.

by Check Point Research Team  posted 2016/11/30 As a result of a lot of hard work done by our security research teams, we revealed today a new and alarming malware campaign. The attack campaign, named Gooligan, breached the security of over one million Google accounts. The number continues to rise at an additional 13,000 breached devices each day. Our research exposes how the malware roots infected devices and steals authentication tokens that can be used to access data from Google Play, Gmail, Google Photos, Google Docs, G Suite, Google Drive, and more. Gooligan is a new variant of the Android malware campaign  found by our researchers in the SnapPea app  last year. Check Point reached out to the Google Security team immediately with information on this campaign. Our researchers are working closely with Google to investigate the source of the Gooligan campaign. “We’re appreciative of both Check Point’s research and their partnership as w...

Internet users continue to make things very easy for hackers.  A close inspection of a portion of the 6.5 million leaked LinkedIn passwords proves people keep making foolish password choices.  In fact, the most commonly used phrase in the password set appears to be “link,” according to Boston-based security firm Rapid7, which created a top 30 list for msnbc.com. The list was generated by studying a sample of 160,000 passwords from the 6.5 million that have been released on the Internet. What hacker would ever guess that your LinkedIn password had the work “link” in it? Answer: All of them. Second on the list of most common password phrases: “1234.”  And because LinkedIn required seven-letter passwords, “12345” wasn’t far behind, either, ranking sixth on the list (123456 was 15th.) Rounding out the top 10 were “work,” “god,” “job,” “angel,” “the,” “ilove,” and “sex.” “We are seeing a trend of Internet users trying to use simplistic passphrases on Internet sites,” sa...