Security Archives • NordicNode

A USB cable can steal your data (Phone/PC…)

Did you know that a what seems to be a regular USB charging cable or any other kind of USB cable actually may contain a super tiny computer that can infect your device.
For example your phone or computer with anything the attacker/hacker want.

The computer inside the malicious USB cable can also create a WIFI network so the attacker/hacker can connect directly to your device.

These malicious USB cables look identical to a regular USB cable.
So don’t borrow or buy cables from people or sellers that you cant trust.

Examples of that the hacker can do

* The hacker can for example create a WIFI network.
* Access files on your phone/computer.
* Create sync accounts. For example to steal data from iCloud.
* Give the hacker full keyboard access.
* Send SMS messages.
* Share your whole hard drives over the network.
* Run scripts, like Powershell scripts.
* Turn on your webcam and take photos.
* Run a keylogger so they can see anything you write.
* And the list goes on…

Antivirus

Antivirus scanners can not detect a malicious USB cable because there is no virus to detect.
Malicious USB commands reach directly into your USB driver stack, exploiting your device directly.

But you should always have a active antivirus software running on your computer anyway.
Avira is free for PC, Mac, Android and iOS. Read more about Avira here.

I think you can block some of the attacks on a phone or computer by setting up your device so that they don’t share any data by default and don’t do anything automatically when a USB have been connected.

Make WordPress use HTTPS & WWW & block XMLRPC (.htaccess)

A while back I posted some “.htaccess” code to add HTTPS (SSL) and also “www”, in front of the domain name.

I think it’s a mess to work this stuff and too many people on forums and such tend to disagree about the best way to do things, so I can only assume it’s a common problem. Not to mention the different kind of servers and server configs that can screw things up further.

This is the “.htaccess” code that I currently use on WordPress sites

# Force www
RewriteCond %{HTTP_HOST} !^$
RewriteCond %{HTTP_HOST} !^www\. [NC]
RewriteCond %{HTTPS}s ^on(s)|
RewriteRule ^ http%1://www.%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

# Force SSL
RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress

# Disallow all WordPress xmlrpc.php requests to this domain
<Files xmlrpc.php>
order deny,allow
deny from all
</Files>

As you can see, it’s checking if the URL contains “www”, if not it will add it. Same thing with HTTPS.

Last time I posted, I had a “302” redirect on the SSL stuff which was a mistake because “302” is the code for a temporary redirect.

Since Google decided a few years back to pretty much force people over to HTTPS (Ranking factors..) which really is a good idea, but was a pain in the *ss at the time to make the switch if you got plenty of sites.

Anyway, hopefully you’ve got SSL certificates for your domains by now and therefor we’re telling mighty Google that we’ve permanently moved over to HTTPS. So we should change that temporary “302” redirect to a permanent one “301”.

After that comes the regular WordPress “.htaccess” content.

And last but not least. I decided to block all traffic to xmlrpc.php.
Because it seems to be used by spammers and hackers to bruteforce your passwords.

However, if you use a standalone application to post to your WordPress blogs, like Windows Live Writer for example. You might need to remove that last part of the “.htaccess” code, or why not let your IP in only.

There’s also some plugins that can help you keep the bad guys out if you prefer that approach.

That’s it for now. I’m not 100% this is the best way to do it. Please, leave a comment if you can improve anything in the “.htaccess” code.

KeePass – Keep Your Passwords Safe

KeePass is a program made to help you manage all your passwords. I’m sure you know that you never should use the same password at more than one account. And with all the accounts you’ll create you need to remember more and more passwords.

Add all your passwords to KeePass and protect them by one master password. When you need a password you don’t remember, just login to KeePass with your master password and then you can see your password in plain text. All passwords are stored in a encrypted database.

Website: KeePass

TrueCrypt – Free Disk Encryption Software

TrueCrypt is a free disk encryption software for several platforms like Windows, Mac and Linux. You can create a virtual encrypted partition and mount it as if it was a real harddrive. You can also encrypt a partition on your harddrive or a USB flash memory. You can choose the encryption algorithms you want to use.

Website: TrueCrypt

HDD Health – Failure-Prediction Program For Your Harddrives

HDD Health is a failure-prediction program that will monitor your drives. This is a great application since it can help you so you can backup your important data before it’s too late.

Website: HDD Health