Connect with us

Featured

More fake apps found in Google Play store

Another set of fake finance apps has found its way into the official Google Play store, this time the apps have impersonated six banks from New Zealand, Australia, the United Kingdom, Switzerland and Poland, and the Austrian cryptocurrency exchange Bitpanda.

Published

on

Figure 1 – Six of the malicious apps found on Google Play

How do the apps operate?

While the apps don’t follow one common procedure, upon launch they all display forms requesting credit card details and/or login credentials to the targeted bank or service (examples can be seen in Figure 2). If users fill out such a form, the submitted data is sent to the attacker’s server. The apps then present their victims with a “Congratulations” or “Thank you” message (an example can be seen in Figure 3), which is where their functionality ends.

Figure 2 – Bogus forms phishing for credit card details and internet banking login credentials

 

Figure 3 – Final screen displayed by one of the malicious apps

How to stay safe

If you suspect that you have installed and used one of these malicious apps, we advise you to uninstall them immediately.

Also, change your credit card pin codes as well as internet banking passwords and check your bank accounts for suspicious activity. If there have been unusual transactions, contact your bank. Users of the Bitpanda cryptocurrency exchange who think they have installed the fake mobile app are advised to check their accounts for suspicious activity and change their passwords.

To avoid falling victim to phishing and other fake financial apps, we recommend that you:

  • Only trust mobile banking and other finance apps if they are linked from the official website of your bank or the financial service
  • Only download apps from Google Play; this does not ensure the app is not malicious, but apps like these are much more common on third-party app stores and are rarely removed once uncovered, unlike on Google Play
  • Pay attention to the number of downloads, app ratings and reviews when downloading apps from Google Play
  • Only enter your sensitive information into online forms if you are sure of their security and legitimacy
  • Keep your Android device updated and use a reliable mobile security solution; ESET products detect and block these malicious apps as Android/Spy.Banker.AIF, Android/Spy.Banker.AIE and Android/Spy.Banker.AIP

Continue Reading

Featured

Get your passwords in shape

New Year’s resolutions should extend to getting password protection sorted out, writes Carey van Vlaanderen, CEO at ESET Southern Africa.

Published

on

Many of us have entered the new year with a boat load of New Year’s resolutions.  Doing more exercise, fixing unhealthy eating habits and saving more money are all highly respectable goals, but could it be that they don’t go far enough in an era with countless apps and sites that scream for letting them help you reach your personal goals.

Now, you may want to add a few weightier and yet effortless habits on top of those well-worn choices. Here are a handful of tips for ‘exercises’ that will go good for your cyber-fitness.

I won’t pass up on stubborn passwords

Passwords have a bad rap, and deservedly so: they suffer from weaknesses, both in terms of security and convenience, that make them a less-than-ideal method of authentication.  However, much of what the internet offers is independent on your singing up for this or that online service, and the available form of authentication almost universally happens to the username/password combination.

As the keys that open online accounts (not to speak of many devices), passwords are often rightly thought of as the first – alas, often only – line of defence that protects your virtual and real assets from intruders. However, passwords don’t offer much in the way of protection unless, in the first place, they’re strong and unique to each device and account.

But what constitutes a strong password?  A passphrase! Done right, typical passphrases are generally both more secure and more user-friendly than typical passwords. The longer the passphrase and the more words it packs the better, with seven words providing for a solid start. With each extra character (not to mention words), the number of possible combinations rises exponentially, which makes simple brute-force password-cracking attacks far less likely to succeed, if not well-nigh impossible (assuming, of course, that the service in question does not impose limitations on password input length – something that is, sadly, far too common).

Click here to read about making secure passwords by not using dictionary words, using two-factor authentication, and how biometrics are coming to web browsers.

Previous Page1 of 4

Continue Reading

Featured

Code Week prepares 2.3m young Africans for future

By SUNIL GENESS, Director Government Relations & CSR, Global Digital Government, at SAP Africa.

Published

on

On January 6th, 2019, news broke of South African President Cyril Ramaphosa’s plans to announce a new approach to education in his second State of the Nation address, including:

  • A universal roll-out of tablets for all pupils in the country’s 23 700 primary and secondary schools
  • Computer coding and robotics classes for the foundation-phase pupils from grade 1-3 and the
  • Digitisation of the entire curriculum, , including textbooks, workbooks and all teacher support material.

With this, the President has shown South Africa’s response to a global challenge: equipping our youth with the skills they’ll need to survive and thrive in the 21st century digital economy.

Africa’s working-age population will increase to 600 million in 2030 from a base of 370 million in 2010.

In South Africa, unemployment stands at 26.7 percent, but is much more pronounced among youths: 52.2 percent of the country’s 15-24-year-olds are looking for work.

As an organisation deeply invested in South Africa and its future, SAP has developed and implemented a range of initiatives aimed at fostering digital skills development among the country’s youth, including:

AFRICA CODE WEEK

Since its launch in 2015, Africa Code Week has introduced more than 4 million African youth to basic coding.

In 2018, more than 2.3 million youth across 37 countries took part in Africa Code Week.

The digital skills development initiative’s focus on building local capacity for sustainable learning resulted in close to 23 000 teachers being trained in the run-up to the October 2018 events.

Vital to the success of Africa Code Week is the close support it receives from a broad spectrum of public and private sector institutions, including UNESCO YouthMobile, Google, the German Federal Ministry for Economic Cooperation and Development (BMZ), the Cape Town Science Centre, the Camden Education Trust, 28 African governments, over 130 implementing partners and 120 ambassadors across the continent.

SAP’s efforts to drive digital skills development on the African continent forms part of a broader organisational commitment to the UN Sustainable Development Goals, specifically Goal 4 (“Ensure quality and inclusive education for all”)

A core component of Africa Code Week is to encourage female participation in STEM-related skills development activities: in 2018, more than 46% of all Africa Code Week participants were female.

According to Africa Code Week Global Coordinator Sunil Geness, female representation in STEM-related fields among African businesses currently stands at 30%, “requiring powerful public-private partnerships to start turning the tide and creating more equitable opportunities for African youth to contribute to the continent’s economic development and success”.

Click here to read more about the Skills for Africa graduate training programme, and about the LEGO League.

Previous Page1 of 2

Continue Reading

Trending

Copyright © 2018 World Wide Worx