Phil Evitt’s Post

30,000 Devices in Germany Discovered with Pre-installed Malware “Badbox” The Federal Office for Information Security (BSI) in Germany has taken decisive action against a wave of malware-infected digital picture frames and media players connected to the Internet. Known as BadBox, this malware was discovered pre-installed on up to 30,000 devices in Germany, primarily due to outdated Android versions. The BSI has now intervened by blocking communication between these devices and the malware’s control servers. Pre-installed Malware and Risks The BadBox malware poses several significant threats to users. It can stealthily create accounts for email and messenger services, facilitating the spread of fake news. Additionally, BadBox can execute ad fraud by secretly accessing websites in the background. Perhaps most concerning is its ability to function as a residential proxy, allowing unknown third parties to use the victim’s internet connection for cyberattacks and illegal activities, thereby risking the user’s IP address being linked to criminal offenses. Stay Connected to Sidharth Sharma, CPA, CISA, CISM, CFE, CDPSE for content related to Cyber Security. #CyberSecurity #JPMC #Technology #InfoSec #DataProtection #DataPrivacy #ThreatIntelligence #CyberThreats #NetworkSecurity #CyberDefense #SecurityAwareness #ITSecurity #SecuritySolutions #CyberResilience #DigitalSecurity #SecurityBestPractices #CyberRisk #SecurityOperations 

📱 Think Your Phone is Safe? Think Again! 🔒 Your mobile device is a goldmine for hackers if left unsecured. Here's how you can stay protected: Keep It Updated: Always update your mobile OS & use a complex password. 💪 Malware Defence : Install antivirus & never click on shady links. Stay alert, don’t store sensitive info! 🚫 Avoid SIM Cloning: Don’t jailbreak your phone! It opens doors for attackers. 🚷 Protect from Theft: Use full-device encryption (FDE), GPS tracking, and remote wipe tools. 🛡️ Secure Apps: Use only trusted apps, avoid public networks for payments, and disable GPS when you don’t need it. 📍 Your phone is your lifeline—keep it secure! What security measures are you taking?👇 #MobileSecurity #PhoneSafety #CyberAwareness #DataProtection #DigitalSafety #StaySecure #TechTips #PrivacyMatters #CyberSecurity

South Korean ISP Accused of Malware Scandal [#CyberSecurity #TechNews] 🔍 Quick Insights: - Olleh, a leading ISP in South Korea, allegedly installed malware on approx. 600,000 devices. - This raises significant concerns about user privacy and security at a national level. 🖥️ This significant breach of trust highlights the urgent need for enhanced regulatory oversight and transparent operational practices in the tech industry. 🛡️ Do you think ISPs hold too much power over user data? What measures should be implemented to ensure user protection against such serious vulnerabilities? #Privacy #DataProtection #Technology #InternetSafety #Malware https://lnkd.in/dnbDxwVE

The numbers might be virtual, but the threat is real. Virtual (or disposable) phone numbers are often used to bypass SMS OTP verification, and they’re alarmingly easy to get (even our grandma could grab one for free)! Fraudsters use these numbers to: - Create fake accounts - Drive up your SMS costs - Exploit your business and target your users In our latest guide, we explore the world of disposable phone numbers and provide actionable steps to stop them from infiltrating your platform. Read it here: https://lnkd.in/eb6er36p Don’t let fraudsters take advantage—find out how to protect your company. #Cybersecurity #FraudPrevention #SMSVerification

In today's digital age, protecting your personal information is crucial. Here are five quick tips to enhance your online security: Strong, Unique Passwords: Use long, unique passwords for each account. Aim for 15 characters or more to make them harder to crack. Beware of Phishing Scams: Be cautious of emails, calls, or texts asking for personal info. Always verify the sender before responding to ensure legitimacy. Secure Your Devices: Keep your phone and laptop in sight and locked when not in use to prevent unauthorized access. Enable Multifactor Authentication: Add an extra layer of security by using a password plus a verification code sent to your phone. Avoid Public Wi-Fi and Chargers: Use your personal hotspot and own charger to safeguard your data from potential threats. Stay smart, stay safe, and keep your personal information protected. https://lnkd.in/dZtFf-Eh

A specific line of Juniper Networks devices can easily become infected with Mirai malware if users don’t scrap their default passwords, the company says in an advisory.

