Cyber Warfare - A New Era: October 2016

Tuesday, October 25, 2016

WhatsApp Video Calling.

WhatsApp being one of the most commonly used application across globe. It almost replaced the traditional message feature available in the phone and now after the launch of the calling feature many are using it. Recently WhatsApp announced a new feature.

WhatsApp being one of the End to End Encryption enabled application have billions of users. Now WhatsApp released the video calling feature to all its users with End to End Encryption.

This feature is available in the beta version so one has to register themselves as a beta tester and then can update their application through Play Store. Other way around is to use the APK Mirror of the WhatsApp beta version and use it.

To use Video Calling feature one has to press the same call button upon which the user will be provided with Voice Call, Video Call option and it is mandatory that the other use should also use the updated version to support voice call, otherwise it will throw an error.

There are many malicious APKs emerging to fool people it is highly recommended to download or update the applications using Play Store or download it from the official site.

P.S: The post is to create awareness and not to be misused.

Wednesday, October 19, 2016

Amazon Offers, Free Wifi, Lucky Prizes.

Before proceeding to the post it is the name of the post that attracts many and made them read the post to grab some offers or free wifi. It is the root cause for losing your private details (Passwords, Bank Account Number etc.). There has been a rapid increase in the number of cyber crimes recorded these days and they are not due to computer error but purely due to the user's mistake.

One such this that attracts everything is FREE OFFERS, In India Amazon has introduced Diwali Sale and its on full speed. Recently there has been a scam that is circulating around social platforms. You can see the picture below

The above link has a cloned site of Amazon.in where the users will be asked to enter the card details for the payment and then users card details are abused.

Another strategy is that to steal the credentials of Amazon website users it is accomplished by the following mail

This mail is one of the awesome work you can see the same amazon.com without any mistake. The only this is HTTP not HTTPS but the real site is something else which is hided within this link.

Why stealing card details indirectly lets steal it using their bank site. You wanna see that too ?

All the mistakes has been pointed out by one of the researcher. Upon clicking the link will steal your bank credentials.

Oh man come on lets install a malware in the victim's mobile so that one can monitor his/her activities 24*7. Wi-Fi is one of the essential thing everyone needed so just exploit them

Worst case, everyone is addicted to money so why cant steal the credentials by fooling them by telling one that you won huge money.

The pictures posted in this blog are pure malware and everything has been validated. The intention of the post is to avoid users from losing their credentials or information to these fake materials.

P.S: The post is to create awareness and not to create any negative impact.

Thursday, October 6, 2016

Secret Conversation on Facebook Messenger.

Eavesdropping and spying is one of the most common issue in Cyber space and many people are concerned about their privacy. Cryptography solves this problem to atmost extent by providing Encryption. Recently another giant rolled out Encryption feature.

Apple incorporated End to End Encryption in iMessages, then WhatsApp rolled out End to End Encryption for its users. Now Facebook messenger supports End to End Encryption for its users.

It is labelled as "Secret Conversation" in Facebook messenger and users with updated app version can use this. To enable End to End Encryption

Open Existing Conversation and click on Information icon and enable "Secret Conversations". Once enabled the chat is Encrypted on channel. One thing to be noted is you cant send gif, video through Secret Conversations.

Another thing is that these providers are storing the Metadata about the chat which will be revealed when law enforcement asks for it.

The End to End Encryption on Facebook messenger is based on Signal Protocol. If you are so keen that not even your metadata should be revealed then you have to use Signal app which provides more privacy than these applications.

P.S: The post is to create awareness and not to create any negative impact.

Tuesday, October 4, 2016

Hack a computer with an image.

Taking control over computer is a real time challenge for hackers these days. Hacking a computer is a tedious job if configured properly but the only way one can gain access is to use the well known weak link.

Users are considered to be the weakest link in the cyber domain because one cant change the functionality of the system if configured well and in operation, whereas user who operate the system can do anything and has no restrictions.

There is a separate section known as Social Engineering which exploits human trust and therby taking control over computer or device.

Consider you are receiving an email stating "You have won 3.5 crores as prize and to redeem fill the form" 5 out of 10 will give away details as per survey conducted. Even a blank PDF file can be a malware in cyber space.

It is now JPEG as it is easy to transmit and easy to fool users. Using malicious JPEG an attacker can take control over your system. Best way to spread Ransomware is to send malware through email attachment.

Many are falling to Ransomware these days it is recommended to have a backup of files always. Use offline storage or Cloud storage to save sensitive data.

Users are recommended not to open email from unknown sources and simply delete them if it contains any attachment in any form (PDF, JPEG, DOC). Even a doc file with macro enabled can harm your system.

P.S: The post is to create an awareness and not to create any negative impact.