A mobile app testing scam, British teen arrested and security updates to watch for
Last week I told you about a telephone credit card scam with someone pretending to be from Visa who says they might have to remotely connect to your computer to investigate a suspicious charge. A security researcher on Tripwire warns of a similar scheme. In this case the attacker tries to dupe people through an email into installing an app called AirDroid on their mobile phones by saying they’re looking to hire an application tester. They promise to pay you through your credit card for taking the time to test the app. AirDroid is a legitimate app in the Google Play Store that allows someone to remotely access your device. But in this scam the goal is to get you to authenticate the app using a phony password provided by the attacker. When you tell the the scammer your credit card number and the bank money should be transferred to, the attacker uses the remote connection to get the bank to send money to him or herself. A couple of lessons: There’s no reason to have a remote connection app on any computing device. Your smart phone isn’t a toy. Don’t download everything. And no one offers you a job over the Internet without strings attached. In this case, costly strings.
U.K. police say a 19-year old British lad pleaded guilty last week to emailing bomb threats to schools in the United States and the U.K. this year. In fact, while he was on bail he sent in a bomb threat to an American airline. The teen was apparently a member of a group called the Apophis Squad, which also launched denial of service attacks against the free encrypted ProtonMail email service – a service which they also used. The Squad claimed they could never be found by police. But with the help of ProtonMail, British police and the FBI at least one of the gang was identified.
Finally, if you use the virtual private network software from Proton or Nord you should update to the latest versions. Virtual private networks or VPNs hide your computer’s address from snoopers and encrypts data between web sites. But researchers at Cisco Systems Talos threat intelligence service found new vulnerabilities. These have been patched by both software manufacturers. And if you use the Firefox browsers, security updates are now available for them as well.