Affichage des articles dont le libellé est IOS (Apple). Afficher tous les articles
Affichage des articles dont le libellé est IOS (Apple). Afficher tous les articles

Looking For Prisma Android? Don’t Get Tricked by Malicious Apps

On of the most popular app now a days “Prisma” is entertaining its users with its unique feature of transforming image into painted work of art. The app initially was launched for iOS devices only. After receiving great response by users the app officially launched for android versions on 24th July.


The huge following of Prisma on iOS created hype for android users to get this app on their devices. The cyber criminals took advantage to this and uploaded multiple cloned malicious applications on Google Play Store before the official release.

Most of the fake applications found on Google Play Store didn’t have any photo transformation functionality; instead they displayed pop up ads and fake survey to gather information about users, such as phone number, operator name, country name, language and so on. Some actually had very basic photo editing functionality, but mainly streams pop-up ads and displayed fake alerts regarding phone security and version updates. After that, the embedded Trojan would request and download a Phishing module asking their Google credentials in order to upgrade to Android 6.0.


The ESET researcher’s team has discovered fake Prisma apps of different types that include several dangerous Trojan downloaders. The Google Play security team removed them from the official Android store at ESET’s notice. Prior to that point, Prisma copycats reached over 1.5 million downloads by fans.

There are more chances that a user likely to fall into the trap as cyber criminals does their best to fool and trick users to download their malicious apps with convincing logos and icons. The ESET offers some advice for staying safe when downloading apps:



Read more

by Malik korrich ~ jeudi 4 août 2016 0 commentaires

Is Apple’s iMessage Secure?

Apple Inc is the world’s largest information technology company, known by it’s outclass products and services. Apple with every release of its product, whether in hardware or software, advances in safety, security and data protection features.

One of its popular products includes iPhone, a line of series of smart-phones designed by Apple Inc. It runs iOS operating system on it which is also developed by Apple itself. Followed by many applications this phone has generated millions of revenue to the company.



iMessage is the application that is similar to the “Messages” application. It’s an instant messaging service provided by Apple to its users over multiple products like iPhone, iPad etc.

Few days back at WWDC (World Wide Developer’s Conference) Apple announced a great plan, updates for all of Apple’s products. iMessage replaced the traditional messaging language with emojis and easy pictures and videos share .

When we talk about these type of application, the first thing comes to our mind is the security aspect. Whether the sent message is securely received by the receiver or not. On this security issue, Apple has worked a lot and launched Device-Wide encryption previously. But in this new release Apple undoubtedly decided to move further.

Rich Mogull, CEO of security firm Securosis said “on the iOS side, they have done an incredible job, and it is now the most secure personal computing platform available, There are still vulnerabilities that crop up, but at the core iOS is rock solid.”

iMessage is the well known application that supports End- to-End encrypted messaging service. Like every application iMessage showing some loop holes. The researcher team at Apple recently breached the application and decrypted videos and images under some circumstances. They said “Definitely iMessage needs an update”. This vulnerability created a fear to the research team. As iMessage uses a centralized key server, making it easier to the man in middle to intercept the communication and pretend to be someone that he is not.

In iOS 10, the new released update for the iOS, Apple provided “Differential Privacy”. This enables iMessage, Facetime and other communication applications, compute their data on their personal device rather than on the server. This gives relatively high security when combined with End-to-End encryption. Differential privacy allows the company to collect user’s information to help enhancing its app and services while keeping the individual device private.

So once again Apple worked tremendously hard to resolve the privacy issue for their customers with some feature added to the new updates. This is the only reason that Apple is getting more popular and become the largest company in the world of IT.

Read more

by Malik korrich ~ mercredi 15 juin 2016 0 commentaires

AceDeceiver: New iOS malware can infect any Apple device

A devastating iOS malware has been discovered today by PaloAlto researcher Claud Xiao; which has been dubbed as "AceDeceiver". AceDeceiver is the first of its kind because it doesn't require any enterprise certificates to install itself any iOS devices. This means regardless of the facts that your iOS device is non-jailbreak AceDeceiver malware can affect your iOS device.

The malware has exploited the flaws in Apple's digital rights management (DRM) protection mechanism FairPlay. This is the first incident when a FairPlay MITM technique has been used to spread malware. Previously we have seen only pirated iOS apps unfurl by using this technique. 'AceDeceiver' has raised many question on Apple's code review process.

