A new FakeUpdates campaign targeting WordPress sites has been detected
20/03/2024Over the past few weeks, a new wave of the FakeUpdates malware, also known as SocGholish, has been detected, aimed at WordPress websites. The objective is to lure users into downloading remote access trojans, allowing attackers to take control of their systems. Since its emergence in 2017, FakeUpdates has been one of the most recurring malicious software in the cyber threat landscape. It has previously been associated with cybercriminal groups like Evil Corp, who monetize its use by selling access to infected systems. In this new campaign, cybercriminals are using JavaScript to target WordPress web pages, compromising compromised administrator accounts to introduce altered versions of WordPress plugins. These adulterated versions deceive users into downloading remote access trojans, granting attackers full control over infected devices. What is the most popular type of malware? In addition to the FakeUpdates attack, the threat index from Check Point Research, whose researchers have warned about this new attack, reveals around 200 suspicious content websites directed by ransomware groups. They utilize double extortion tactics to pressure victims into paying immediate ransoms. These attacks have impacted many companies, with the Lockbit3 ransomware being the most utilized by cybercriminals, followed by Play and 8base. The most exploited vulnerabilities by malicious actors include 'Web Servers Malicious URL Directory Traversal,' 'Command Injection Over HTTP,' and 'Zyxel ZyWALL Command Injection,' affecting numerous companies worldwide and allowing attackers to access and manipulate files or execute commands on compromised systems. In Spain, despite a 7% decrease in malware attacks in February, the most sought-after malware includes FakeUpdates, Qbot, and Pandora. In the case of FakeUpdates, it has affected 11.9% of companies in Spain. Mobile Malware In the realm of mobile devices, Anubis remains the most utilized malware in Spain, followed by AhMyth and Hiddad, all designed to compromise the security and privacy of Android device users by collecting confidential information and executing malicious actions.
[ ... ]
Ip Location, the tool to know my ip location
If you need to check what location your internet provider is sharing with the websites you visit, with our IP locator you can instantly geolocate your IP address or any other that you enter manually. To geographically locate the IP address, you only need to be connected to the internet. If you use VPN software or connect through a proxy to locate IP address you can also use our tool. None of the data generated by the IP locator is stored in our system. @Mapa@ How can I hide my IP address so that it cannot be traced? To anonymously browse the Internet and avoid being located through the IP of your connection, there are two basic ways to do it. The first is to hide IP so that no one will be able to track our presence on the network or access our browsing data and the second is to change IP and browse through another IP address whenever we need to. Why do I need to locate my IP geographically? Locating your IP geographically is the best way to find out what data our ISP shares about the location of our connection. Depending on this location. a website whose URL is ".com" will change to "/es" if we connect from Spain, for example, and some tasks related to the sending of forms will be simplified, as they will be automatically pre-filled with some data such as your country or city, depending on your geolocation IP. As users with a geolocation IP tool such as the one we offer in Cuál es mi IP, we can manually enter an IP address and find out, for example, from where we have received a fraudulent email, if we have had access before, of course, to the IP address involved Can anyone find out my home address with an IP geolocation tool? By using a tool to locate an IP address, you can trace the IP and geolocate it through coordinates on the map, but the specific postal address is never provided. This is because our IP address is not ours, but rather our Internet Service Provider's (ISP's). So what data can they find out about me with IP geolocation? When locating the IP geographically. the only information about us that is provided is the country and city from which we are connecting, since the GPS coordinates of altitude and latitude that are shown correspond, in reality, to those of the headquarters of the company that is offering us the Internet connection service. The reason behind this is that all data related to the actual geographic address of the device used to access the Internet, i.e. our router, is not public and belongs to our ISP, which can only disclose it by court order. Why are companies interested in locating my IP address geographically? Information is power and for a company to know from where its potential customers connect is an important advantage to