DoubleDirect MitM attack targets Android

Discussion in 'Tech News' started by LoudRam, Nov 22, 2014.

  1. LoudRam

    LoudRam Senior Member

    Joined:
    Dec 18, 2010
    Messages:
    1,430
    Likes Received:
    137
    Trophy Points:
    63
    Location:
    Southern NJ
    Ratings:
    +146
    Current Phone Model:
    Moto X
    Security researchers have discovered a new type of "Man-in-the-Middle" (MitM) attack in the wild targeting smartphone and tablets users on devices running either iOS or Android around the world.
    The MitM attack, dubbed DoubleDirect, enables an attacker to redirect a victim’s traffic of major websites such as Google, Facebook and Twitter to a device controlled by the attacker. Once done, cyber crooks can steal victims’ valuable personal data, such as email IDs, login credentials and banking information as well as can deliver malware to the targeted mobile device.
    San Francisco-based mobile security firmZimperium detailed the threat in a Thursday blog post, revealing that the DoubleDirect technique is being used by attackers in the wild in attacks against the users of web giants including Google, Facebook, Hotmail, Live.com and Twitter, across 31 countries, including the U.S., the U.K. and Canada.

    More at link...

    DoubleDirect MitM Attack Targets Android iOS and OS X Users
     
  2. Ollie

    Ollie Droid Does

    Joined:
    Apr 13, 2012
    Messages:
    3,442
    Likes Received:
    2,103
    Trophy Points:
    1,468
    Location:
    South Coast
    Ratings:
    +2,483
    Current Phone Model:
    Note Edge - iPhone 6 Plus
    Not a word in the article of what to look for to avoid this on mobile devices.
     
    • Like Like x 2
  3. thunderbolt_nick

    thunderbolt_nick Thunderbolt Rescue Squad
    Rescue Squad

    Joined:
    Nov 22, 2011
    Messages:
    1,194
    Likes Received:
    603
    Trophy Points:
    1,268
    Location:
    Orlando, FL
    Ratings:
    +724
    Current Phone Model:
    Nexus 6P
    Twitter:
    @nickburress2k2
    This is what I hate about articles like this. There's usually only conjecture involved and they are a security firm...thanks for telling the hackers exactly what to do.
     
    • Agree Agree x 2
    • Like Like x 1
  4. LoudRam

    LoudRam Senior Member

    Joined:
    Dec 18, 2010
    Messages:
    1,430
    Likes Received:
    137
    Trophy Points:
    63
    Location:
    Southern NJ
    Ratings:
    +146
    Current Phone Model:
    Moto X
    I found this in the original blog post. There is a link for it in the story I linked. If your rooted you can stop this. I'm not rooted so I can't.

    ...On the mobile side, most Android devices (galaxy series) with the accept_redirect field enabled by default

    To disable you need to root your device and execute:
    # echo 0 > /proc/sys/net/ipv4/conf/all/accept_redirects
     
    #4 LoudRam, Nov 22, 2014
    Last edited: Nov 22, 2014
    • Like Like x 1
  5. Ollie

    Ollie Droid Does

    Joined:
    Apr 13, 2012
    Messages:
    3,442
    Likes Received:
    2,103
    Trophy Points:
    1,468
    Location:
    South Coast
    Ratings:
    +2,483
    Current Phone Model:
    Note Edge - iPhone 6 Plus
    Makes you wonder if it isn't a scare tactic.
     
Search tags for this page
double direct android mitm
,
double direct mitm attack
,

doubledirect apk

,
doubledirect download
,
download doubledirect android apk
,
how to do double direct mitm
,
man in the middle attack apk
,

mitm apk

,
mitm attack android apk
,
mitm attack apk