Zyxel, a firewall and AP vendor, released a firmware update to their devices that included an unexpected, built-in admin user account called "zyfwp". Folks in information security often characterize this sort of hidden and hardcoded accounts as a “backdoor” account, even though it is hard to say if the vendors who do this do so intentionally or accidentally. First found by … [Read more...]
Backdoor in Pokemon Go – Daily Security Byte EP. 287
To keep Friday's story fun, I covered an incident that involves both gaming and infosec. Attackers have already created a malicious version of the popular Pokemon Go app. If you're an Android user trying to download Pokemon Go from non-official sources, this story is no joke. Watch below to learn more. (Episode Runtime: 3:16 Direct YouTube … [Read more...]
Eleanor Mac Backdoor – Daily Security Byte EP. 284
Many Mac users think they're immune to malware, but unfortunately that's untrue. Though Windows malware variants still greatly outweigh Apple ones, Mac malware is starting to appear more regularly. Today's Byte video covers a new Mac trojan discovered by Bitdefender, and what you can do to avoid it. (Episode Runtime: 3:04 Direct YouTube … [Read more...]
Mac Ransomware – Daily Security Byte EP. 226
Antivirus companies have found incomplete versions of Mac ransomware, researchers have created proof-of-concept (PoC) variants to demonstrate the possibility, and criminals have experimented with ineffective web-based "policeware" for Macs, but we've not seen Cryptolocker-level ransomware targeting Macs in the wild... that is until now. Watch today's Security Byte video to … [Read more...]
Linux Distro Backdoored – Daily Security Byte EP. 220
It would suck to have your website hacked, and your user database stolen by malicious attackers. However, can you imagine those attackers also creating a backdoored version of your software, and distributing it among your customer from your very own site? Unfortunately, that's exactly what happened Linux Mint, the makers of a popular Linux distribution. Watch today's episode to … [Read more...]