design marketing strategies aimed at the customer profile of a particular geographical area or country. In addition, in terms of anti-fraud, e-commerce companies can improve card payment security by identifying payment attempts from suspicious IP addresses. What is an IP address? An IP address is a special numerical combination assigned to an internet-connected device to be identified on the network. All intelligent devices need an IP address to access the Internet and interact on the network. Each device connected to the Internet has its own an individual IP address. When we access the Internet, the servers recognize our device through its IP address, allowing the two-way communication with the recipient. As we are identified with our IP address, the rest of devices can order a return response, without mistake the sender. Making a simile, an IP address would be the address that we use to write on the back of an envelope. This information identifies us as issuers and also as recipients of the return answer. To make possible this data exchange, the IP protocol was established as a set of universal rules for all the Internet operations. That means that all devices connected to Internet or to a home network, "speak" the same language and they are able to communicate each with the others. There are two types of IP address, the external IP and the local IP: • The external IP or public IP is the numerical combination address assigned to us by our Internet service provider (ISP). This public IP identifies us as Internet users when we are connected. If you want to find the IP of your computer, your tablet or your Smartphone, you can find out this immediately by accessing the home page of “What is my IP” or using our speed test service that, in addition to this information, will inform you about the quality of your Internet connection. • The local IP address or internal IP is the one the router assign to all the devices connected to him and identifies each of these devices, individually, in the home network. How to locate an IP address? If you want to know how to find out where an IP address is from, you should know that it is not always easy to find out the IP origin of a connection, because there are different systems to hide the IP. Some users use these systems for security reasons or to simulate, for example, their IP location in another place and thus have access to Internet services not enabled in the place where they are located. Now, if the user does not use any resource to mask the IP, find out the IP of the computer or any other device connected, for example, to our website, it is as simple as use IP geolocation services such the one offered in “What is my IP?” and you will immediately find out the IP origin of any computer that you are interested in track. Knowing the IP location of our clients is an advantage when we are designing, for example, our marketing strategies and a good tool, also, to improve network security, as it allows us to locate suspicious IP addresses. In addition, with the IP geolocation service you can also verify the location that your Internet provider shares about you. It should be clarified that this location provided by IP geolocation services is never the specific address of our home or where we are located. The data actually are from the operator node in our area that is offering us the connection service to the internet network Therefore, the geolocation information will be the country and city from where the connection is made, but not the address where the user is located, because this specific tracking of the user address is protected by law and this data can only be provided by court order.
[ ... ]
WiFi Security: Assessment of threats in wireless networks
08/03/2024Wifi connectivity has gone from being limited to restricted environments to becoming omnipresent in virtually every aspect of our daily lives. The ability to connect to the Internet from anywhere, be it at home, in a café, at work, in public spaces, or even in-flight, has enhanced the convenience in our daily lives. Moreover, the expansion of Wifi networks and the use of new manufacturing technologies now allow the interconnection of devices, leading to the significant rise of the Internet of Things (IoT) and providing users with more comprehensive control over their digital environments. However, this proliferation of Wifi networks has also given rise to new threats that require careful evaluation and effective security strategies to ensure secure and risk-free Wifi connections for our data and information. Common Wifi security threats include data interception Man-in-the-Middle (MITM) attacks One of the fundamental challenges in Wifi security is preventing MITM attacks, where an intruder inserts themselves into the communication between two parties, compromising the integrity and confidentiality of sensitive data such as passwords and financial information. Spoofing of access points Hackers can create fake Wifi networks that mimic legitimate ones to attract unsuspecting users. Once connected to these malicious networks, our data can be captured by cybercriminals who may sell or misuse it for illicit purposes. Tips for achieving a secure Wifi connection: Strengthen authentication and use security protocols Prioritize strong encryption for networks to protect confidential information transmitted through it. WPA (Wifi Protected Access) encryption uses stronger algorithms than its predecessor, WEP (Wired Equivalent Privacy), making it more difficult for hackers to intercept and decipher data. Advanced security protocols like WPA3 provide individualized data encryption and advanced two-factor authentication (2FA) methods, adding an extra layer of security by requiring additional verification. Device management Properly manage and monitor devices connected to Wifi networks to minimize risks associated with the large number of connected devices in homes and businesses. Regularly update the router firmware and all connected devices to address potential vulnerabilities. Segmentation of the network to separate critical devices from less secure ones also helps mitigate the risk of threat propagation. Secure Router Configuration The router secure configuration is what will ensure the robustness and overall security of a wireless network. The router, being the first point of contact for devices connected to the Internet, acts as the first line of defence against potential attacks. For this reason, it is important to understand that the proper configuration of the router not only guarantees a stable and efficient connection but also establishes a protected environment that safeguards the integrity and privacy of our data. How to configure the router securely? To ensure a correct and secure configuration of the router, it is recommended to: Change the default username and password of the router, as these are easily accessible to attackers. Use strong passwords containing a combination of letters, numbers, and special characters. Disable remote administration to prevent cybercriminals from accessing the router externally. Enable WPA2 or WPA3 encryption instead of the outdated WEP for enhanced network security. Optionally, disable SSID broadcast to make the network less visible and harder to detect by hackers. Keep the router firmware updated to address vulnerabilities and improve overall device security. By following these steps, you will strengthen the security of your wireless network and reduce the chances of experiencing unwanted attacks or intrusions.
[ ... ]
Privacy Policy
Esta política de privacidad aplica a todos los contenidos de este sitio web y que sean publicados por Dommia Design Studio. Si usted tiene alguna consulta sobre cómo usamos su información personal, por favor contacte con nuestro responsable de privacidad en [email protected]. Según lo establecido en el RGPD (Reglamento (UE) 2016/679), les proporcionamos la Información Detallada de Protección de Datos que se expone a continuación: Responsable: Dommia Design StudioRazón Social: Dommia Design Studio SLC.I.F.: B-66440581Dirección: c/ Lepant, 326, Entlo, Desp 3 - 08025 - BarcelonaTeléfono: 936 241 455Correo Electrónico: [email protected] Inscrita en el Registro Mercantil de Barcelona Tomo: 44619, Folio: 176, Hoja: 461387, Inscripción: 1 Información que recopilamos y con qué objetivo Esta sección detalla la información que podemos recoger sobre usted. Explicamos por qué y cómo lo utilizamos en secciones posteriores. Información que obtenemos a través de cookies y herramientas similares Utilizamos cookies (y tecnologías similares) y herramientas de análisis en nuestros sitios para recopilar información sobre usted. Esta información se puede utilizar para mejorar el rendimiento del sitio y mejorar la experiencia de usuario. Proporcionamos información detallada sobre cookies y tecnologías similares dentro de nuestra Política de Privacidad; algunos ejemplos incluyen: Su ubicación: utilizamos cookies para mostrar información del lugar más relevante para su ubicación. Su uso: utilizamos cookies para entender como nuestros clientes utilizan nuestros sitios. El dispositivo: utilizamos cookies para entender el tipo de dispositivo que está utilizando para mostrarle la mejor versión del sitio. Si desea administrar sus cookies, siga las instrucciones de la sección "Cómo gestionar las cookies" dentro de nuestra Política de Privacidad. Información que obtenemos a través del formulario de contacto Datos de contacto: nombre y correo electrónico. Web Beacons Utilizamos web beacon en nuestras páginas web y nuestros correos electrónicos. Cuando enviamos correos electrónicos a los miembros del boletín de noticias, podemos hacer un seguimiento del comportamiento como quien abrió los correos electrónicos y quien hizo clic en los enlaces. Esto nos permite medir el rendimiento de nuestras campañas de correo electrónico y mejorar nuestras características