Source: PaloAltoNetworks


So far the AceDeceiver has only infected iOS users of China. These attackers were using new techniques to bypass the Apple security codes. In a blog post published on PaloAlto; the reasons are mentioned which makes AceDeceiver more dangerous than any other iOS malware discovered before.


  • It doesn’t require an enterprise certificate, hence this kind of malware is not under MDM solutions’ control, and its execution doesn’t need user’s confirmation of trusting anymore.
  • It hasn’t been patched and even when it is, it’s likely the attack would still work on older versions of iOS systems.
  • Although the effected apps are removed from App Store; but that doesn't mean the malware has gone away. Attackers do not need the malicious apps to be always available in App Store for them to spread – they only require the apps ever available in App Store once, and require the user to install the client to his or her PC.
  • AceDeceiver doesn't require victim to install malicious app - instead it does that for them.  
  • The attack requires a user’s PC to be infected by malware first, after that, the infection of iOS devices is completed in the background without the user’s awareness.

There were three occasions when an app containing AceDeceiver malware has bypassed the Apple codes and landed in official App store. The first app was released in July last year - the second was released three months later, while the third one is released in January this year,

 The only similarity between those three apps are - all of them are wallpaper apps. These apps are removed from app store last month; but the goals of attackers may well have been accomplished. And also showed many that it's not impossible to bypass the security codes of App store. 
 

 

Read more

by Malik korrich ~ mercredi 16 mars 2016 0 commentaires

Mobile Security Framework - MobSF

Mobile Security Framework (MobSF) is an intelligent, all-in-one open source mobile application (Android/iOS) automated pen-testing framework capable of performing static and dynamic analysis. We've been depending on multiple tools to carry out reversing, decoding, debugging, code review, and pen-test and this process requires a lot of effort and time. Mobile Security Framework can be used for effective and fast security analysis of Android and iOS Applications. It supports binaries (APK & IPA) and zipped source code.

The static analyzer is able to perform automated code review, detect insecure permissions and configurations, and detect insecure code like ssl overriding, ssl bypass, weak crypto, obfuscated codes, improper permissions, hardcoded secrets, improper usage of dangerous APIs, leakage of sensitive/PII information, and insecure file storage. The dynamic analyzer runs the application in a VM or on a configured device and detects the issues at run time. Further analysis is done on the captured network packets, decrypted HTTPS traffic, application dumps, logs, error or crash reports, debug information, stack trace, and on the application assets like setting files, preferences, and databases. This framework is highly scalable that you can add your custom rules with ease. A quick and clean report can be generated at the end of the tests. We will be extending this framework to support other mobile platforms like Tizen, WindowsPhone etc. in future.

Download

Installation

Tested on Windows 7, 8, 8.1, 10, Ubuntu, OSX Mavericks
  • Windows: Extract the MobSF compressed file to C:\MobSF
  • Mac: Extract MobSF compressed file to /Users/[username]/MobSF
  • Linux: Extract MobSF compressed file to /home/[username]/MobSF
Read more

by Malik korrich ~ mardi 16 février 2016 0 commentaires

iOS 9.1 devices can be bypassed remotely

Just a month after iOS developers launched the new patch of iOS 9. Which they assures to the world is extremely secure, a group of hackers just bypassed its security to break into iOS 9.1 device.

This group of hackers also landed themselves $1 Million. Zerodium a security firm put up $1 Million bounty  for anyone last month who bypasses the Apple iOS 9.1 security remotely.


Zerodium took their twitter account to announce the winner but name of the hacking group or how they were able to bypass the Apple security is not disclosed. In an official tweet by Zerodium - "Our iOS #0day bounty has expired & we have one winning team who made a remote browser-based iOS 9.1/9.2b #jailbreak (untethered). Congrats!”

Bug bounties are the most talked about thing in the security world right now. With giants like Facebook, Google, Apple, Microsoft encouraging security researchers and hackers around the world to report Vulnerabilities and receive rewards according to the severity of it. 

Zeordium has no plans to report the vulnerability to the Apple Inc. Since the company is planning to sell the jailbreak to its major customers in industries like Defense, Finance & Technology. The founder of the company said in an interview to Wierd, where he explained how his company will sell the jailbreak to their U.S customers.  

"Bekrar confirmed that Zerodium plans to reveal the technical details of the technique to its customers, whom the company has described as "major corporations in defense, technology, and finance" seeking zero-day attack protection as well as "government organizations in need of specific and tailored cybersecurity capabilities."

