Security Blog

August 2014 Issue of Security Newsletter is available now: /my_url/en/newsletter/1408   Cover Story Point of Sale (POS) Systems' Servers in Hong Kong Likely Infected by Malware Hong Kong Security Watch Report (Q2 2014) Hot Topic ...

  Favourite Security Reads of the Week (25 July 2014)   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to hkcert@...

  Adapted "System recepcyjny HORECA13" by Travelarz   POS malware infection uncovered in Hong Kong   In the past 6 months, security vendors FireEye [1] and ArborNetwork [2] released reports on point of sale (POS) malware, which mentioned that IP...

  Favourite Security Reads of the Week (18 July 2014)   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to hkcert@...

  Favourite Security Reads of the Week (11 July 2014)   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to [email protected].    Below is the Favourite Security Reads of this Week.    萬物聯網 (IoE)安全趨勢:駭客經由銷售櫃台 (POS) 系統發動大規模資料外洩奇襲 (趨勢科技, 10 July 2014, Chinese)Facebook...

  Favourite Security Reads of the Week (4 July 2014)   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to hkcert@...

July 2014 Issue of Security Newsletter is available now: /my_url/en/newsletter/1407   Cover Story GameOver Zeus Botnet Detection and Cleanup in Hong Kong Understand Heartbleed flaw on Mobile devices Hot Topic Hong Kong Google Play Store's Apps Security...

  Favourite Security Reads of the Week (27 June 2014)   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email to hkcert@...

  Hong Kong Computer Emergency Response Team (HKCERT) Coordination Centre cooperates with the National Institute of Network and Information Security (NINIS) for detecting malicious and suspicious behaviors of Apps from the Google Play Store, in order to study the security risk of apps in the Google Play Store in Hong Kong area. NINIS provides us analyzed result, and we collate the detection result and publish security alerts to the public.   In the report of June, we have downloaded 131 apps from Play Store, where 7 apps have been identified as high risk. None of them was removed from Play Store (on or before 23-June). The detail of report is shown as follow.   Target scope Top 50 Free Applications in Hong Kong area Top 50 New Free Applications in Hong Kong area  (Top 27 Apps were returned in this query.) Top 50 Free Games in Hong Kong area Top 50 New Free Games in Hong Kong area  (Top 42 Apps were returned in this query.)   Scanned Apps Successful downloaded and scanned: 131 apps Unable to download via the system: 38 apps Downloaded date: 5-June 2014 List of the downloaded apps: "Appendix 1" [download]   Analysis Overview   In this analysis, 131 apps were scanned for bad behaviors. Based on the level of security threat, the apps were divided into 2 categories: apps with malicious and apps with suspicious behaviors. Malicious behavior refers to apps having malicious purpose explicitly, which could cause direct harm to systems and users' interests. Suspicious behavior refers to apps having behavior, which could cause direct harm to systems and users' interests, but no malicious behavior can be explicitly identified.   1. Scanning Result   Among the 131 scanned apps, 7 apps were identified as security high risk. These 7 Apps were identified with the following high risk behavior signatures Android.Trojan.Generic, Android.Adware.AirPush, ApplicUnwnt, Android.Adware.Admogo, Android.Adware.Youmi, Android.Adware.Adwo, and Android.Adware.SmsReg.   List of security high risk apps   Application High risk behavior signature / Ad plug-in Malware detection ratio by VirusTotal Status # 1. 金庸小說全集    (v1.7.6) Category: New Free App Installs: 10,000-50,000 High risk behavior description: obtain SIM serial number, obtain SIM status, obtain device ID, connect to...

  Favourite Security Reads of the Week (20 June 2014)   "Favourite Security Reads of the Week". Each week we share five news or articles that we like. We hope you will love this column and we welcome your comment via email...