Skip to content

Gotham Security Daily Threat Alerts

by on March 6, 2014

March 5, Help Net Security – (International) New Android devices sold with pre-installed malware. The founder of Marble Security reported finding data-stealing malware disguised as Netflix apps pre-installed on several customers’ new Android devices. Several Samsung, Asus, LG, and Motorola phones and tablets were found with the pre-installed malware. Source

March 5, The Register – (International) New design flaw found in crypto’s TLS: Pretend to be a victim online. Researchers with the French National Institute for Research in Computer Science and Control developed a new man-in-the-middle (MitM) attack against the Transport Level Security (TLS) protocol that can under certain conditions allow an attacker to intercept a user’s login credentials and disguise themselves as the user on servers that accept the same credential. Source

March 5, The Register – (International) GNU security library GnuTLS fails on cert checks: Patch now. An issue in the GnuTLS security library was identified that could allow any certificate to be accepted as legitimate, affecting hundreds of applications that use the library. Red Hat and GnuTLS issued patches for users and advised them to apply the patch promptly. Source

From → Uncategorized

Comments are closed.

%d bloggers like this: