Google Study Finds Phishing a Bigger Threat for Users Than Third-Party Data Breaches

Google Study Finds Phishing a Bigger Threat for Users Than Third-Party Data Breaches

Phishing attacks via fake emails pose the greatest threat to people, followed by keyloggers and third-party breaches as account hacking increases globally, a new Google study has revealed.

Keystroke logging is a type of surveillance software that once installed on a system, has the capability to record every keystroke made on that system. The recording is saved in an encrypted log file.

According to Google, enterprising hijackers are constantly searching for, and are able to find, billions of different platforms’ usernames and passwords on black markets.

A Google team, along with the University of California, Berkeley, tracked several black markets that traded third-party password breaches as well as 25,000 blackhat tools used for phishing and keylogging.

“In total, these sources helped us identify 788,000 credentials stolen via keyloggers, 12 million credentials stolen via phishing, and 3.3 billion credentials exposed by third-party breaches,” Google said in a blog post late on Friday.

Account takeover, or ‘hijacking’, is a common problem for users across the web. More than 15 per cent of Internet users have reported experiencing the takeover of an email or social networking account.

“From March 2016 to March 2017, we analysed several black markets to see how hijackers steal passwords and other sensitive data,” said Kurt Thomas from Anti-Abuse Research and Angelika Moscicki from Account Security teams at Google.

The tech giant then applied the insights to its existing protections and secured 67 million Google accounts before they were abused.

“While our study focused on Google, these password stealing tactics pose a risk to all account-based online services. In the case of third-party data breaches, 12 percent of the exposed records included a Gmail address serving as a username and a password,” the blog post read.

Of those passwords, 7 percent were valid due to reuse. When it comes to phishing and keyloggers, attackers frequently target Google accounts to varying success: 12-25 percent of attacks yield a valid password.

However, because a password alone is rarely sufficient for gaining access to a Google account, increasingly sophisticated attackers also try to collect sensitive data that we may request when verifying an account holder’s identity.

“We found 82 percent of blackhat phishing tools and 74 percent of keyloggers attempted to collect a user’s IP address and location, while another 18 percent of tools collected phone numbers and device make and model,” Google noted.

“While we have already applied these insights to our existing protections, our findings are yet another reminder that we must continuously evolve our defences in order to stay ahead of these bad actors and keep users safe,” it added.

There are some simple steps people can take that make these defences even stronger.

“Visit Google’s Security Checkup to make sure you have recovery information associated with your account, like a phone number, and allow Chrome to automatically generate passwords for your accounts and save them via Smart Lock,” Google cautioned.


BlackBerry partners HCL to make bigger Distribution community for organisation

BlackBerry Partners HCL to Expand Distribution Network for Enterprise

Canadian phone maker BlackBerry on Friday announced its partnership with HCL Infosystems to increasethe channel and distribution community for BlackBerry organization software services and products in India.

by working with a longtime accomplice like HCL Infosystems in India, we aim to create increase for ourcompanions while giving our customers wider access to our leading suite of enterprise answers withworldclass guide, assisting corporations boost their mobility strategies,” stated Richard McLeod, vice president, international Channels at BlackBerry, in a announcement.

The partnership will decorate the availability of BlackBerry’s agency mobility portfolio to commercial enterprise customers by way of leveraging HCL Infosystems’ large pan-India network of business enterprise distribution partners.

as well as sales guide, clients may even have access to HCL Infosystems’ IT deployment aid and integration talents so as to assist them emigrate seamlessly or consolidate their organisation Mobilitycontrol (EMM) investments.

The partnership similarly strengthens HCL’s authentic gadget producers (OEMs) alliances byconsiderably expanding their employer software program portfolio with BlackBerry solutions.

further to promoting and supporting BlackBerry’s business enterprise software portfolio, HCL Infosystems may even provide valueadded services which includes technical guide and consulting.

down load the devices 360 app for Android and iOS to stay up to date with the cutting-edge tech news, product reviews, and distinctive deals on the famous mobiles.

Tags: Apps, BlackBerry, HCL, HCL Infosystems, Mobiles

Nintendo Posts bigger Quarterly Loss on bad sales

Nintendo Posts Bigger Quarterly Loss on Poor Sales

eastern video-recreation maker Nintendo Co. pronounced a JPY 24 billion ($216 million or roughly Rs. 1,434 crores) loss for January-March Wednesday, larger than the loss it mentioned the preceding 12 months.

Nintendo additionally said Wednesday that its new recreation platform codenamed NX may be releasedglobally in March next year. a few recreation fans had anticipated the gadget might be proven at theannual E3 electronics show in l. a. in June.

Quarterly income fell 26 percentage on-12 months to JPY 78.eight billion ($708 million or more or less Rs.4,703 crores) as distant places revenues were harm with the aid of a more potent yen. Nintendo racked up a nearly JPY 18 billion quarterly loss the preceding year.

The Kyoto-primarily based corporation in the back of Pokemon and super Mario video games saidWednesday it expects to recover to a JPY 35 billion ($314 million or more or less Rs. 2,086 crores) earningsfor the monetary yr ending in March 2017.

For the economic 12 months simply ended, it earned JPY sixteen.5 billion ($148 million), down 61percentage from the preceding economic year.

latest income of Nintendo’s Wii U gadget have lagged rivals Sony Corp.’s ps 4 console and Microsoft Corp.’s Xbox One, consisting of the key 12 monthsquit vacation buying season.

After years of scoffing at the chance from smartphones, Nintendo did an approximately face remainingyear and entered an alliance with japanese cell sport agency DeNA Co. to expand games for mobiledevices.

It stated its first app for smartphones known as Miitomo became doing properly considering the fact thatits release in March. The app features customizable avatars known as Miis, created the use of a telephonedigital camera after which outfitted with virtual fashions.

The momentum of Nintendo’s 3DS d1e51e9fa45a0b179488752ec4930123 recreation device hasdiminished amid opposition from other cell gadgets and a loss of hit recreation software for the 3DS.

Nintendo said it’s going to launch a first-rate Pokemon software sport for the 3DS called “Pokemonsolar/Pokemon Moon” globally in advance of the holidays later this year.

download the devices 360 app for Android and iOS to stay up to date with the today’s tech news, productevaluations, and exceptional deals on the popular mobiles.

Tags: 3DS, Apps, Gaming, Nintendo, Nintendo Wii U, Wii U

The Apple-FBI Fight May Be the First Salvo in a Bigger War

The Apple-FBI Fight May Be the First Salvo in a Bigger War

The Apple-FBI fight may just be the opening salvo in a broader war over encryption, as technology companies continue to lock up their users’ messages, photos and other data to shield them from thieves and spies – and, incidentally, criminal investigators.

WhatsApp, the globally popular messaging system owned by Facebook, has already run into trouble on this front in Brazil. WhatsApp encrypts all user messages in “end to end” fashion, meaning that no one but the sender and recipient can read them. Brazilian authorities arrested a Facebook executive earlier this month after the company said it couldn’t unscramble encrypted messages sought by police.

US officials are debating how to enforce a similar wiretap order for WhatsApp communications in a US criminal case, the New York Times reported . WhatsApp started as a way to exchange written messages over the Internet, but it has added services like photo-sharing and voice calling, while gradually building encryption into all those formats.

Spokesmen for WhatsApp and the Justice Department declined comment on the Times report, which said the wiretap order had been sealed to keep details secret. The Brazilian case is still pending, although the Facebook executive was released from jail after a day.

For now, US authorities and the tech industry are watching for the outcome of Apple’s legal battle against the FBI, which wants to force the company to help unlock an encrypted iPhone used by one of the San Bernardino mass shooters. But as more companies explore adding encryption, further confrontations are likely.

“I think we can say, without a doubt, there’s going to be more pressure on app-makers now,” said Nate Cardozo, staff attorney at the Electronic Frontier Foundation.

Cardozo said he’s aware of other recent cases in which US authorities have approached individual companies that use encryption and warned them that criminals or terrorists are using their services. Cardozo declined to name the companies, but said authorities have urged those companies to “try harder” – by redesigning their apps or providing other technical solutions that would let agents read the encrypted messages.

Tech companies say they don’t want to interfere with legitimate criminal investigations or national security matters. Instead, they argue they’re concerned about criminal hacking, privacy invasion and violations of civil rights.

“It’s the government’s job to protect public safety,” said Denelle Dixon-Thayer, chief legal and business officer at Mozilla, which makes the Firefox Web browser. “Our job in the tech sector is to support that goal by providing the best data security.”

While law enforcement authorities have chafed at tech companies’ use of encryption, national security officials have warned against weakening encryption. “We’re foursquare behind strong data security and encryption,” Defense Secretary Ash Carter told a tech audience this month. He drew applause when he added, “I’m not a believer in back doors or a single technical approach to what is a complex problem.”

Tech-industry encryption efforts expanded following 2013 disclosures by former National Security Agency contractor Edward Snowden that showed extensive government collection of Internet users’ data. The resulting controversy helped spur companies like Apple, Google, Facebook and Yahoo to step up their security efforts, although the companies say they already had those plans in the works.

“There was a fundamental shift in relationships after the Snowden revelations,” said Ed McAndrew, a former federal prosecutor now practicing law in Philadelphia, who said he has worked extensively with those companies on cybercrime investigations over the last decade. The companies felt “burned,” he said, “so they decided to improve the privacy of their products.”

WhatsApp, which boasts a billion users around the globe, first added encryption for its Android smartphone app in 2014. It’s been gradually incorporating similar protections into other services, including messages sent on iPhones and even some voice calls. Founder Jan Koum traces his concerns about data-security stem to his parents’ fear of government agents listening to phone calls in their native Ukraine.

While Apple uses similar end-to-end encryption for its iMessage service, some other leading messaging and email services do not. Google uses encryption extensively to foil outsiders who might try to read users’ data, but in many cases the company can access the data itself – and will turn it over to authorities when presented with legal orders.

Some newer messaging services, including Signal and Wickr, use end-to-end encryption. So does Telegram, which recently announced it has 100 million users around the world. The year-old messaging app Wire said this month that it’s adding similar protection for video communications.

More companies may follow suit as a result of the high-profile iPhone dispute, said Mozilla’s Dixon-Thayer. The controversy has raised public awareness of encryption, she said. “We might see even more demand from users.”

Download the Gadgets 360 app for Android and iOS to stay up to date with the latest tech news, product reviews, and exclusive deals on the popular mobiles.

Tags: Apple, Apple vs FBI, Apps, Encryption, FBI, Google, iPhone, Mobiles, Social