This is a big setback for the Apple Inc. Because the users are now more concerned about their security, because hackers are now more into target smartphones rather than computers. And with Android releasing its latest patch on Monday, which almost fixed all its vulnerabilities in Nexus phones. This is perhaps the worst time for the Apple Inc to receive a news like this. 
Read more

by Malik korrich ~ mardi 3 novembre 2015 0 commentaires

iOS 9.1 fixes major Vulnerabilities and kills jailbreak

Apple releases its new iOS 9.1 which not only fixes 49 Vulnerabilities but also kills Jailbreak. The update was released on Wednesday; on website the security team provided the details of flaws fixed in new update. 2 major flaws were credited to Chinese developers team " Pengu Team ". Pengu Team introduced the jail break of iOS 9.0 this month.



Jailbreak is no more illegal but it comes with major security risks. No only users warranty is void; but it makes him vulnerable to many malwares. But because of its advantages some users are willing to take this risk.

Apple said a heap based buffer overflow issue could allow a malicious app "to elevate privileges," similar to how jailbreaking works. Another major vulnerability fixed in this latest iOS update; when a malicious app can allow a memory corruption issue which will "execute arbitrary code with kernel privileges,"

Now if a Apple users updated his iPhone, iPad on iOS 9.1 it will not only fixes these vulnerabilities but also removes its jailbreak. Remember the Pengu Team only introduced the iOS 9.0 jail break, it doesn't work with iOS 9.1.

Some other major  vulnerabilities iOS 9.1 fixes are denial-of-service issue in the kernel, and a privacy flaw where phone and message notifications may appear on the lock screen even when the setting is turned off.
Some most talked about points of iOS 9.1 on twitter right now are; new emoji, introduction of Apple news in UK markets and improvements to live photos.


Read more

by Malik korrich ~ mercredi 21 octobre 2015 0 commentaires

How to exploit Vulnerability in Siri and Google Now.

Researchers of French Intelligence Agency, ANSSI found that Hackers can control the smartphone devices from 16 feet away. The user would have no idea that his smartphone has been hacked the research says.

The hackers are exploiting vulnerabilities in Siri and Google Now, with the help of radio signals without even saying a word. The hacker can send text messages, emails, and browse on internet without even asking for your permission. 

How does a hacker control your device? 

The Hacker can only target those devices if the targets headphones are plugged into the jack, only this way the hacker can get into your device without even asking for your permission. 
The hacker should have a radio transmitter to start his hacking operation. It will be used to send  radio waves that are able to trigger voice commands on Siri and Google Now with a pair of microphone-enabled headphones plugged in.


The users headphone cable will work as radio antennas, this way the Siri or Google Now app will receive commands which it believe is coming from users microphone.  The french researchers presented their discovery in Hack in Paris conference.  


They presented how a hacker can send sms, emails, visit website managed by hacker, send phishing and spam messages exploiting emails, facebook and other social media accounts.

The French duo used as a generator of electromagnetic waves their laptop running the open-source software GNU Radio, a USRP software-defined radio, an amplifier, and an antenna.


The researchers explained that their basic equipment could fit inside a backpack and can reach a range of around six and a half feet. In a more powerful configuration composed of larger batteries that could fit inside a van, the researchers say they could extend the attack’s range to more than 16 feet.

The two experts also published a Video Proof of Concept for the attack, they demonstrated how send a command to Google Now via radio on an Android smartphone instructing the mobile device to launch the browser to visit the ANSSI official website. 

Read more

by Malik korrich ~ jeudi 15 octobre 2015 0 commentaires

Top 5 iPhone Security Apps

Hacking Smartphone's has become a primary case now a days, hackers are now more into targeting the smartphone devices than Computers. Every month we hear a news about new malwares security researchers are discovering, which has already effected the thousands of Smartphone devices. So the question now is, How can you secure yourself from these Malwares or secures data from these hackers.


iPhone users are the latest one who are effected by a malicious Malware name YiSpectre which the Palo Alto researchers has discovered recently. The only way iPhone or any other smartphone users can stop these malwares from entering their devices is by installing the necessary security apps.

In this article the we educate our readers with the top most iPhone Security Apps which can help them not only stop malicious malwares from entering their devices but also secures their phone from any possible hacking attack.

1Password 

At the top of our list is the security app name "1Password", which is also dubbed as Secure Wallet because of its capability of storing the users credit card information securely. This app is very simple to manage. 1Password generates passwords and manages it securely. This software can also work on your Mac. It also alerts users about the insecure apps.

