27 November 2021

190 Android apps with trojan malware were installed 9.3 million times


UPDATE: Huawei has issued a statement about this article and it says, "AppGallery’s built-in security system swiftly identified the potential risk within these apps. We are now actively working with affected developers to troubleshoot their apps. Once we can confirm that the apps are all clear, they will be re-listed on AppGallery so consumers can download their favourite apps again and continue enjoying them."


"Protecting network security and user privacy is Huawei's priority. We welcome all third-party oversight and feedback to ensure we deliver on this commitment. We will continue to collaborate closely with our partners, and at the same time, employ the most advanced and innovative technologies to safeguard our users’ privacy."

Protecting network security and user privacy is Huawei's priority. We welcome all third-party oversight and feedback to ensure we deliver on this commitment. We will continue to collaborate closely with our partners, and at the same time, employ the most advanced and innovative technologies to safeguard our users’ privacy.”

Trojans (besides the definition that you might be more familiar with) is an app that hides its true purpose by masquerading as a regular app. But once the app is installed it unleashes malware that infects the phone allowing a bad actor to steal personal data and even take control of the device. According to a fresh report, researchers at Dr. Web Anti-virus discovered a large malware attack on Huawei's App Gallery app storefront that led victims to unwittingly install dangerous malware on their phones.

The 190 infected Android trojan apps were installed approximately 190 million times


The 190 infected Android trojan apps were installed approximately 9.3 million times. Dr. Web says that the malware has been identified as 'Android.Cynos.7.origin' and is believed to be a modified version of the Cynos malware that is used to collect personal data from victims' handsets. The researchers ended up alerting  Huawei about the trojans and Huawei deleted them from the App Gallery.


Now here's the thing. Even though Huawei removed the infected  apps from the App Gallery, if you installed  any of them on your phone, it can still be a major problem making your data vulnerable to getting stolen. The three infected apps with the largest number of installs include:
 
  • Hurry up and hide – 2,000,000
  • Cat adventures – 427,000
  • Drive school simulator – 142,000
If you have any of these apps residing on your Huawei phone, uninstall them ASAP. You can check out the names of all 190 infected apps by tapping on this link.  The infected apps can spy on SMS messages, and according to the report from Dr. Web, "The Android.Cynos.7.origin is one of the modifications of the Cynos program module. This module can be integrated into Android apps to monetize them. This platform has been known since at least 2014."

These trojan apps can collect user's personal data and information about their device and send it to a remote server


The report adds that some of the versions of the malware have aggressive functionality. "They send premium SMS, intercept incoming SMS, download and launch extra modules, and download and install other apps." It obviously is not good to have any of these apps installed on your phone. The version of the trojan found in Huawei's App Gallery collects personal information about the user and his device and displays ads.

As the report notes, right off the bat, you can sense that something is not right since the app asks for permissions usually not associated with a gaming app such as the ability to make and manage phone calls. This gives the trojan the possibility to access certain information.

Once permission is granted, the app sends certain information to a remote server including the user's phone number, the device location, some of the specs belonging to the user's device, and according to the report, "Various mobile network parameters, such as the network code and mobile country code; also, GSM cell ID and international GSM location area code."

The infected apps have already been removed from Huawei's App Gallery app store


Dr. Web explains the problem with trojan malware apps targeting children. "At first glance, a mobile phone number leak may seem like an insignificant problem. Yet in reality, it can seriously harm users, especially given the fact that children are the games’ main target audience."

The research site adds that "Even if the mobile phone number is registered to an adult, downloading a child’s game may highly likely indicate that the child is the one who actually is using the mobile phone. It is very doubtful that parents would want the above data about the phone to be transferred not only to unknown foreign servers but to anyone else in general."

26 November 2021

Michael Gunner's sociopathic rant

Michael Gunner is the Chief Minister of the Northern Territory, within the colony called Australia.


Source: https://parliament.nt.gov.au/members/by-name/michael-gunner 

According to official sources, he is 'honourable'.

In a recent press conference his words are far from being 'honourable'.

According to him, you are not allowed to question, have views or a different opinion, where you are pigeonholed into an anti 'whatever' label.

His views are that of a totalitarian leader not too dissimilar to that of communist leaders like Chairman Xi Jinping or Kim Jong-un.

See a portion of his rant (1m19s) : 


Source (An0maly): https://www.youtube.com/watch?v=IYrWAO7P1Is

His actions are factually pro child abuse and genocide of the Indigenous Australian people.

Gunner MUST be removed from office!

25 November 2021

Corporations 'forcing' you to use smartphones and online banking


Living in a fascist colony is 'hard yakka'.

People of the world are being deceived that Melbourne is the world's 'most livable city' almost every year in a row.

People of the world are being deceived that Australians live in a 'free' democracy.

The reality is that we live in a place where fascist corporatism rules the people.

While the spokespeople from government say that an action is completely 'voluntary' corporations put out a policy stating that an action is mandatory, where there is no lawfully enacted framework for persons to follow this 'idea'.

Now, a policy for those in power is to use people's energy (to input data, for free) via the technology they carry on them to monitor and control their movements, ingenious!

It is imperative for governments to phase out cash in order to better monitor and control people's movements.

ALL aspects of your life must have a digital footprint, where you can be tracked and monitored.

This is obviously packaged up as a benefit (to corporations) or a saving or something great for the community in such a way that it is difficult to argue against.

Just one action of using a supermarket's trolley, will 'force' you to

- have a smartphone,

- enable online banking (which is technically a security risk),

- provide data that you are not aware of to a company that can (and will) distribute this data to others irrespective of what they will write on their website.

It is because of this last point that the use of a QR code is a security risk, as described by a government cyber security department, which advises against the use of QR codes, but people are STILL willing to expose themselves to this threat.

