Belkin WeMo smart home networks in danger of hacks

Belkin WeMo smart home networks in danger of hacks. Security firm IOActive announced that it has uncovered multiple vulnerabilities in Belkin WeMo Home Automation devices that could affect over half a million users. Belkin’s WeMo uses Wi-Fi and the mobile Internet to control home electronics anywhere in the world directly from the user’s smartphone.
Mike Davis, IOActive’s principal research scientist, uncovered multiple vulnerabilities in the WeMo product set that gives attackers the ability to Remotely control WeMo Home Automation attached devices over the Internet, Perform malicious firmware updates, Remotely monitor the devices and Access an internal home network.
Davis said, “As we connect our homes to the Internet, it is increasingly important for Internet-of-Things device vendors to ensure that reasonable security methodologies are adopted early in product development cycles. This mitigates their customer’s exposure and reduces risk. Another concern is that the WeMo devices use motion sensors, which can be used by an attacker to remotely monitor occupancy within the home.”

ZeuS Banking Trojan Targets Salesforce accounts

The Zeus malware family is known as a cause of identity theft of financial and banking details. A new variation of the Zeus Banking Trojan Targets Salesforce accounts and SaaS Applications. Zeus comes in many different forms and flavors, is capable to steal users online banking credentials once installed.
The Adallom Labs team recently discovered an unusual variant of the Zeus trojan that targets Salesforce users. In a blog post, the Adallom Labs team said:

We’ve been internally referring to this type of attack as “landmining”, since the attackers laid “landmines” on unmanaged devices used by employees to access company resources. The attackers, now bypassing traditional security measures, wait for the user to connect to * in order to exfiltrate company data from the user’s Salesforce instance.