Wednesday, July 15, 2020

Beware of malicious applications during the Pandemic by Dr Jassim Haji

The sudden increase in remote work that many companies have instituted over the past couple of months introduced a new set of cybersecurity risks to organizations. The fundamental problem: Communication that is entirely online makes it much easier for bad actors to use deception to gain access to systems. This type of hack, generally known as social engineering, relies on con artistry rather than code.

Cybercriminals typically try to take advantage of crises such as the coronavirus outbreak or other events with mass media coverage to spread malware for a variety of reasons, primarily for short- or long-term gains

There are malicious applications, masquerading as innocuous Coronavirus apps, that are designed to take control of Android devices. Once the malicious application is installed, a hacker takes intrusive control of the device via a remote shell, accessing a person’s calls, SMS, calendar, files, contacts, microphone and camera, in addition to write, add and send privileges.

The malicious applications are not found on Google Play Store, but are discovered in new Coronavirus-related domains, which researchers believed to be created specifically for the intention to deceive the masses by leveraging the fear circling Coronavirus. Most frightening is the speed and ease of which these device takeover apps can be created, and who can create it.

The origins of some of the malicious applications were crafted via Metasploit, a free-penetration testing framework that makes hacking simple. Using Metasploit, anyone with basic computer knowledge can craft the same malicious applications in just 15 minutes.

Some of additional advices I have for mobile users are:

  • Be cautious with signing into apps with social network accounts. Some apps are integrated with social network sites in these cases,the app can collect information from your social network account and vice versa.
  • Ensure you are comfortable with this type of information sharing before you sign into an app via your social network account.
  • Watch out for scams and phishing attempts on your phone, either by SMS or email. Be cautious about clicking on links or opening e-mail attachments from untrusted sources, as they may be from a fraudulent source masquerading as a friend or legitimate company.
  • Many apps request users to save the password in order to prevent them from repeatedly entering the login credentials. This is an unsafe practice, in an event of mobile theft, these passwords can be harvested to gain access to personal information.
  • Public Wi-Fi networks present an opportunity for attackers to intercept sensitive information. When using a public or unsecured wireless connection, avoid using apps and websites that require personal information like a username and password. Additionally, turn off the Bluetooth setting on your devices when not in use.
  • Avoid jailbreaking or tampering with mobile device factory security settings as it makes the phone more susceptible to attacks.
  • Also, be cautious while charging your phone and avoid connecting it to any computer or charging station that you do not control, such as a charging station at an airport terminal or a shared computer at a library.

by Dr. Jassim Haji

MOST READ

The Ritz-Carlton, Bahrain Launches New Virtual Room

As leading technology companies are planning to make remote working the ‘new normal’ and users of major virtual conference services such as Zoom and...

Batelco Provides Mobile Coverage for the First Time on Jarada Island

In line with Batelco’s commitment to provide connectivity to all areas of Bahrain, the Kingdom’s telecom market leader has delivered mobile coverage for Jarada...

A single mobile app for your Electricity & Water (EWA) services

Hand-in-hand with the Information & eGovernment Authority, the Electricity & Water Authority (EWA) provides its services to cater to public’s regular needs making demanded...

GoPro now lets you transform the Hero 8 into a webcam

You might not be getting much use out of GoPro’s outdoor action cameras during the coronavirus pandemic, so GoPro is making it a lot...

BRAVE CF back to representing Bahrain on the global stage

BRAVE Combat Federation, a product of His Highness Shaikh Khaled bin Hamad Al Khalifa's vision, is back to holding events across the world, taking...

Tamkeen to double, extend its financial grants to enterprises adversely affected by COVID-19 repercussions

The Chairman of the Labour Fund 'Tamkeen', Shaikh Mohammed bin Essa Al Khalifa, held a meeting with Tamkeen’s Board of Directors, and Chief Executive,...

Be an Optimist and an Opportunist by Dhananjay Mahadev Datar

I consider myself fortunate as I always got valuable advice from senior traders. I still remember the day when I earned the first profit...

Bahrain’s anti-coronavirus experiences highlighted at IPU webinar

Bahraini parliamentarians have highlighted the Kingdom’s experiences in managing the COVID-19 pandemic and the measures taken to protect society from the repercussions of the...

INJAZ Bahrain concludes its 12th annual Young Entrepreneurs Competition in a virtual ceremony

INJAZ Bahrain has successfully concluded this year’s version of its annual Young Entrepreneurs competition, which was held online for the first time ever on...

Innovative Virtual Fashion Show to be organized by Medpoint

Medpoint Design and Events Management is hosting the first of its kind Global Women’s Virtual Fashion Forum & Show which will highlight topics that...

Ministry of Health: Incoming passengers required mandatory COVID-19 testing

The Ministry of Health announced that all travellers arriving into Bahrain International Airport from 12:00 am on Tuesday, July 21st, 2020, will be required...

Virtual FinTech Series focused on the importance of Employee Financial Wellness and its importance for businesses especially amidst Covid-19

Earlier last week, Andra Public Relations; a Bahrain based Public Relations firm kicked off their virtual FinTech Series 2020 Edition in partnership with Brinc...

ICT Governance Committee Meeting discusses government projects

Information & eGovernment Authority (iGA) Chief Executive, Mohammed Ali Al Qaed chaired the 36th Information and Communication Technology Governance Committee (ICTGC) meeting, which discussed...

WHO supports HRH Premier’s award for distinguished doctors

His Royal Highness Prime Minister Prince Khalifa bin Salman Al Khalifa has received a letter from the World Health Organization (WHO) Director-General, Dr Tedros...

City Centre Bahrain announces Spring/Summer Campaign winner of a brand-new luxurious sports car

City Centre Bahrain, the premier shopping, entertainment and lifestyle destination in the Kingdom, announced today the winner of the mall’s Spring/Summer Campaign; Mary Rose...