🔒 If your account gets hacked, take these immediate steps to secure your information: ✅ Change your password immediately. Create a strong, unique password for the compromised account and for any other accounts that may use similar credentials. ✅ Enable two-factor authentication (2FA). This adds an extra layer of security, requiring verification beyond just your password. ✅ Review your account activity. Check for any unauthorized transactions or changes and report them to the service provider. ✅ Notify your contacts. Let them know that your account was compromised, so they can be cautious of any suspicious messages from you. ✅ Scan your devices for malware. Ensure that the hack wasn't caused by malicious software on your computer or mobile device. Taking action quickly can limit the damage and protect your personal information! #DuoCircle #PhishingEmail #EmailProtection #EmailSecurity #AccountSecurity #CyberAwareness

🚨 Malware Alert: South Korean Telecom Company Attacks Customers 🚨 This started in 2020 but it feels like a 2024 headline... Recent news has revealed a shocking incident where KT Corporation, one of South Korea's largest telecom providers, deliberately infected over 600,000 users with malware to prevent them from using a file-sharing service. This malicious act has caused widespread issues, including missing files, strange folders, and even disabled PCs for many customers. The issue started in May 2020 when Webhard, a Korean cloud service provider, faced numerous user complaints about unexplained errors. An in-depth investigation uncovered that KT Corporation was behind the malware attack, targeting users of Webhard's Grid Program, which relies on BitTorrent peer-to-peer file sharing. Key Points: Malware Infection: Over 600,000 KT customers were infected with malware that created strange folders, made files invisible, and disabled PCs. Legal Violations: Authorities have identified and charged 13 individuals connected to the malware attack, citing potential violations of South Korean laws, including the Protection of Communications Secrets Act and the Information and Communications Network Act. KT’s Justification: KT claimed it planted the malware to control Webhard’s Grid Service, labeling it as malicious. However, the installation of malware without user consent is a severe breach of trust and legal boundaries. Ongoing Dispute: This incident is part of a long-standing dispute between Webhard and KT over network usage fees and the strain on KT's network caused by the Grid Service. This situation highlights the critical importance of transparent and ethical practices in cybersecurity and telecommunications. The deliberate use of malware by a service provider is unacceptable and undermines the trust customers place in their providers. It's a reminder that protecting users' rights and ensuring ethical standards should always be at the forefront of our industry. https://lnkd.in/gUa2K4U3 #CyberSecurity #MalwareAlert #Telecom #EthicalPractices #UserRights #KTCorporation #Webhard #DigitalTrust #CyberAwareness #Infosec

I came across this article and thought it was worth sharing. Hackers are now using traditional snail mail to spread malware, which is a new and unusual approach to cyberattacks. In Switzerland, authorities are warning people about fake letters that include QR codes. These codes lead to an app that looks like a legitimate weather warning app, but instead, it installs malware called *Coper* (also known as *Octo2*). This malware can steal sensitive information from banking apps and other applications, mainly on Android devices. So far, it hasn’t been reported on Apple devices. Right now, this is targeting Android users in Switzerland, but it could easily spread to other countries, including the U.S. It’s a reminder to stay cautious—don’t scan QR codes or download apps unless you’re sure they’re from a trusted source. The best defense is staying informed and using multiple layers of security to protect yourself. I just wanted to share this as a heads-up to keep an eye out for these kinds of scams. Stay safe! #CyberSecurity #Malware #Phishing #DataProtection #InformationSecurity #AndroidSecurity #MobileSecurity #ThreatIntelligence #CyberThreats #SecurityAwareness

German agency BSI sinkholed a botnet of 30,000 devices infected with BadBox: The German agency BSI has sinkholed a botnet composed of 30,000 devices shipped with BadBox malware pre-installed. The Federal Office for Information Security (BSI) announced it had blocked communication between the 30,000 devices infected with the BadBox malware and the C2. The devices were all located in Germany, they were all using outdated Android versions. “The Federal […]