Hasta La Gadget!

Pacemakers save millions of lives, but a security researcher has shown that they can be used to kill on a massive scale as well. Speaking at the Breakpoint security conference, Barnaby Jack of IO Active reverse engineered a pacemaker transmitter – a device like this one used to monitor installed pacemakers – eventually enabling him to wirelessly deliver 830v shocks to a pacemaker using his laptop. Yikes.

Image Credit: Library Mistress

Even worse, Jack warned that a hacked transmitter could control all pacemakers within 30ft. Aside from jolting people, the compromised device could also be used to read and write patient data or load infected firmware into a pacemaker. These infected firmware could even be made to jump and infect other pacemakers, extending a malicious attackers’ range and possibly resulting to mass murder. Jack says he demonstrated this flaw in order to warn pacemaker manufacturers to step up the security of their device. Let’s hope they do.

[via SC Magazine via DVICE]

Nearly six months ago, Facebook launched the AV Marketplace, offering users access to antivirus applications. This morning, the company announced a deal with seven new partners: avast!, AVG, Avira, Panda, Kaspersky, Webroot, and Total Defense. In addition, Facebook’s existing partners McAfree, Norton, TrendMicro, Microsoft, and Sophos, are also now providing antivirus apps for mobile devices.

For PC users, the AV Marketplace offers Trend Micro Titanium Internet Security 2013 (free), avast! Free Edition, Avira (free), a 6-month subscription to McAfee Internet Security, a free trial of Norton AntiVirus, Total Defense Free with Free Cloud-Based Security Assessment, AVG Free 2013, Microsoft Security Essentials, a free 6-month subscription to Webroot SecureAnywhere 2013, a free subscription to Kaspersky PURE Total Security, and a 6-month subscription for Panda Internet Security 2013. Mac users can download Kaspersky Security for Mac, avast! Free Edition, Trend Micro Titanium Internet Security 2013, a free trial of Norton, Avira (free), and Sophos Anti-Virus for Mac Home Edition (free). Android users can grab either McAfee Mobile Security or Norton Mobile Security Lite for Android.

This is the latest move from Facebook on increasing user security. The company recently implemented a series of phishing protection mechanisms, as well as the launch of phish@fb.com, where users can report phishing attempts. In July, the company also launched malware checkpoints, and is using a URL blacklist system, which scans links and compares them with their partners’ databases to verify that they aren’t malicious.

According to Facebook’s announcement, “Effective security must be a cooperative effort; by adding these new partners to the Facebook Security family we are sure we can keep our community even better protected from threats both on Facebook and elsewhere on the web.” The company plans to announce new tools in the future. The products from these seven new partners, plus the new mobile apps, are available for download now.

[via Facebook]

Facebook expands AV Marketplace with 7 new partners is written by Brittany Hillen & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

Friday, the Internet Crime Complaint Center, more commonly known as IC3, released a warning concerning mobile malware. This warning comes in response to the growing number of malware that targets Android, potentially leaving users’ data and devices vulnerable. Following the warning is a series of safety tips aimed at helping consumers keep their mobile devices malware-free.

The report states, “The IC3 has been made aware of various malware attacking Android operating systems for mobile devices. Some of the latest known versions of this type of malware are Loozfon and FinFisher.” The report goes on to describe two pieces of malware. Loozfon steals information, while FinFisher is spyware that, once installed, can be used to monitor and take remote control of the mobile device it infects.

Back in August, Kaspersky Labs reported that malware targeting Android increased threefold in Q2 of 2012, with 14,900 new malicious programs added to its database. According to the report, nearly half of the items added to its database were “multi-functional trojans” that mined contact info from infected phones, such as names and phone numbers. Backdoor trojans accounted for 18% of the threats detected.

What can you do to help safeguard your Android device from malware? IC3 recommends turning off features on the phone that aren’t needed to “minimize the attack surface of the device,” using encryption, reviewing app publishers and reviews before downloading, and understanding the permissions you give an app, among a few others. The report recommends using a passcode as a first layer of security, and changing the settings so that the passcode is enabled after the phone is idle for a few minutes. While all the tips are fairly straight-forward, it’s good to keep them in mind.

[via CNET]

IC3 warns Android users about malicious malware is written by Brittany Hillen & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

If you thought SOPA was dead, well, you’d be mostly right. Its bloated corpse, however, has been resurrected by hacker puppeteers for the valiant purpose of scamming people out of their cash. More »

There’s some new malware preying on your PC, and you might not even realize is malware at all. More »