Hackers Can Remotely Steal Fingerprints From Some Android Devices

Researchers from FireEye have revealed that it is possible to attack Android smartphone to remotely steal user’s fingerprints on a “large scale.” 

Security experts have repeatedly expressed concern about the management of the fingerprint deployed by major mobile service providers. Hackers have proved difficult to implement the vulnerabilities in the systems that manage fingerprints, in order to bypass the authentication mechanisms in April 2015, a group of security researchers have discovered a vulnerability FireEye in the Galaxy Samsung S5 that allows hackers to clone fingerprints.

Now FireEye security experts have discovered four new ways to hack Android devices and remove user fingerprint researchers remotely.The Tao Wei and Zhang Yulong has presented the results of her makeup in a speech titled, mobile devices, digital fingerprints: Abuse and losses in the Black Hat conference last week.

The techniques are very insidious because the victim may not notice the theft of their puzzling researchers fingerprints.The dubbed the attack "attack Espionage fingerprint sensor" and could allow hackers to "fingerprint remote gathered on a large scale the receiver of the main manufacturers such as HTC, Samsung and Huawei.

Experts refused to give any "proof of concept" for Android devices reasons.The attack obvious targets are equipped with fingerprint sensors that allow users to authenticate by simply touching the screen of your smartphone.We note that Google still does not officially support the authentication mechanism based on fingerprint based on its mobile operating system, but the company will soon implement support in the next version of Android M.

The researchers tested their attack on the HTC One Max and Galaxy S5 Samsung's got to steal a fingerprint image of the device due to lack of proper implementation of a locking mechanism for fingerprint sensor.

I explained several times the risks arising from the misapplication of biometric authentication, the theft of biometric data such as fingerprints would be more dangerous compared to the theft of a stolen password.Users committed can reset your password, but can not change their fingerprints or iris in case of a violation of data.

"In this attack, victims of fingerprint data into the hands of the attackers. For the rest of the life of the victim, the attacker can still use the fingerprint data for other harmful things," said Zhang.The The security problem discovered is quite easy to solve, for example by encrypting fingerprint data on Android devices, and a number of vendors are already working on a security update.

The measure has already been adopted by Apple iOS which encrypts the data acquired by the touch sensor ID. The experts explained that Apple's iOS is "fairly certain" because fingerprint scanner encrypts data with an encryption key, making it unreadable, even if hackers have access.

Read More

312-50v8 Certification Sample Questions

Question No:13

The following exploit code is extracted from what kind of attack?

 
A. Remote password cracking attack
B. SQL Injection
C. Distributed Denial of Service
D. Cross Site Scripting
E. Buffer Overflow

Answer: E

Read More

Certified Ethical Hacker 312-50v8 Complete Information (Course Otline + Exam Details)

                                          CEH 312-50v8 Exam Information

Certified Ethical Hacker 8

- Exam Details :-

1.Number of Questions: 125

2.Passing Score: 70%
3.Test Duration: 4 hours
4.Test Format: Multiple choice
5.Test Delivery:

Web based via Prometric Prime (Exam Prefix - 312-50)

Vue Testing Center (Exam Prefix - 312-50)

-Exam Code :-

The exam code varies when taken at different testing centers.

1.Exam 312-50: Web based ‘Prometric Prime’ at Accredited Training Centers (ATC).

2.Exam 312-50: VUE Testing centers

 

- Skills Measured :- 

The exam 312-50 tests CEH candidates on the following 19 domains.

1. Introduction to Ethical Hacking
2. Footprinting and Reconnaissance     

3. Scanning Networks
4. Enumeration
5. System Hacking
6. Trojans and Backdoors
7. Viruses and Worms
8. Sniffers
9. Social Engineering
10.Denial of Service               
11.Session Hijacking
12.Hacking Webservers
13.Hacking Web Applications
14.SQL Injection
15.Hacking Wireless Networks
16.Evading IDS, Firewalls, and Honeypots
17.Buffer Overflow
18.Cryptography
19.Penetration Testing

Complete Outline & Exam Question Percentage and Weight:

Background  (4% of Exam and 5 Questions)

A     networking technologies (e.g., hardware, infrastructure)
B     webtechnologies (e.g., web 2.0, skype)
C     systems technologies
D     communication protocols                                                       
E     malware operations
F     mobile technologies (e.g., smart phones)
G     telecommunication technologies
H     backups and archiving (e.g., local, network)

Analysis/Assessment   (13% of Exam and 16 Questions) 

A     data analysis
B     systems analysis
C     risk assessments
D     technical assessment methods

Security   (25% of Exam and 31 Questions)
 
A     systems security controls
B     application/fileserver
C     firewalls
D     cryptography
E     network security
F     physical security
G     threat modeling
H     verification procedures (e.g.,false positive/negative validation)
I     social engineering (human factors manipulation)
J     vulnerability scanners
K     security policy implications
L     privacy/confidentiality (with regard to engagement)
M     biometrics
N     wireless access technology (e.g., networking, RFID, Blue tooth)
O     trusted networks
P     vulnerabilities

Tools/Systems/Programs (32% of Exam and 40 Questions)
 
A     network/host based intrusion
B     network/wireless sniffers (e.g., WireShark, Airsnort)
C     access control mechanisms (e.g., smart cards)
D     cryptography techniques (e.g., IPsec, SSL, PGP)
E     programming languages (e.g. C++, Java, C#, C)
F     scripting languages (e.g., PHP, Java script)
G     boundary protection appliances (e.g., DMZ)
H     network topologies
I     subnetting
J     port scanning (e.g., NMAP)
K     domain name system (DNS)
L     routers/modems/switches
M     vulnerability scanner (e.g., Nessus, Retina)
N     vulnerability management and protection systems (e.g., Foundstone, Ecora)
O     operating environments (e.g., Linux, Windows, Mac)
P     antivirus systems and programs
Q     log analysis tools
R     security models
S     exploitation tools
T     database structures

Procedures/Methodology (20% of Exam and 25 Questions)

 
A     cryptography
B     public key infrastructure (PKI)
C     Security Architecture (SA)
D     Service Oriented Architecture (SOA)
E     information security incident management
F     N-tier application design
G     TCP/IP networking (e.g., network routing)
H     security testing methodology

Regulation/Policy (4% of Exam and 5 Questions)
 

A     security policies
B     compliance regulations (e.g., PCI)

Ethics (2% of Exam and 3 Questions)
 

A     professional code of conduct
B     appropriateness of hacking activities

 

Read More

312-50v8 Certification Sample Questions

Question No:12

A buffer overflow occurs when a program or process tries to store more data in a buffer
(temporary data storage area) then it was intended to hold.

What is the most common cause of buffer overflow in software today?

A. Bad permissions on files.
B. High bandwidth and large number of users.
C. Usage of non standard programming languages.
D. Bad quality assurance on software produced.

Answer: D
 

Read More