[News] DES SIM Card Security Breach Puts 750 Million Mobile Phone Users In Danger

Your SIM card is now hackable!

Your SIM card is now hackable!

Thought your mobile phone SIM card is an un-hackable nutshell? Well, you might have to rethink about it because it is now officially “breakable.”

A German researcher, Karstetn Nohl from Security research Labs revealed the hole of GSM encryption. Hackers can remotely break into some outdated DES (Date Encryption Standard) SIM cards and access your personal data with just a personal computer less than 2 minute.

“Give me any phone number and there is some chance I will, a few minutes later, be able to remotely control this SIM card and even make a copy of it,” Nohl said to Forbes.

With only a couple fake text messages sending to your phone that claims coming from a carrier, there is quarter chance that you will receive an error message back containing a set of 56-bit digital key from DES SIM card. With the code, hackers can send malware to the SIM card via text message. From then on, the hacker can monitor the phone calls, hijacks the data and identity on the phone.

Up to 750 million SIM cards could be hacked. Fortunately, many wireless carriers now adapt the newer and more secure triple DES SIM card. GSMA (Global System for Mobile Association) has already notified the security flaw to the SIM card manufactures and vendors. Experts are now striving to find out the optimal solution for the breach. Nohl will give more detail about the research process in the Black Hat conference in Las Vegas on August 1st.

He suggests the industry to take action on such matter and gradually phase out the SIM cards to eliminate the security vulnerability. Consumers using SIM cards more than 3 years old ideally should request for a new card.

 

Related reading:

Google Releases Patch to OEM for Serious Android Security Loophole

Most Androids Vulnerable Due to Outdated Firmware

[Update] Roboscan Update Server Issue Solved

Dear Roboscan users,

Last week our update server experienced some problems that caused the failure of updating; however, the issue is now resolved.

Please try updating Roboscan again for the most protection to your PC. To confirm the update has completed successfully, please click “”View Log” on the lower left of Roboscan interface.

Image

Update Roboscan for the most protection to your PC

If the problem remains or if you have questions, please email us at support@roboscan.com for further assistance from our tech team!

We apologize for the inconvenience and thank you for supporting Roboscan!

Roboscan Team.

Download the latest Roboscan Internet Security for Free here

Turn on 2-step authentication to enhance your social media security

Do you still remember the article about “2-step authentication” we shared on Facebook? Today, we are going to walk you through the process of setting up 2-step authentication on your social media step-by-step.  2-step authentication is not a cure-it-all for your internet security. However, it certainly makes it more difficult for hackers to break through your security line.

What is 2-step authentication?

2-step authentication (a.k.a. two-factor authentication) is composed of two pieces of authentication factors: the knowledge factor, something you know, and the possession factor, something you have. It’s similar to the idea of requiring 2 keys to open a treasure chest. In addition to the password you originally created for emails, social media or even online banking accounts (knowledge factor), you will need another key (possession factor) to access to your accounts. Your phone is one of the most popular options nowadays. By activating such security feature on your social media, you will receive a set of codes on your phone. Use this code to access your account after typing in the password you normally use.

How to set up?

  1. Click on the setting button on the upper right corner and choose the account setting option.

    Facebook login approval

    Facebook login approval

  2. On the navigation panel on your left, choose “security”; it will take you to the screen below.
  3. Enable the “Login Approval” security feature then Facebook will walk you through
    FB login approval2
  4. Facebook will send you a set of codes via SMS. Type the code in the box, then click next. As you enter the security code, you will have the option to save your device to your account so that you don’t have to generate a code for the device every time you log in
    FB login approval3
  5. If you ever login via a device unrecognized by Facebook, you will need to enter the code again. 계속 읽기

10 Common Facebook scams 2013 -Part 2.

Have you kept the first 5 common scams on Facebook that we talked about in our last post? If you need a little recap, check out 10 Common Facebook scams 2013 <Part 1>.

Ready? Now, let’s get into the next 5!

6.         Phony message on Facebook

  • Scammer from Facebook team: A phishing scam spotted by GFI Lab early this year. You will go through 5 pages of question for a security check after clicking on the link. Once the scammer has your information, it will start to spam your friends or use your identity and card information to purchase things you will never receive.
Phony message from Facebook Team spotted by GFI Lab

Phony message from Facebook Team spotted by GFI Lab

  • Check out my new Camera: I’ve seen too many times that my friends try to show me their new shopping trophy through Facebook chat; while we all know the link of the pictures will not take you to their new camera or new clothes,  but some spams or malware.
  • I need your help (and money!): Your friend won’t ask for your help by just leaving a Facebook message, especially when s/he needs your financial support. A tip to keep in mind, they usually ask you to transfer money via Western Union or other uncommon financial institute. Be cautious!

7.        Customize you Facebook:  Apps to find out who unfriend you, to change your Facebook color or getting “Dislike” button are just a few tricks of the scammers. Scammers usually insert adware, malware into the browser extension or plugins.

Red Facebook Hoax

Red Facebook Hoax

One of the most popular scam on Facebook early this year is the make-your-Facebook-red scam. After clicking the link 계속 읽기

Tips on Keeping Yourself Protected Online

First and foremost, you should be sure your PC is protected by an up-to-date antivirus. If you don’t have one, or are interested in trying a new software, visit our website and review our products. Roboscan Internet Security updates itself multiple times a day and does so silently – no annoying prompts, no extra work for you! You can even check out this nifty chart and see how Roboscan compares to popular antivirus software.

If you have an antivirus installed, you’ve taken the biggest precaution in keeping your PC protected from malware. Follow the tips below for extra protection.

  • Change your passwords periodically. Try to use letters, numbers and symbols. The more complex your password is, the less likely someone will gain access to your accounts. It’s generally a good idea not to use the same password for some accounts. For example, your online banking password should not be the same as your Facebook password.
  • Update your Wi-Fi password and network name. If your network at home isn’t protected, that’s absolutely essential. Contact your internet provider, or review your router’s manual for instructions on how to secure your network. Your Wi-Fi password should be updated periodically as well. A good general rule of thumb is to change your passwords with each change of season, or four times a year.
  • Lockdown your social media profiles. Consider going private on Twitter, reviewing your privacy settings on Facebook and deleting old social media profiles you no longer use. Awhile ago, I did a Google search on my full name and found a Friendster account from 10 years ago. Horrifying.
  • Don’t reveal too much of your personal information online. Have you ever had to reset a password and answer security questions to do so? Your date of birth, your mother’s maiden name, etc. can easily slip out online, and if your profiles are public, predators can piece together information about you pretty easily.
  • If you’re using shared computers or public networks on your devices, be very careful. Public wi-fi networks are especially dangerous, as we often won’t think twice about checking our account balances online, paying your electricity bill, or writing emails with sensitive content. If you’re shopping online, be sure the site is using a secure channel to process your billing information. Check the address bar. If the URL begins with “https,” you are good to go.

Above all, always be aware that most what you put on the Internet can be accessed by anyone, at any time. Be on defense and stay proactive.

What are your tips for staying safe online?