Through the backdoor ! Chinese android handset problems.

Well it has been a while since the last post. I haven't really got too excited about anything in the news over the past few months, or had many new toys to play with until recently. Just to get things started I did find the story below quite interesting. Chinese Android handset,ZTE Score M has been found to have an application installed which acts as a backdoor to the operating system. The application has a hard coded password which gives root level access to the device. The password and instructions are readily available online. As of yet there is no proof of a remote exploit being possible, but it is very likely that software downloaded by the user could be coded in such a way to exploit the issue and give attackers access to your device. Still, so far not a big issue for the UK as it is only linked to handsets which were supplied by China to the US !!

Comments

Post a Comment

Popular posts from this blog

configuring the zmodo ZP-IBi-13W camera to work with Blue Iris Software.

Image
Off topic.......configuring the zmodo ZP-IBi-13W camera to work with Blue Iris Software. Many people have had issues getting these cameras to display video in any other sotware except the supplied z-viewer.  Here is how I got it working with the Blue Iris Software.  The settings may work with other software but have not been tested. Pre-Requisites First set the camera up using the instructions with the camera using zviewer and zsight software. You will need to find the cameras wireless ip address.   If possible set this statically by connecting to the cameras IP address using internet explorer.   .. http://ip-of-camera.. .   Note it does not work with Firefox of chrome. Once working you need to install Blue Iris Software on a machine which can contact the cameras.   Usually this will be sitting on the same network but it will work over a router network providing   the required ports are allowed Blue Iris Installation Load up the Blue Iris Software and Add a new camer
Read more

Apple MAC Fake Virus Alert

Similar to the windows fake AV alerts, MAC users have now been targeted with a fake AV scam. After visiting an infected site, the software scans the users hard disk and reports on viruses found. Users are then given the opportunity to purchase remedial AV software, thus parting with credit card information. The trick here is that is can masqurade as the legitimate MAC Defender application making the users less suspicious about the warnings. Apple Mac users have been adviced to disable a setting in the Safari browser that allows "safe" files to be automatically installed. Full details on removing and preventing this malware can be found here. Apple MAC Malware Removal
Read more

Fortinet releases 5.6 FortiOS for Fortigate but Analyzer users should not upgrade yet.

The new release of FortiOS has been around for several weeks now, however many users are realising that they cannot continue to use their FortiAnalyzer running the 5.4 code.  It needs to be upgraded to 5.6 on the Analyzer as well. One problem is that we are still waiting for 5.6 for FAZ.  Therefore people are downgrading. In all fairness the FAZ compatibility guide is quite clear but why release one without the other.
Read more