 Norton Mobile Security

This is another powerful security tool for iOS users. This app can help you locate your phone from anywhere with the help of internet connection, that's the reason behind its slogan which is 'Lost Phone Finder'. It also has contact backup that allows you to easily restore contacts across your mobile devices.The backup data also includes photos, files, folders, audio, video etc. 

Find My iPhone

This is one app I highly recommend readers to install in their iOS devices. This app can help you when your iPhone is lost. You can use any other iOS device to find your phone. There have been incidents reported by people about finding their phone using this app. 

LastPass 

If you want your data to be secured from hackers then Lastpass is the best solution for you. Its unique passwords makes it almost impossible for hackers to breach your Apple device. LastPass is an app that integrates with your iPhone/iPad browser and keeps you signed in securely, irrespective of where you are. LastPass stores all your passwords used across devices, expecting you to remember just a single LastPass password.

 Webroot SecureWeb 

If you want to be safe from any web based security threats then Webroot is the app you are searching. With this application installed in your device, you can easily block any malicious websites, analyze search results and check what's safe and what isn't on websites including shopping portals, banking sites etc.
Read more

by Malik korrich ~ mardi 6 octobre 2015 0 commentaires

YiSpecter Malware: No Apple User is Safe

Researchers on Monday discovered a new malware named YiSpecter which is effecting thousands of iPhones and iPads. Researchers of Palo Alto, a security firm first broke the news about the malicious malware which so far only effected Apple users from Taiwan and China. YiSpecter is the first of its kind malware because it is effecting both Jailbroken and Non-Jailbroken Apple devices, which is something researchers has never seen before.


This malware is so severe that it spreads via unusual means, including the hijacking of traffic from nationwide ISPs, an SNS worm on Windows, and an offline app installation and community promotion. Many victims have discussed YiSpecter infections of their jailbroken and non-jailbroken iPhones in online forums and have reported the activity to Apple.

The malware is infecting Apple devices since November 2014, but out of 57 security vendors in VirusTotal, only one is detecting the malware at the time of this writing. There are more than 100 apps in Apple's App Store, which is infected with YiSpecter Malware. This is the first time any malware has bypassed the Apple's notorious code reviews.

Some major attributes of YiSpecter Malware are: 


  • The malware can be downloaded and installed in your device regardless of the fact that its jailbroken or not. 
  • You cannot remove malware from your device once it is downloaded or installed. Even if you try to manually delete the malware it will re-appear on your device. 
  • Using third-party tools you can find some strange additional “system apps” on infected phones. 
  • Once YiSpecter Malware is installed in your device, normal apps start to show full screen advertisements when user try to open them. 
There is a malware named XcodeGhost which is similar to YiSpecter, these are the only malwares who effected non-jailbroken apple devices severally. But Plao Alto researchers believed that there is no connection between the developers of these malwares. However, YiSpecter is the first real world iOS malware that combines these two attack techniques and causes harm to a wider range of users. It pushes the line barrier of iOS security back another step.

So far there has been no statement released by the Apple regarding this news broken by Palo Alto researchers today.
Read more

by Malik korrich ~ lundi 5 octobre 2015 0 commentaires

iOS Penetration Testing Lab Environment

Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment. This application covers all the common vulnerabilities found in iOS applications (following OWASP top 10 mobile risks) and contains several challenges that the user can try. This application also contains a section where a user can read various articles on iOS application security.



Vulnerabilities and Challenges Include …
  • Insecure Data Storage
  • Extension Vulnerabilities
  • Attacks on third party libraries
  • Jailbreak Detection
  • Runtime Manipulation
  • Piracy Detection
  • Sensitive information in memory
  • Transport Layer Security (http, https, cert pinning)
  • Client Side Injection
  • Information Disclosure
  • Broken Cryptography
  • Security Decisions via Untrusted input
  • Side channel data leakage
  • Application Patching
All these vulnerabilities and their solutions have been tested up to iOS 8.2
The app also contains a section on iOS Application Security Tutorials for those who want to learn iOS Application Pentesting. Every challenge/vulnerability has a link for a tutorial that users can read to learn more on that topic.

This app will only run on devices running iOS 7 or later. Users can download the source code and run the application on previous versions of iOS as well.

Download at
Read more

by Malik korrich ~ lundi 22 juin 2015 0 commentaires

How to fix iOS Text Message Bug, which crashes iPhone with malicious message.

Apple Inc. is currently working on fixing the latest bug which allows the attacker to crash the iPhone with a single text message. According to the Reddit the bug also effects iPads, iWatches and iPhone's via text messages and whatsapp messages. This is the biggest vulnerability in the iOS 8 so far but the Apple security team has assured it users that they are working day and night to fix the problem.