para determinados segmentos de miembros. Fundamentos legales para el procesamiento Solo tratamos información personal cuando tenemos su consentimiento de usuario: es decir, cuando nos ha dado permiso explícito para procesar información personal para un fin determinado. Por ejemplo, si completa uno de nuestros formularios de comunicación, le solicitaremos su consentimiento si quisiéramos utilizar su información personal para cualquier otro propósito. Usted tiene el derecho de retirar este consentimiento en cualquier momento. Puede administrar sus preferencias contactando con nuestro Delegado de Protección de Datos en [email protected]. ¿Cómo utilizamos su información personal? Recopilamos información personal por una razón principal, para mejorar y mantener el rendimiento de nuestro sitio web y poder brindarle la mejor experiencia de usuario posible. Recopilamos información personal por dos motivos principales: Mejorar y mantener el rendimiento: para proporcionarle la mejor experiencia de usuario posible, debemos asegurarnos de que nuestros productos y servicios funcionan como deberían ser. Comunicar cambios y ofertas de productos: queremos que obtenga el máximo rendimiento de nuestros productos o servicios, incluyendo mostrar nuestros últimos contenidos y boletines informativos. Puede cambiar sus preferencias en cualquier momento contactando a nuestro oficial de privacidad a [email protected]. ¿Con quién compartimos su información personal? No divulgamos su información personal a ningún tercero a menos que lo exijan las leyes aplicables, órdenes judiciales u otros procesos legales válidos. ¿Cuánto tiempo conservamos su información personal? Un resumen de la duración de su información personal: Categoría de datosEjemploPeríodo RetenciónJustificación del Período Comercial Clientes Hasta 5 años después de la resolución de cualquier relación comercial Para informar de nuestros productos y servicios Comercial Formulario de contacto Hasta 5 años después de la resolución de cualquier relación comercial Para informar de las peticiones realizadas por el usuario Marketing Newsletter Hasta que exprese su negativa a que sea enviada Para informar de nuestros productos y servicios Los datos se almacenarán el tiempo estrictamente necesario exclusivamente para el desempeño de sus competencias legalmente establecidas. A veces es necesario que guardemos su información personal por períodos más largos, por ejemplo: Si existe un requisito legal para retenerlo; Si requerimos la información por razones legales o existe una necesidad legítima para que la retengamos; Para garantizar que no nos comuniquemos con usted si nos ha pedido que no lo hagamos. ¿Cómo mantenemos su información personal segura? Contamos con las medidas de seguridad técnicas y organizativas adecuadas para garantizar que la información de nuestros usuarios esté protegida contra el acceso, uso, alteración o pérdida no autorizados o accidentales. Sus derechos Según las leyes de protección de datos, tiene derechos en relación con sus datos personales que gestionamos. Estos derechos incluyen: El derecho de oposición al márquetin directo; El derecho de acceso a los datos personales que procesamos sobre usted; El derecho a solicitar la eliminación de sus datos personales; El derecho a solicitar la rectificación de sus datos personales. Puede ejercer estos derechos contactando a nuestro oficial de Privacidad en [email protected]. ¿Dónde se aplica esta política de privacidad? La información personal recopilada por el CLIENTE. Nuestro sitio web puede contener enlaces a sitios web de terceros que no están sujetos a esta política de privacidad. No somos responsables de su contenido, uso de información personal o prácticas de seguridad. Si tiene una consulta sobre el tratamiento de su información personal, comuníquese con nuestro oficial de Privacidad en [email protected]. Cambios en esta política de privacidad Esta política es efectiva desde el 24/05/2018. Cualquier cambio que hagamos a esta política de privacidad se publicará en esta página, explicitando la fecha del último cambio.
[ ... ]
Hungary Proposes Orchestrated Attacks Against Illegal IPTV Platforms
23/09/2022Television operators in Hungary have come together in an unprecedented common front in the country to combat illegal Internet IPTV platforms.The objective is to put end to the unfair competition from these services and to do it they propose launching denial-of-service (DDoS) attacks against the websites that host them.In order not to incur in the legality, the television stations would entrust these attacks to an organization that would act with legal authorization and under official levels of supervision and control.Upon receiving continuous DDoS attacks, the pirate platforms would be overwhelmed by malicious traffic and the hope of the television stations is that the inconvenience that would be shared by getting their services active again would make them rule out continuing their operations.