For whatever reasons many people do not use smartphones or have enabled online banking from their accounts, where they WILL be discriminated against by corporations and not be allowed to use trolleys to take the corporation's products into their vehicle or even in store(?).

While some may resist, the majority of the herd will comply.

P.S. Oops sorry, you're not 'forced', you just can't participate in society if you don't.

See the articles:

https://www.news.com.au/technology/gadgets/mobile-phones/coins-to-unlock-shopping-trolleys-could-be-a-thing-of-past-with-new-tech-that-tracks-them-if-abandoned/news-story/a2519e0617b2b04df7240e8cd41ab27c

https://www.sydneycriminallawyers.com.au/blog/federal-government-agency-issues-warning-about-qr-codes/

24 November 2021

GoDaddy Hacked!



EX-99.1 2 gddyblogpostnov222021.htm EX-99.1

November 22, 2021
GoDaddy Announces Security Incident Affecting Managed WordPress Service
On November 17, 2021, we discovered unauthorized third-party access to our Managed WordPress hosting environment. Here is the background on what happened and the steps we took, and are taking, in response:
We identified suspicious activity in our Managed WordPress hosting environment and immediately began an investigation with the help of an IT forensics firm and contacted law enforcement. Using a compromised password, an unauthorized third party accessed the provisioning system in our legacy code base for Managed WordPress.
Upon identifying this incident, we immediately blocked the unauthorized third party from our system. Our investigation is ongoing, but we have determined that, beginning on September 6, 2021, the unauthorized third party used the vulnerability to gain access to the following customer information:
Up to 1.2 million active and inactive Managed WordPress customers had their email address and customer number exposed. The exposure of email addresses presents risk of phishing attacks.
The original WordPress Admin password that was set at the time of provisioning was exposed. If those credentials were still in use, we reset those passwords.
For active customers, sFTP and database usernames and passwords were exposed. We reset both passwords.
For a subset of active customers, the SSL private key was exposed. We are in the process of issuing and installing new certificates for those customers.
Our investigation is ongoing and we are contacting all impacted customers directly with specific details. Customers can also contact us via our help center (https://www.godaddy.com/help) which includes phone numbers based on country.
We are sincerely sorry for this incident and the concern it causes for our customers. We, GoDaddy leadership and employees, take our responsibility to protect our customers’ data very seriously and never want to let them down. We will learn from this incident and are already taking steps to strengthen our provisioning system with additional layers of protection.
Demetrius Comes
Chief Information Security Officer

Forward-Looking Statements
This blog post contains forward-looking statements regarding GoDaddy Inc. (“we,” “GoDaddy,” or the “Company”) which are subject to the safe harbor provisions of the Private Securities Litigation Reform Act of 1995, including our efforts to investigate and remediate the security incident and our attempts to identify and notify affected customers and implement additional security measures. Our forward-looking statements are based on information known to us at the time of this blog post and are subject to a number of known and unknown risks, uncertainties and assumptions that may cause our actual future results, performance, or achievements to differ materially from any future results expressed or implied in this blog post. Factors that contribute to the uncertain nature of our forward-looking statements include, among others, our ongoing investigation of the incident; our vulnerability to additional security incidents; adverse legal, reputational and financial effects on the Company resulting from the incident or

additional security incidents, including regulatory inquiries; and potential operational disruptions as a result of the incident. Because some of these risks and uncertainties cannot be predicted or quantified and some are beyond our control, you should not rely on our forward-looking statements as predictions of future events. Additional risks and uncertainties that could affect GoDaddy’s business and financial results are included in the filings we make with the Securities and Exchange Commission (“SEC”) from time to time, including those described in “Risk Factors” in our Quarterly Report on Form 10-Q for the quarter ended September 30, 2021 as well as those described in “Management’s Discussion and Analysis of Financial Condition and Results of Operations” in our Annual Report on From 10-K for the year ended December 31, 2020 and in our Quarterly Report on Form 10-Q for the quarter ended September 30, 2021, which are available on GoDaddy's website at https://investors.godaddy.net and on the SEC's website at www.sec.gov. Additional information will also be set forth in other filings that GoDaddy makes with the SEC from time to time. All forward-looking statements in this blog post are based on information available to GoDaddy as of the date hereof. GoDaddy does not assume any obligation to update the forward-looking statements provided to reflect events that occur or circumstances that exist after the date on which they were made.

Source:

https://www.sec.gov/Archives/edgar/data/1609711/000160971121000122/gddyblogpostnov222021.htm

22 November 2021

Australia Post – False advertising

Quite simply put, Australia Post has resorted to false advertising.

They stated that in order to be 'safe', whatever that means one needs to be vaccinated.

What medical evidence does Australia Post possess in order to make that statement?

What's more concerning is that in parliamentary discussions on the so called vaccination suggest that is not safe, as there are too many unknowns.

More lies fed to the 'consumers'.

21 November 2021

Realtors Nelson Alexander discriminate against people


It's amazing what needed to take place in order to ascertain that discrimination in Australia is rife.

The lies that have come through are quite astonishing.

First the people in government stated that a particular medical 'procedure' was voluntary.

Then they made it mandatory.

In Australia you cannot inspect a house (in order to purchase or rent it) unless you have undertaken a certain medical procedure.

This is no longer a stance about being 'anti' something but rather you cannot participate in a commercial transaction unless you've succumbed to a specific medical procedure.

This medical procedure is dubious to say the least, where in hansards it is stated that the results benefits and long term effects are unknown.

The colonial mentality of the inhabitants of Australia is no better than that of those in 1930's Germany.

Such is life in a (penal) colony.

Please note that if you have been discriminated against, suing the persons involved would be the appropriate action needed to be taken.

Australia's real estate industry needs to be shaken to is core, as it is rampant in illegal activity.