Sending the string of characters to an iPhone results in an immediate respring, causing an iPhone to crash and quickly reboot. From there, if the Messages app was opened at a list view, the Messages app crashes automatically when you try to open it. If it was opened to the conversation where you received the message, the app will open, but attempting to go to another conversation causes Messages to crash.
 Most people has tested the bug on iOS 8.3 but the bug is working on previous versions as well. Apple said in an statement that " We are aware of an iMessage issue caused by a specific series of unicode characters and we will make a fix available in a software update".

Users has discovered few ways to fix this bug on temporary basis and shared it on internet. Here are the few ways to save your iPhone, iPads and iWatches from crashing.

  • The sender who sent you the suspicious message send another message effectively canceling out the initial strand. 
  • Alternatively, send yourself a message via Siri, the share sheet, or from your Mac.
  • Sending a photo to the contact via the Photos app can allow you to access the message history and delete the conversation.
Read more

by Malik korrich ~ jeudi 28 mai 2015 0 commentaires

iOS 8.3 Fixes some major Security Vulnerabilities

Apple users are buzzing and talking about the new emojis which came with the iOS update. But what they don't know is Apple also fixed dozens of severe vulnerabilities in its OS with this latest update.


Some major security Vulnerabilities that iOS 8.3 fixed are denial-of-service issues, a cross-site cookie issue, and a bug that could allow a website to install malware. The update also updates the certificate store.


Among the bugs, Apple warned that in "some circumstances" a device might not erase itself after failed passcode attempts.Also, a denial-of-service bug was fixed through "improved state management."

The iPhone 4 users cannot enjoy the iOS 8.3 because the OS system supports iPhone 4s and upper versions. The company didn't disclosed the all security vulnerabilities that they fixed in this update but we believe that the new update will make Apple users more secure than any other smartphone users.

iOS 8.3 also makes Apple Pay more secure.Recently companies like PayPal has raised questions about the security of Apple Pay. Update also fixes bugs in Safari browser, Face-time, iMessages and fixes the WiFi Problems which many users has reported previously. The update also enables the WiFi calling in the Sprint carrier which was a major issue for the Sprint users.
Read more

by Malik korrich ~ jeudi 9 avril 2015 0 commentaires

Apple fixes FREAK Security Bug with latest iOS Update

Apple has fixed the FREAK security flaw in its iPhone's and iPad's with the release of iOS 8.2. A Security researcher team told the company that this flaw will allow hackers to interpret encrypted connections. The update was released on Monday in a media event took place in San Francisco.

Source : Apple

The flaw could allow an attacker to conduct man-in-the-middle attacks on common encrypted networks, including Secure Sockets Layer (SSL) and Transport Layer Security (TLS) connections.


Apple was the first company which fixes this bug in its products. The other major companies like Google and Microsoft are still working on the security patches to fix this bug. Their products are still not secure as we speak.

Apple Inc. said in an advisory note the flaw affects iPhone 4s handsets and later, iPod touch (5th generation) and later, and iPad 2 and later. Users who think they are affected by the bug can run a client checking tool, and should upgrade to iOS 8.2 sooner rather than later.

Read more

by Malik korrich ~ mardi 10 mars 2015 0 commentaires

Apple's Mac OS X and iOS tops the List of Most Vulnerable Operating Systems

According to a report published by the a top security firm GFI, it came to light the Apple's Mac OS X and iOS tops the list of most vulnerable operating systems active around the world right now. The report shows that  Apple's Mac OS X has around 147 vulnerabilities from which 64 are having a very critical security impact.

Apple's Mac OS X and iOS tops the List of Most Vulnerable Operating Systems


The second on the list is another Apple's operating system iOS with around 127 total vulnerabilities. From those 127 vulnerabilities around 32 will have a very severe security impact. 72 vulnerabilities are labelled as medium vulnerabilities because those will not create that sort of security impact.


Apple is more vulnerable than Windows and Linux
Source: GFI

There is a significant increase reported in the number of vulnerabilities from last two years. 7,038 vulnerabilities in total were added to NVD database in the year 2014 and 24% of them had severely high-security impact.

Moreover, around 80% of the total vulnerabilities were sourced from third-party applications and 4% vulnerabilities are generated from hardware devices. Operating systems are responsible for remaining 13% of vulnerabilities.

After analyzing the report we see that the three most secure operating systems around the world right now are Microsoft Windows 8.1 , Microsoft Windows Vista and Microsoft Windows RT. The maximum number of vulnerabilities of Microsoft Operating systems in the report are 38 which is a very impressive number when you compare them with the other operating systems.

