this paper by Volker Fischer (PDF).
#jamulus #software #music #online #jamming #opensource
π‘ @nogoolag π‘ @blackbox_archiv
What is Jamulus?
Jamulus is software for playing music, rehearsing, or just jamming with anyone online with low latency. You can use your Windows, macOS or Linux machine to connect to Jamulus servers worldwide. Jamulus is free and you can just use your normal broadband connection. Simply connect to a public server or host your own private one. Jamulus has been in development since 2006 and is designed for high quality, low-latency sound, making it easy to play together remotely and in time.
https://jamulus.io/
https://github.com/jamulussoftware/jamulus
π‘ For detailed information about how Jamulus hacks the space-time continuum to produce a near-perfect 5th dimension of collaborative sound, see this paper by Volker Fischer (PDF).
#jamulus #software #music #online #jamming #opensource
π‘ @nogoolag π‘ @blackbox_archiv
jamulus.io
Jamulus β Play music online. With friends. For free.
Jamulus is free and open source software that lets musicians perform music, rehearse or jam together, in real time over the Internet.