Tag Archives: Synack

Security Never Sleeps- High Sierra Zero-Day Issues, Dirty Cow

Nasty Password-Pilfering Hack Ruins Apple macOS High Sierra Launch

“Patches expected to be issued as soon as possible”

Apple released a new macOS operating system today, dubbed High Sierra. But already a serious weakness has been found lurking within, a security researcher has claimed, allowing a hacker to steal passwords from Apple Macs running the new OS.

Patrick Wardle, ex-NSA analyst and now head of research at security firm Synack, found the problem Monday, warning that it could allow anyone able to run malicious code on a Mac to pilfer passwords from the keychain. With his “keychainStealer” app, the researcher’s hack forced the keychain to disclose Facebook, Twitter and Bank of America passwords.

Dirty Cow vulnerability discovered in Android malware campaign for the first time

“First malware sample to contain an exploit for the flaw”

For the first time, threat actors have added the Dirty Cow Android exploit to malware designed to compromise devices running on the mobile platform. On Monday, researchers from Trend Micro said the vulnerability, traced as CVE-2016-5195, has been discovered in a malware sample of ZNIU, detected as AndroidOS_ZNIU.

Mobile stock trading apps ignore critical flaw warnings

“Billions of dollars processed per year through apps”

IOActive has discovered severe security issues with today’s most popular stock trading applications, but it appears that the developers behind the apps are not interested. On Tuesday, the security firm released the results of research into 21 popular mobile stock trading applications available on iOS and Android, which have millions of users worldwide and process billions of dollars in transactions per year.

Exploiting these vulnerabilities can not only lead to the leak of user data, but can allow threat actors to trade a user’s stocks, steal their funds, and spy on their net worth and investment strategies, which could then be used to conduct additional fraudulent trading.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 189

Creepy ‘FruitFly’ Surveillance Malware Hits American Apple Macs

“Rare malware spread on mac draws attention”

What appears to be a slice of malicious code that has been affecting mac systems is being investigated by law enforcement agents as a targeted surveillance program. Ex-NSA analyst Patrick Wardle, now a researcher for Synack, has claimed that about 400 observable infections have occurred from the ‘FruitFly’ malware. Wardle further stated “I likely only saw a limited percentage of the total number of victims.”

Over 600 Malware Samples Linked to Chinese Cyberspy Group

“China linked firms has used more than 600 malware samples”

Chinese linked espionage group has been tracked by cyber security firms such as Lotus Blossom, Elise, and others have sampled hundreds of different malware programs in the last few years. Kaspersky Labs has released a report suggesting that some evidence indicates that this program could have been active since 2007. The state-sponsored threat group has mainly targeted military and government organizations in Southeast Asia.

Threat Hunters Analyze Trends in Destructive Cyber-Attacks

“Three primary trends noted”

Increasing incidences of cyber-attacks have several common traits; they are generally state sponsored, they are increasing,and are usually using nothing more than basic tools. Cybereason, a Boston MA-based threat hunting firm, has analyzed destructive cyber-attacks from the 1982 software-instigated explosion in a Siberian pipeline to the recent NotPetya and Industroyer attacks. Cybereason’s conclusions are not reassuring for industry.


“Increase of cybercrime increases the intensity”

Companies such as Pervade Software are exploring digital weapons that are intended to protect and recover their data. However, many experts are concerned that ‘vigilante’ tools like these may lead to hyper-active cyber attacks and damaging results for the internet.

Enjoy your read? Check out our other content here.