spoofing – WindowsTechs.com

Finding the Location of Telegram Users

Posted on January 14, 2021 by Bruce Schneier

Security researcher Ahmed Hassan has shown that spoofing the Android’s “People Nearby” feature allows him to pinpoint the physical location of Telegram users:

Using readily available software and a rooted Android device, he’s able to spoof the location his device reports to Telegram servers. By using just three different locations and measuring the corresponding distance reported by People Nearby, he is able to pinpoint a user’s precise location.

[…]

A proof-of-concept video the researcher sent to Telegram showed how he could discern the address of a People Nearby user when he used a free GPS spoofing app to make his phone report just three different locations. He then drew a circle around each of the three locations with a radius of the distance reported by Telegram. The user’s precise location was where all three intersected…

Continue reading Finding the Location of Telegram Users→

What is STRIDE and How Does It Anticipate Cyberattacks?

Posted on January 11, 2021 by Fred Donovan

STRIDE threat modeling is an important tool in a security expert’s arsenal. Threat modeling provides security teams with a practical framework for dealing with a threat. For example, the STRIDE model offers a proven methodology of next steps. It can suggest what defenses to include, the likely attacker’s profile, likely attack vectors and the assets […]

The post What is STRIDE and How Does It Anticipate Cyberattacks? appeared first on Security Intelligence.

Continue reading What is STRIDE and How Does It Anticipate Cyberattacks?→

SPF/DMARC for shared email provider (gmail) – how did this email pass SPF?

Posted on December 14, 2020 by Dave Smylie

We recently received an email from a self described "white hat hacker" purporting to be from our own organization.
According to the mail headers, spf, dmarc, dkim and arc all passed okay and gmail didn’t flag it in anyway.
We use… Continue reading SPF/DMARC for shared email provider (gmail) – how did this email pass SPF?→

Spoof texting a regiatered number to yourself and relying….having a conversation [closed]

Posted on December 11, 2020 by Abbs CP

I feel like I am going crazy. A friend was at my house and received text messages from a number from a person i know. She had a conversation with this number for basically a week. She is now saying that she set it up to make it look like i… Continue reading Spoof texting a regiatered number to yourself and relying….having a conversation [closed]→

New Microsoft Spear-Phishing Attack Uses Exact Domain Spoofing Tactic

Posted on December 10, 2020 by David Bisson

Security researchers detected a new spear-phishing attack that’s using an exact domain spoofing tactic in order to impersonate Microsoft. On December 7, IRONSCALES revealed that it had spotted the campaign targeting Office 365 users. Those users primar… Continue reading New Microsoft Spear-Phishing Attack Uses Exact Domain Spoofing Tactic→

Spearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users

Posted on December 8, 2020 by Elizabeth Montalbano

It remains unknown as to why Microsoft is allowing a spoof of their very own domain against their own email infrastructure. Continue reading Spearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users→

Spoof publisher info on Windows applications

Posted on December 3, 2020 by DaArFI

Let me start by acknowledging that I have absolutely no experience with Windows development and this is purely for academic purposes. I apologize for incorrect terminology and welcome corrections or good resources.
When we run a program fr… Continue reading Spoof publisher info on Windows applications→

HackRF PortaPack Firmware Spoofs All the Things

Posted on November 28, 2020 by Tom Nardi

The HackRF is an exceptionally capable software defined radio (SDR) transceiver, but naturally you need to connect it to a computer to actually do anything with it. So the PortaPack was developed to turn it into a stand-alone device with the addition of a touchscreen LCD, a few buttons, and …read more

Continue reading HackRF PortaPack Firmware Spoofs All the Things→

Would it be possible to create an external mac address spoofer?

Posted on November 28, 2020 by Alexm

I was wondering if it would be possible to create some sort of ethernet passthrough device, but this device also functions as a layer 2 mac address spoofer, which can be used with any device without the need for a software mac address spoo… Continue reading Would it be possible to create an external mac address spoofer?→

Reply to potentially wrong person [closed]

Posted on November 20, 2020 by Kristina Tigani

I have received an email from a police regarding an ongoing matter, when I replied back it didn’t go to the police it went to the person I didn’t want it to go and see the email.
I didn’t realise this until I spoke to that person and she s… Continue reading Reply to potentially wrong person [closed]→