Discount Offers

Personal Self Defence Spray UK's No1 Spray Legal Pepper Spray Clone UK Sale Only

£22.99
End Date: Monday Dec-18-2017 9:46:38 GMT
Buy It Now for only: £22.99
Buy It Now | Add to watch list

SIA Licensed Security Tie Pin Badge K4S® Exclusive Design

£5.75
End Date: Wednesday Jan-10-2018 19:04:15 GMT
Buy It Now for only: £5.75
Buy It Now | Add to watch list

Security bouncer door supervisor bomber jacket coat Medium

£51.83
End Date: Wednesday Dec-20-2017 16:06:16 GMT
Buy It Now for only: £51.83
Buy It Now | Add to watch list

Combat Trousers Security Bouncer Police Security Door Supervisor

£19.19
End Date: Wednesday Dec-20-2017 16:47:09 GMT
Buy It Now for only: £19.19
Buy It Now | Add to watch list
0024440
Visit Today : 1
Visit Yesterday : 1
This Month : 17
This Year : 351
Total Visit : 24440
Hits Today : 4937
Total Hits : 3873072
Who's Online : 1

christmas

Armed robbery as thieves target security van

Armed thieves have made off with cash after targeting a security van in Devon this morning. Robbers attacked a guard and stole cash from security van at a Plymouth Tesco store at around 10.30am. A spokesman for Devon and Cornwall police said: “Police were called at around 10.30am to Tesco Express on Alexandra Road in Mutley in Plymouth, following reports of a robbery from a security van at the location.
Two cash boxes are alleged to have been taken from the van.

“A security guard was hit with a metal bar, however, did not require medical attention.
A search is currently ongoing to locate three men seen fleeing the scene.

Read More

Today’s Top Stories

Police have not yet revealed how much cash was taken or descriptions of the three men seen fleeing the scene, reports plymouthherald1 . The robbers escaped in a silver Vauxhall Astra style car, police have revealed. The police officer investigating the robbery said: “The three men were all dressed in black and had their faces covered with what is believed to be balaclavas.

Police are searching for a silver Vauxhall Astra-style car, which was last seen heading in the direction of Mutley.

Police have confirmed that all three had weapons, although these were thought to be iron bars rather than firearms.

Detectives are currently examining CCTV footage in a bid to identify the suspects .

Police say they are keen to hear from anyone who saw anybody acting suspiciously before or after the incident in the area or at any other location where cash deliveries have been made today.

In previous cases of cash in transit robberies, police say suspects will tail a security van for some time before striking.

It is understood that after the security van had pulled up by the Tesco, and the guard walked towards the store, the three suspects chased after him.

If you have any information call police on 101 or Crimestoppers anonymously on 0800 555111, quoting log number 183 of December 13.”

A spokesperson for Devon and Cornwall police said earlier: “Police were called at around 10.30am to Tesco Express on Alexandra Road in Mutley in Plymouth, following reports of a robbery from a security van at the location.

Two cash boxes are alleged to have been taken from the van.

“A security guard was hit with a metal bar, however, did not require medical attention.

A search is currently ongoing to locate three men seen fleeing the scene.

References

  1. ^ plymouthherald (www.plymouthherald.co.uk)

Armed robbers attack guard and steal cash from security van at Plymouth Tesco store

Armed robbers attacked a guard and stole cash from security van at a Plymouth Tesco store today, police have confirmed.

UPDATE: Tesco Robbery: Police hunt for ‘silver Vauxhall Astra’ driven by masked raiders1

A spokesperson for Devon and Cornwall Police said: “Police were called at around 10.30am to Tesco Express on Alexandra Road in Mutley in Plymouth, following reports of a robbery from a security van at the location.

Read More

The Tesco in Alexandra Road reopened at lunchtime on Wednesday

Two cash boxes are alleged to have been taken from the van.

“A security guard was hit with a metal bar, however, did not require medical attention.
A search is currently ongoing to locate three men seen fleeing the scene.

Read More

The Tesco Express in Alexandra Road

Police have not yet revealed how much cash was taken or descriptions of the three men seen fleeing the scene.

UPDATE: Tesco Robbery: Police hunt for ‘silver Vauxhall Astra’ driven by masked raiders2

Follow our dedicated live blog3 for the latest updates.

