StrandHogg 2.0 Critical Bug Allows Android App Hijacking
a malicious app installed on a device can hide behind legitimate apps.
Turla APT Revamps One of Its Go-To Spy Tools
An updated version of the ComRAT malware was discovered in attacks on governmental targets.
New iOS Jailbreak Tool Works on iPhone Models iOS 11 to iOS 13.5
Latest version of UnC0ver uses unpatched zero-day exploit to take complete control of devices, even those running iOS 13.5.
Spam and phishing in Q1 2020
Quarterly highlights Don’t get burned Burning Man is one of the most eagerly awaited events among fans of spectacular performance and installation art. The main obstacle to attending is the price of admission: a standard ticket will set you back $475, the number is limited, and the buying process is a challenge all by itself…
ThreatList: People Know Reusing Passwords Is Dumb, But Still Do It
Even seeing data breaches in the news, more than half of consumers are still reusing passwords.
70 Percent of Mobile, Desktop Apps Contain Open-Source Bugs
A lack of awareness about where and how open-source libraries are being used is problematic, researchers say.
Aggressive in-app advertising in Android
Recently, we’ve been noticing ever more dubious advertising libraries in popular apps on Google Play. The monetization methods used in such SDKs can pose a threat to users, yet they pull in more revenue for developers than whitelisted ad modules due to the greater number of views. In this post we will look into a…
‘Coronavirus Report’ Emails Spread NetSupport RAT, Microsoft Warns
Attackers used malicious Excel 4.0 documents to spread the weaponized NetSupport RAT in a spear-phishing campaign.
Home Chef Serves Up Data Breach for 8 Million Records
The meal-kit company’s customer records were leaked as part of the Shiny Hunters breach.
NSO Group Impersonates Facebook Security Team to Spread Spyware — Report
An investigation traces an NSO Group-controlled IP address to a fake Facebook security portal.