PINDROP BLOG

Category: Device Security

February 13, 2017
Ransomware Gangs Have Become the High-Seas Pirates of the Internet
SAN FRANCISCO–As bad as the ransomware problem is right now–and it’s plenty bad–we’re likely only at the beginning of what could become a crisis, experts say. “Lots of people are being infected and lots of people are paying. The bottom line its it’s getting worse and it’s going to continue to do so,” Jeremiah Grossman,…
Read More →
February 1, 2017
Mirai, Google, and the Future of DDoS
OAKLAND–When the Mirai botnet burst onto the scene last year, it did so in style, with two of the largest DDoS attacks on record. One of the initial targets of its wrath was the site run by reporter Brian Krebs, and the attack set off a chain reaction that not only took the site offline…
Read More →
January 25, 2017
Lawmakers Push Bill to Study Vehicle Software Security
A new bill introduced in the House of Representatives Tuesday would force the federal government to perform a long-term study of the security and privacy controls of the software running in vehicles, including their navigation, entertainment and other systems. The bill is sponsored by Rep. Ted Lieu (D-Calif.) and Rep. Joe Wilson (R-S.C.), and it’s another…
Read More →
January 24, 2017
New HummingWhale Android Malware Emerges in Google Play
A new version of the nasty HummingBad malware that hit millions of Android users last year has appeared in a number of malicious apps in the Google Play store recently as part of a new ad fraud campaign. The new malware is known as HummingWhale and includes a new set of functionality that allows it…
Read More →
January 24, 2017
Apple Fixes iOS Kernel Code Execution Flaws
If you’re concerned about apps being able to run any code they want on your iPhone, you’re going to want to update iOS somewhat soon. Like, today. Apple on Monday released a new version of iOS that includes patches for several arbitrary code execution vulnerabilities, including two such flaws in the iOS kernel. There are…
Read More →
January 18, 2017
Google Details Scoring System for Potentially Malicious Apps
Google has introduced a number of different layers of security protection for Android devices recently, many of which are invisible to users. One of those protective measures is a scoring system that looks at how often a specific app has been downloaded and how many devices with the app are still checking in with Google’s…
Read More →
January 9, 2017
Details of Nexus 6 Bootloader Flaw Emerge
Details have emerged on one of the high-risk vulnerabilities that Google patched in last week’s Android Nougat update, a bug that could allow an attacker to force a phone into a special boot mode that then gives him access to extra functionality and the ability to intercept calls and take other actions. The vulnerability affects…
Read More →
January 6, 2017
FTC Files Complaint Against D-Link Over Router, Camera Security
D-Link didn’t “take reasonable software testing and remediation measures” to protect users of its routers and IP-enabled cameras, failed to protect the private keys that sign the software on those devices, and put thousands of consumers at risk of attack, according to a new complaint brought against the technology vendor by the Federal Trade Commission. In…
Read More →
January 5, 2017
Google Patches Dozens of Critical Android Flaws
The new version of Android Nougat released this week by Google fixes more than 70 vulnerabilities, including three remote code execution bugs and 29 critical flaws. As it has done for the last few months, Google released two separate patch levels in its January update, the Jan. 1 and Jan. 5 levels. The latter is the…
Read More →
January 4, 2017
FTC Offers $25K for IoT Security Ideas
The FTC has decided that IoT security is in such bad shape that the best alternative is to to offer the public a $25,000 reward for help fixing it. The commission is sponsoring a new contest that asks people to submit innovative ideas for improving the update process for IoT devices, which is virtually non-existent for…
Read More →