[ ... ]
How to know if Pegasus has infected our mobile
05/05/2022The news of recent weeks, in which it is claimed that the Pegasus espionage program has been used to enter the mobile devices of Spanish politicians, has put a lot of people on alert. Pegasus is a malicious software that, once introduced on a device, has the ability to collect information and transmit it to an external entity without the consent or knowledge of the owner of the device, be it a mobile phone, a computer or a tablet. Pegasus also erases its trail after it is installed. Among its main features, it also stands out that Pegasus is capable of detecting who the owner of the device has been with. Pegasus also, can send and recive messages autonomously and recording conversations by manipulating the attacked mobile, computer or tablet. The two ways that this spy program uses to enter on a devices is through an SMS or a fraudulent link and, according to experts, despite the fact that it is a very difficult spyware to detect, there are some signs that can make us suspect that we have been infected. Overheating or slowdown of the system are two of the main ones, but also the fact that the battery life is decreasing or that there is excessive data consumption when we are not using the device. How to make it difficult for Pegasus To try to avoid being infected by Pegaus or by any other malware, the director of Systems Engineering at Fortinet from Spain and Portugal, José Luis Laguna, in statements collected by Europa Press, recommends taking extreme precautions and a make a double-checking when personal and confidential information is provided. In addition, the Fortinet expert explains that instead of clicking on the link that we have received, to verify that it is legitimate, it is recommended to write the address of the site in the web browser, even though this means taking an additional step and not accessing directly to this service. Using protection 'software' based on behavior - EndPoint Detection and Response (EDR) -, keeping the system updated, avoiding public Wi-Fi connections and checking the permissions granted to applications, are other precautions that are also recommended.
[ ... ]
Apple take distances itself from the Metaverse
07/02/2022Unlike many other companies, it seems that Apple looks suspiciously at everything that has to do with virtual worlds and according to Bloomberg analyst Mark Gurman, who is specializes in this company, Apple would have ruled out the idea of a virtual world for the time being where users can get away all day. Gurman assures that he has been told "fairly directly" that the Metaverse idea is "out of bounds" . This, however, does not mean that Apple is losing ground in the virtual world and if plans continue as they are, this company will most announce its first virtual and augmented reality headset this year. Apple's viewer would be mixed reality and would focus on video games, communication and content consumption.
[ ... ]
Spain at the head of the countries that receive most "spam"
18/11/2021Once againt, the latest Kaspersky report points Spain, for the seventh consecutive quarter, as the country where users receive more malicious email. According to the report by the IT security company, Spain has received 9.55% of the world's total of this type of attack during the months of July, August and September, which means an increase of one point compared to the previous quarter. In the ranking of countries that receive most “spam”, Spain is followed by Russia, with 6.52% of attacks, Italy with 5.47%, Brazil with 5.37% and Mexico with 4. 69%. According to this same report, the main origin of these malicious emails is Russia, 24.9%, followed by Germany, 14.19% and China, 10.31%.The large amount of these “spam” emails during this last quarter have been related to “phishing” pages
[ ... ]
A fraudulent email simulates a WhatsApp Backup and installs a Trojan
29/09/2021WhatsApp users, Internet users' associations and also some police officers have alerted through social networks about a new virus that arrives by email with the subject "Backup of WhatsApp messages. This email offers a link to download the history of conversations in this application, which should not be clicked if you don’t want to install a Trojan on your device. The message arrives with the same appearance and usual colors of WhatsApp and provides supposed information about the number of messages deleted, restored and read through the application, looking like a real information and causing confusion in the victims If we receive the message but we don`t use the link, the Trojan will not run and we only need to delete the message to get rid of the virus. But if we have opened the link, or downloaded and opened the zip file that arrives in some emails, then the device will be infected, and we will need to use an antivirus to detect the malicious software and destroy it.
[ ... ]