Source: GFI

The GFI also published the list of most vulnerable browsers that are used right now around the world. The top of the list was Internet Explorer, followed by Google Chrome and Mozilla Firefox. The number of vulnerabilities that Internet explorer has are 242, from which around 220 are rated has highly severe by the GFI.

While Google chrome and Mozilla Firefox has 124 and 117 vulnerabilities. Which is a pretty acceptable number when you compare them with the Internet Explorer. For the IT Admins if they are using these browsers in their respective organization it will make his network insecure. Report also added that IT admins should keep an close eye on the updates released by Operating systems, Web browsers, Java and Adobe free products. So their whole network will be safe from these vulnerabilities.

In an official statement released by the GFI  the security firm said "2014 was a tough year for Linux users from a security point of view, coupled with the fact that some of the most important security issues of the year were reported for applications that usually run on Linux systems. Heartbleed, for example, is a critical security vulnerability detected in OpenSSL while Shellshock is a vulnerability that affects GNU Bash"
Read more

by Malik korrich ~ mercredi 25 février 2015 0 commentaires

Samsung Galaxy S5,iPhone 5s and Nexus 5 Hacked at Pwn2Own Competition

In HP's two day competition named Pwn2Own which took place in Tokyo,Japan. Smartphones such as iPhone 5s ,Samsung Galaxy s5 and Nexus 5 using top operating systems like Windows,iOS, and Android are all been hacked. In this two day competition some veteran security researchers around the globe participated.

On day one in the competition the iPhone 5s iOS was the system that has been hacked by the South Korean teams. They found some weakness in the Safari browser and used it to escape the sand box.
The flaw in iOS security was immediately disclosed to Apple, by the zero day initiative.

The first day in the competition is highly sucessful, with two big devices are hacked successfully.The next big device that fell victim to the group of hackers from Japan and South Africa is Samsung Galaxy s5.

The gateway that made the way for the security attack is 'near-field communication (NFC)' attack that trigger a deserialization issue in certain code specific to Samsung. Jon Butler of South Africa’s MWR InfoSecurity also managed to break the Galaxy S5 via NFC.

NFC was also utilized by UK-based researcher Adam Laurie from Aperture Labs to hack an LG Nexus 5.

"A two-bug exploit targeting NFC capabilities on the LG Nexus 5 (a Google-supported device) demonstrated a way to force BlueTooth pairing between phones – a plot point, as several observers noted, on the television show 'Person of Interest'," Shannon Sabens, a senior security content developer at HP, wrote in a blog post summarizing the first day of Mobile Pwn2Own.

Kyle Riley, Bernard Wagner, and Tyrone Erasmus of MWR InfoSecurity used a combination of three vulnerabilities to break the Web browser on the Amazon Fire Phone.

On the day two of the competition was not as successful when you compare it with the day one.On the second day  the participants in the competition are only able to attack android and windows devices partially. A participant name Nico Joly able to show some weakness in windows phone Nokia 1520 with an exploit aimed at the smartphone’s web browser, but was only able to exfiltrate the cookie database and could not break the sandbox to gain full access to the system.

A competitor name Jüri Aedla presented the weakness in another device name Nexus 5. He presented the bug in device through Wifi to android device. The event came to an end after that.

Source securityweek  
Read more

by Malik korrich ~ dimanche 16 novembre 2014 0 commentaires

iSniff GPS WiFi Sniffing Tool

iSniff GPS passively sniffs for SSID probes, ARPs and MDNS (Bonjour) packets broadcast by nearby iPhones, iPads and other wireless devices. The aim is to collect data which can be used to identify each device and determine previous geographical locations, based solely on information each device discloses about previously joined WiFi networks.

iOS devices transmit ARPs which sometimes contain MAC addresses (BSSIDs) of previously joined WiFi networks. iSniff GPS captures these ARPs and submits MAC addresses to Apple's WiFi location service (masquerading as an iOS device) to obtain GPS coordinates for a given BSSID. If only SSID probes have been captured for a particular device, iSniff GPS can query network names on wigle.net and visualise possible locations.

By geo-locating multiple SSIDs and WiFi router MAC addresses, it is possible to determine where a device (and by implication its owner) is likely to have been.

Below: Visualisation of WiFi router locations in Melbourne, AU returned by Apple Location Services



Dependencies

iSniff GPS was developed and tested on a Ubuntu 12.04 (32-bit) VM with Python 2.7.3, Django 1.5.4 and Scapy 2.2.0-dev. See requirements.txt for additional python modules required.

