[OPLIN 4cast] OPLIN 4Cast #265: Innovations in cyber crime

Editor editor at oplin.org
Wed Jan 18 10:35:28 EST 2012 

Email not displaying correctly? View it in your browser. 
<http://www.oplin.org/4cast/>
OPLIN 4Cast

OPLIN 4Cast #265: Innovations in cyber crime
January 18th, 2012

<http://www.oplin.org/4cast/wp-content/uploads/2012/01/spyware.jpg>Malicious 
attacks on websites continue to make the news. Whether it's Anonymous 
exposing a whole country's 
<http://www.infoworld.com/d/security/anonymous-publishes-israeli-scada-log-in-details-183975> 
control and data systems or hackers stealing huge amounts of data last 
weekend from Zappos 
<http://www.pcworld.com/businesscenter/article/248244/zappos_hacked_what_you_need_to_know.html>, 
the pace of malicious activity on the web has certainly not slowed down. 
While these big-news attacks generally use rather traditional hacking 
methods, the nasty people on the web have also been busy developing new 
attack vectors, and you might want to be aware of them.

    * Developer sneaks fake apps into Android market
      <http://www.securitynewsdaily.com/fake-apps-android-market-1407/>
      (SecurityNewsDaily/Matt Liebowitz) "Behind their innocent facade,
      the cloned apps hid a secret weapon - they compromised customers'
      smartphones by using them to send premium-rate text messages to
      the tune of about $20. 'The texts are notifications that the user
      has been charged around $5, but you end up getting 3-4 of them in
      one shot,' DroidGamers wrote. 'A free download just became a $20
      purchase.'"
    * Hackers spread malware via children's gaming websites
      <http://www.bbc.co.uk/news/technology-16576542> (BBC News) "'I
      believe that children's computers are more vulnerable to attacks
      because they are usually in worse shape - in other words the
      owners are less likely to have the latest security updates
      installed,' said Mr Vlcek [AVAST Software chief technical
      officer]. 'The child may also be less suspicious that something
      wrong is happening than an adult would be.'"
    * Cyber-criminals target mobile devices with QR codes
      <http://www.securityweek.com/cyber-criminals-target-mobile-devices-qr-codes>
      (SecurityWeek/Brian Prince) "'This is the first time we have seen
      a QR code used in an active spam campaign,' Patrik Runald, senior
      manager of security research at Websense, told /SecurityWeek/.
      'Because QR codes are the ultimate URL obfuscator, with the right
      social lure, QR codes can become increasingly more successful in
      driving users to websites hosting malware targeting the mobile
      device.'"
    * Security flaw in printers could expose businesses to hackers
      <http://www.huffingtonpost.com/2011/11/29/security-flaw-in-printers_n_1119558.html>
      (Huffington Post/Janean Chun) "Keith Moore, HP's chief
      technologist, also disagrees that the threat of security breaches
      through printer hacking could already be widespread. Moore points
      out that the researchers didn't use passwords on the printers they
      tested and adds that no consumers have reported similar incidents.
      'There has been no data at all that any of this has been
      exploited. So we're looking at the theoretic possibility, in a
      lab, to see if that can ever occur in a real world situation.'"

*/Cyber attack fact:/*

This sobering 11-minute video 
<http://www.youtube.com/watch?feature=player_embedded&v=CS01Hmjv1pQ> of 
a TED talk by Ralph Langner reminds us that cyber attacks may not always 
come from criminals.
------------------------------------------------------------------------
The */OPLIN 4cast/* is a weekly compilation of recent headlines, topics, 
and trends that could impact public libraries. You can subscribe to it 
in a variety of ways, such as:

    * *RSS feed.* You can receive the OPLIN 4cast via RSS feed by
      subscribing to the following URL:
      http://www.oplin.org/4cast/index.php/?feed=rss2.
    * *Live Bookmark.* If you're using the Firefox web browser, you can
      go to the 4cast website (http://www.oplin.org/4cast/) and click on
      the orange "radio wave" icon on the right side of the address bar.
      In Internet Explorer 7, click on the same icon to view or
      subscribe to the 4cast RSS feed.
    * *E-mail.* You can have the OPLIN 4cast delivered via e-mail (a'la
      OPLINlist and OPLINtech) by subscribing to the 4cast mailing list
      at http://mail.oplin.org/mailman/listinfo/OPLIN4cast.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.oplin.org/pipermail/oplin4cast/attachments/20120118/65606bfd/attachment-0001.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: kubrickheader.jpg
Type: image/jpeg
Size: 38379 bytes
Desc: not available
Url : http://lists.oplin.org/pipermail/oplin4cast/attachments/20120118/65606bfd/kubrickheader-0001.jpg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: spyware-294x300.jpg
Type: image/jpeg
Size: 21465 bytes
Desc: not available
Url : http://lists.oplin.org/pipermail/oplin4cast/attachments/20120118/65606bfd/spyware-294x300-0001.jpg

More information about the OPLIN4cast mailing list