After two major tech vendors found flaws on their devices and software, here is our round up of the latest security dangers.
Samsung reveals plans to fix keyboard security issue
Following a report from security firm NowSecure, which detailed vulnerabilities found in 600 million Samsung smartphones, the company has announced a fix that will come in the next few days for some devices.
The bug has been found in Samsung’s pre-installed keyboard software, which allows hackers to install arbitrary code on the smartphone. The bug has affected Samsung’s Galaxy S6, S5 and S4 smartphones.
Researchers discover Apple’s ‘Cored’ security breach
Six university researchers have found deadly zero-day flaws in Apple’s iOS and OS X, revealing that it can break Apple’s password-storing keychain and avoid its App Store security checks.
The security issue has been dubbed ‘Cored’, also known as ‘Xara’, which may also allow attackers to exploit these security breaches and steal passwords and sensitive data.
Paul Ducklin, senior security advisor at Sophos, said: “Malware can already pull off credential-stealing tricks without exploiting holes such as Cored/Xara. And this isn’t a Remote Code Execution bug, where a crook could wander in from the outside and plant malware on your Mac without warning.
“So, let’s see what Apple comes up with to restore these vulnerable security segregation features – and, in the meantime, don’t give up on that anti-malware protection.”
Norton premieres hacker documentary
Norton by Symantec has unveiled a new documentary looking into hacker culture, providing viewers with a first-hand look into the factors fueling today’s underground information economy in Romania.
Notable hackers who are interviewed in the “In Search of the Most Dangerous Town on the Internet” documentary include Iceman, Tinkode, Madalin and Guccifer, who have hacked many websites and the personal accounts of various public figures, including Hilary Clinton.
Derek O’Carrol, senior VP of the Norton Business Unit at Symantec, said: “We increasingly see cybercriminals using aggressive attack methods like ransomware, which rose 113 percent last year.
“Our goal is to spark discussion about the burgeoning business of cybercrime and underscore the importance of protecting one’s personal information in today’s connected world.”
SolarWinds expands international team
IT performance and management software vendor SolarWinds, has announced the growth of its government business with the expansion of its international team to help serve more IT pros.
SolarWinds’ technology offers organisations solutions for IT management challenges, including protective monitoring, cybersecurity, network operations, compliance and data centre consolidation.
David Kimball, group VP of federal and national government at SolarWinds, said: “We believe that growing our presence in Europe will give us the opportunity to better serve the diverse needs of our users, develop critical relationships with national government IT pros and ensure we continue to address their evolving IT challenges.”