Components

iSniff GPS contains 2 major components and further python modules:
  • iSniff_import.py uses Scapy to extract data from a live capture or pcap file and inserts it into a database (iSniff_GPS.sqlite3 by default).
  • A Django web application provides a browser-based interface to view and analyse the data collected. This includes views of all detected devices and the SSIDs / BSSIDs each has probed for, a view by network, Google Maps views for visualising possible locations of a given BSSID or SSID, and a pie chart view showing a breakdown of the most popular device manufacturers based on client MAC address Ethernet OUIs.
  • wloc.py provides a QueryBSSID() function which looks up a given BSSID (AP MAC address) on Apple's WiFi location service. It will return the coordinates of the MAC queried for and usually an additional 400 nearby BSSIDs and their coordinates.
  • wigle.py provides a getLocation() function for querying a given SSID on the wigle.net database and returns GPS coordinates. It must be configured with a valid wigle.net auth cookie. Please respect the wigle.net ToS in using this module.

Read more

by Malik korrich ~ jeudi 9 octobre 2014 0 commentaires

Apple Releases Patches for Shellshock Vulnerability

Bash bug aka shellshcok bug has shocked the IT community and it has also created an alarming situation for the organizations running Unix and Apple MAC OS. Nessus and other renowned vulnerability assessment service providers have created solution or at least float their services in the market, and here comes the Apple.


Apple on Monday said it has now patched the Bash vulnerability for its OS X Lion, Mountain Lion and Mavericks software. The company also created a site for users to download the Bash update.


Apple stated that most Mac users were safe from Shellshock as remote services like web sharing are disabled by default. OS X Server users were not mentioned but I consider them to be at far more risk as it is much easier to set up and enable a web server or other remote services. However this bug was serious enough to get Apple’s immediate attention and today they released a software patch “OS X bash Update 1.0″. Strangely this update can not be found through the normal software update process but has to be downloaded from Apple’s website.

The patch was released for the last three operating systems and can be found here:

OS X 10.7 Lion
OS X 10.8 Mountain Lion
OS X 10.9 Mavericks

No restart is required to install this security patch.
Read more

by Malik korrich ~ mardi 30 septembre 2014 0 commentaires

Should Apple Credit Card Feature be Trusted



After the photo scandal in which prominent Hollywood stars such as Jennifer Lawrence private pictures were stolen by hackers and uploaded on the internet, Apple is hell bent on doing the marketing that is primarily focus on damage control. Tim Cook Apple’s CEO wrote:

"Security and privacy are fundamental to the design of all our hardware, software, and services, including iCloud and new services like Apple Pay. And we continue to make improvements. Two-step verification, which we encourage all our customers to use, in addition to protecting your Apple ID account information, now also protects all of the data you store and keep up to date with iCloud


I want to be absolutely clear that we have never worked with any government agency from any country to create a backdoor in any of our products or services. We have also never allowed access to our servers. And we never will."


If we look at the statement Tim have highlighted two things. First he is advocating about improvement and security of the new service ‘Apple Pay’. We do need to keep in mind here that Apple’s current breach is still under investigation and until the causes of the breach are determined Tim’s claim cannot be taken seriously.


Second he is telling his loyal customers that Apple never share any information nor have any secret contracts with the government. But in the past Apple has cooperated with government investigations by turning over individual users' data. We know that Edward Snowden'sleaks revealed in June 2013 that many tech companies assist government investigations by turning over suspects' data. Good for Apple’s CEO that he realized this after one year and coming clean on this.


Apple Pay

 


The Apple Pay includes near-field communication technology or NFC, which allows for the transfer of small amounts of data between two devices held closely to one another. The payment will be done by giving your biometric finger signature, the database of which is obviously stored on remote servers. Apple did not go into any detail describing the security measures of Apple Pay. 
 

Apple Pay is no doubt a big threat for conventional payment systems, but regular users of iphone cannot just blindly put trust on this system. The wise thing therefor for them if they are not tech savvy is not to adopt the technologies such as Apple Pay and others of similar type for some time. Therefore wise thing for regular users who are not tech savvy is to observe how the new entrant is performing.


Image Credit


Read more

by Malik korrich ~ samedi 20 septembre 2014 0 commentaires

Creating an iOS Application Using Wordpress





With a whole lot of room for incessant innovation in Wordpress, the web development community is consistently striving to make WP spread its wings further.