References

  1. ^ Tesco Robbery: Police hunt for ‘silver Vauxhall Astra’ driven by masked raiders (www.plymouthherald.co.uk)
  2. ^ Tesco Robbery: Police hunt for ‘silver Vauxhall Astra’ driven by masked raiders (www.plymouthherald.co.uk)
  3. ^ dedicated live blog (www.plymouthherald.co.uk)

Hackers’ delight: Mobile bank app security flaw could have smacked …

Security researchers from the University of Birmingham last week went public about security shortcomings in mobile banking apps that leave millions of users at a heightened risk of hacking. The researchers developed a tool called “Spinner” to perform semi-automated security testing of mobile phone apps . After running the tool on a sample of 400 security critical apps, they were able to identify a serious flaw in many banking apps including those offered by HSBC, NatWest and Co-op as well as Bank of America’s Health account app. The researchers found that although banks had been diligent in building security into their apps, one particular technology used – so-called certificate pinning – which normally improves security, meant that standard tests failed to detect a serious vulnerability that could let attackers take control of a victim’s online banking.

Dr Flavio Garcia, one the the researchers, explained: Certificate Pinning is a good technique to improve the security of a connection, but in this case, it made it difficult for penetration testers to identify the more serious issue of having no proper hostname verification. The security weak spot created a possible mechanism for an attacker – providing they are connected to the same network as the victim (eg, a Wi-Fi hotspot) – to perform a so-called “man in the middle attack” and retrieve the user’s credentials, such as username and password/PIN code . Other potential avenues for attack were also found, including the possibility for a wrong-un to do some in-app phishing in software offerings from Santander and Allied Irish bank. These attacks would have allowed the rogue take over part of the screen while the app was running and use this to phish for the victim s login credentials.

All the fixings

The University of Birmingham researchers worked with the banks involved, and the UK government’s National Cyber Security Centre to fix all the vulnerabilities, and the current versions of all the apps affected by this pinning vulnerability are now secure. Banking customers using the same old Apple device that the researchers used (probably a 1st generation iPad, which is limited to iOS 5.1.1) should probably think about using something else for their banking, according to app security firm Arxan. Winston Bond, technical director EMEA at the firm, urged banks to review the research and push updates to their customers.

Banks should fix vulnerabilities as quickly as they can and push updates to their customers, Bond said .

One of the issues highlighted by this research is that users of older Apple devices, which are restricted to older iOS versions, can’t pick up any updates once the app developer moves the minimum OS version for the app beyond their version . They are stuck on the last compatible version, with whatever bugs and vulnerabilities that includes.

For banks and other organisations to protect themselves from outdated apps, every major app developer has to balance the relentless pressure to adopt the latest iOS features against the need to keep updating the users of older devices, he added. More robust cryptographic technology deployments by banks would also guard against attacks even in cases where users are connecting into services from ageing or not fully patched devices.

Certificate pinning is a way to make sure that a mobile app will only talk directly to the server that it is meant to, Bond explained . All the communications traffic is strongly encrypted and it can only be understood when it gets to the right place . In this case, it stops anyone getting between you and the bank and seeing how much money you have in your account or changing the details when you tell the bank to pay someone.

“There are several ways to implement certificate pinning, with some trade-offs between flexibility and security, he added.

It’s also worth noting that the University of Birmingham team managed to carry out these attacks while following the app store licence agreement rules which prohibit reverse-engineering or modification of apps . Real attackers won’t play so nicely. Mark James, a security specialist at anti-malware firm ESET, added: Using financial services through your mobile device, either a smartphone or tablet, should ideally be done through your cellular mobile connection if possible, or if not, then through a VPN to minimise the chances of your connection being hijacked.”

Some initial results were given in the paper A Security Analysis of TLS in Leading UK Banking Apps presented at the Conference on Financial Cryptography and Data Security in January . The full results were given in the paper Spinner: Semi-Automatic Detection of Pinning without Hostname Verification which was presented last week at the 33rd Annual Computer Security Applications Conference in Orlando, Florida in the US.

Sponsored: Advanced Threat Prevention . Visit The Register’s Endpoint Security Hub1

References

  1. ^ Advanced Threat Prevention .

    Visit The Register’s Endpoint Security Hub (go.theregister.com)