Quickhits: Tuesday Dec. 19 2018

Lexmark Printers: Well this can’t be good. Apparently there are over a thousand Lexmark printers ready for the taking, due to misconfiguration. They are sitting open and acessible on public internet. Researchers from Newsky Security reported finding these printers in businesses, universities and government offices. These printers have no passwords.  Which makes them easy pickings for a variety of attacks. A remote attackers can

” view the printer’s firmware version, ink levels, and network configuration that allows them to enable proxies, change administrator passwords, modify sound volume, contact information, device status, time, and date, create a self-signed certificate and private key and even upload documents and send jobs to the printer.”

Android Malware:  We know Android is the choice of attackers everywhere. Recommendations to purchase appas solely through Google Playstore don’t guarantee safety, but at least they lower the odds of infection. Now there’s anew trojan in town. Loapi hides behind adult content sites or antivirus solutions. The trojan forces users into a loop seeking device admin istrator privileges. It’s also equipped to defend itself against removal and blocks attempts.  According to Kaspersky, the malware creators

“have implemented almost the entire spectrum of techniques for attacking devices: the Trojan can subscribe users to paid services, send SMS messages to any number, generate traffic and make money from showing advertisements, use the computing power of a device to mine cryptocurrencies, as well as perform a variety of actions on the internet on behalf of the user/device. The only thing missing is user espionage, but the modular architecture of this Trojan means it’s possible to add this sort of functionality at any time.”

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s