Pakistani Government Compromised Website Use ScanBox KeyloggerFigure 1 Photo Courtesy of the SpiderLabs research team from ArabNews Trustwave found an instance of the ScanBox keylogger tool on the Pakistani passport application tracking website. Authorities were told earlier this month about the leak, and fixed the vulnerability. The researchers have hitherto been unable to classify the number of users affected. According to a study by Trustwave’s SpiderLabs Research team, a Pakistani website that allowed people to monitor the status of their passport applications has been compromised. AlienVault’s security researchers conducted two tests of the ScanBox system payload which was first seen during 2014 and 2015. It was noticed that the self-contained payload would record all of the keyboard operation while browsing a website. Marciano Software, the Spanish phone expert on Thursday demonstrated the use of the picture to fool the facial recognition on the handsets at the launch in New York. The event is recorded on YouTube, and shared. Because of Note 7 and its security issues it now repeats, Samsung has already faced some issues. It’s another business criticism. The new Facial Recognition function isn’t final they need to improvise the facility over it. The latest flagship smartphone from Samsung has attracted a lot this week. The new model features a new voice assistant with near-bezel-free design in the form of the latest Bixby Samsung DeX Qualcomm and Snapdragon 835 chipset, and more. Divtionally iris-scanner or some other secure mechanism is used to prevent hackers from getting the handsets. Attacking Enterprise Vpn Servers ByBill Toulas-September 6, 2019.936 Chinese-state actors “Apt5” or “Manganese” are attacking corporate Vpn servers across known vulnerabilities. The flaws concern products from Fortinet and Pulse Secure Ssl Vpn, and were disclosed a few weeks ago. Since May 2019 repairing fixes have been available but a few systems remain obsolete and vulnerable. Recently Zdnet reports revealed bugs plaguing the two Vpn products before system administrators get the chance to fix them. The persistent attacks started last week with Apt5 scanning the internet for compromised Vpn servers running older and unpatched versions of the products Fortinet and Pulse Safe. Such servers are open to remote users who do not need to authenticate to access files. The attackers can steal hard-coded keys from there, and perform a full penetration of the corporate network. The two Vpn vendors have sincerely sought to warn their customers that they must update their tools again and again immediately. We released a security newsletter in May when the fix arrived and then leveraged the Black Hat presentation commercial to warn their customers to upgrade again, then circulated emails again to make their case for an emergency patch to be implemented. Pulse Secure has even placed pinned warning messages on their partner platforms and customer support websites for in-product warnings. Now, and as is always the case in cases such as this, most have been upgraded but some systems have not been patched. Hackers are following those vulnerable systems as they are typically servers in large corporations and generally valuable targets. The goal is cyber-espionage in the case of Apt5 and whatever other valuable data they may get along the way. As we last advised, even those who applied the patch may take a few more steps to secure their servers by allowing full log audit and sending it to an outbound server enabling multifactor authentication as well as enabling authentication of client certificates.