Home Tags Backdoor

Tag: Backdoor

backdoor is a method, often secret, of bypassing normal authentication in a product, computer system, cryptosystem or algorithm etc. Backdoors are often used for securing unauthorized remote access to a computer, or obtaining access to plaintext in cryptographic systems.

A backdoor may take the form of a hidden part of a program, a separate program (e.g. Back Orifice may subvert the system through a rootkit), or may be a hardware feature. Although normally surreptitiously installed, in some cases backdoors are deliberate and widely known. These kinds of backdoors might have “legitimate” uses such as providing the manufacturer with a way to restore user passwords.

Default passwords can function as backdoors if they are not changed by the user. Some debugging features can also act as backdoors if they are not removed in the release version.

In 1993 the United States government attempted to deploy an encryption system, the Clipper chip, with an explicit backdoor for law enforcement and national security access. The chip was unsuccessful internationally and in business.

Honeypots and the Internet of Things

According to Gartner, there are currently over 6 billion IoT devices on the planet. Such a huge number of potentially vulnerable gadgets could not possibly go unnoticed by cybercriminals. As of May 2017, Kaspersky Lab’s collections included several thousand different malware samples for IoT devices, about half of which were detected in 2017.

Nigerian phishing: Industrial companies under attack

In late 2016, the Kaspersky Lab Industrial Control Systems Cyber Emergency Response Team reported on phishing attacks that were primarily targeting industrial companies from the metallurgy, electric power, construction, engineering and other sectors.

As further research demonstrated, this was just part of a bigger story that began much earlier and is unlikely to end any time soon.

Georgia’s voting system is uniquely vulnerable to election-tampering hackers

Report uncovers a litany of lapses in voting system used state wide.

Telegram chat app founder claims spooks offered backdoor bribe

Pavel Durov flings Twitter dooky at rivals Signal, says US govt funds their encryption The founder of chat app Telegram has publicly claimed that feds pressured the company to weaken its encryption or install a backdoor.…

Telegram chat app founder claims Feds offered backdoor bribe

Pavel Durov flings Twitter dooky at rivals Signal, says US govt funds their encryption The founder of chat app Telegram has publicly claimed that feds pressured the company to weaken its encryption or install a backdoor.…

SambaCry is coming

Not long ago, news appeared online of a younger sibling for the sensational vulnerability EternalBlue.

The story was about a new vulnerability for *nix-based systems – EternalRed (aka SambaCry). On May 30th our honeypots captured the first attack to make use of this particular vulnerability, but the payload in this exploit had nothing in common with the Trojan-Crypt that was EternalBlue and WannaCry.

Banking trojan executes when targets hover over link in PowerPoint doc

Novel infection method doesn't require link to be clicked.

You’ll never guess where Russian spies are hiding their control servers

Turla uses social media and clever programming techniques to cover its tracks.

This adware created a backdoor into 250 million PCs, say researchers

250 million machines are infected with revenue-generating Fireball adware which is also able to run any code on a victim computer.

There’s new evidence tying WCry ransomware worm to prolific hacking group

Common tools, techniques, and infrastructure make link "highly likely."

IT threat evolution Q1 2017. Statistics

According to KSN data, Kaspersky Lab solutions detected and repelled 479,528,279 malicious attacks from online resources located in 190 countries all over the world.

File antivirus detected a total of 174,989,956 unique malicious and potentially unwanted objects.

IT threat evolution Q1 2017

Wersquo;ve become accustomed to seeing a steady stream of security breaches month after month; and this quarter has been no exception, including attacks on Barts Health Trust, Sports Direct, Intercontinental Hotels Group and ABTA.