And this is where the concept of using Wordpress to create mobile apps comes into existence. Yes, there are plugins and granted, they are great, but if you are willing to compromise control and let the third party tools dictate terms, you might as well go ahead with the likes of AppPresser and Mobiloud. 
 

But, when being in the driver's seat is on your agenda, segue on to the following partially plugin-assisted ways to create iOS apps using Wordpress:



Build a Web Application Theme that Stays True to the Most Basic Strictures

 


There is a standard conceptualization (or should I say conceptual standardization?) of mobile apps – a mobile app is the one that runs and appears great on a mobile device. Though, this hardly covers the native app concepts that exist at the very fibre of mobile apps of all sorts. 
 

What needs to be clearly understood is whether the guy who is buying your app to sell it to his customers considers the standard web app as the iOS app he is expecting you to roll out. If that indeed is the case, you have your task cut out (it hardly is a task) – just code a theme that will let your content be displayed on a Smartphone screen in a manner most clean and clutter-free. 
 

OR, you can use PhoneGap with technologies like CSS, JavaScript and HTML to create a shell application. Accompanying it, you will need a browser that shouldn't display an address bar and something that leads to the app you have created. The final app you have through this method may not be something you would be immensely proud of, but you have just created your first mobile app using few web technologies, that alone is worth the price of admission. However, if that doesn't please you enough, there are more ways to follow:


Wordpress Will Collect Data for You. Now Input the Same to an App Generator

 
Here is how it goes like:

To begin with, you create a custom posts on the Wordpress CMS. The custom fields are then to be placed to where they belong. You can then move on to creating a custom plugin that would lend a sense of structure to the whole setup of data. And then, the app generators come into play. Using these app generators, you have the wherewithal to compile the apps with their own compilers. The data from Wordpress can then be fed using the URLs – which can either be done using plugins or via the Wordpress XML-RPC - and creating apps becomes a task much feasible following that.


Wordpress Will Collect Data for You. Now, Create the iPad side of things Natively

 


Well, if you don't have a whole lot of idea about this one, you have the option of branching out to a development company that has the expertise to blend the Wordpress strategy with the mobile technology in the most seamless and effective fashion and thus create exceptional native apps. 
 

All said and done, there are a bunch of things that ned to be off the deck before you swing-start the development process. Coalescing data from the Wordpress URLs has to be done in a precise manner you must be appropriately equipped to handle the responses. The UI operations also have to be handled with utmost care and not to mention, do steer clear of all the possible oversights.

Author:
Sarah Parker is a veteran tech savvy content writer associated with Designs2Html Ltd, where you can opt for PSD to Wordpress conversion services. Also, in case of availing PSD to Magento Theme Conversion services, you can get in touch with her.
Read more

by Malik korrich ~ vendredi 22 août 2014 0 commentaires

OWASP iOSForensic - Forensic Analysis


http://www.ehacking.net/2014/07/owasp-iosforensic-forensic-analysis.html
At times, you need a tool to conduct the forensics analysis; in order to investigate and recover the information found in digital devices. The tool and method is totally depends on the nature of the test and the objective of the forensic analysis, however security analyst and developers have created designated tools for every platform (OS, Application etc).



IOSForensic is a python script that has been written by OWASP, it help in forensic analysis on iOS. It get files, logs, extract sqlite3 databases and uncompress .plist files in xml.

OWASP iOSForensic is free to use. It is licensed under the GNU GPL v3 License, so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.

Dependencies

Linux

  • OpenSSH
  • sshpass
  • sqlite3
  • python >= 2.6
  • Python-magic
  • plistutil

Device

  • a jailbroken device
  • OpenSSH
  • syslogd to /var/log/syslog (it's the name of the application, restart your phone after install)
  • wifi ON
  • on some firmware, usb connection needed

How to use

Options

  • -h --help : show help message
  • -a --about : show informations
  • -v --verbose : verbose mode
  • -i --ip : local ip address of the iOS terminal
  • -p --port : ssh port of the iOS terminal (default 22)
  • -P --password : root password of the iOS terminal (default alpine)

Examples

./iOSForensic.py -i 192.168.1.10 [OPTIONS] APP_NAME.app INCOMPLETE_APP_NAME APP_NAME2_WITHOUT_DOT_APP
./iOSForensic.py -i 192.168.1.10 -p 1337 -P pwd MyApp.app angry MyApp2


Download and More information
Read more

by Malik korrich ~ mardi 29 juillet 2014 0 commentaires

« Articles plus anciens