Top
item

Category: Mobile security


Mobile, Mobile security, Threats & Malware, Vulnerabilities

Google Patches Exploited Pixel Vulnerabilities

April 3, 2024

Via: Security Week

The exploited flaws, tracked as CVE-2024-29745 and CVE-2024-29748, impact Pixel’s bootloader and firmware, Google notes in its advisory. The internet giant says it has indications that these two security defects “may be under limited, targeted exploitation,” without providing specific details […]


Mobile, Mobile security

Feds finally decide to do something about years-old SS7 spy holes in phone networks

April 2, 2024

Via: The Register

The FCC appears to finally be stepping up efforts to secure decades-old flaws in American telephone networks that are allegedly being used by foreign governments and surveillance outfits to remotely spy on and monitor wireless devices. At issue are the […]


Mobile, Mobile security, Threats & Malware, Virus & Malware

Vultur Android Banking Trojan Returns with Upgraded Remote Control Capabilities

April 1, 2024

Via: The Hacker News

The Android banking trojan known as Vultur has resurfaced with a suite of new features and improved anti-analysis and detection evasion techniques, enabling its operators to remotely interact with a mobile device and harvest sensitive data. “Vultur has also started […]


Mobile, Mobile security

13 WhatsApp Scams to Know in 2024 + Tips to Stay Safe

March 7, 2024

Via: Panda Security

WhatsApp scams and text scams can deceive users into giving away personal information and trick them into paying money for fake services or products. According to Robokiller, there were 19.2 billion spam texts sent in January 2024 alone. This equates […]


Mobile, Mobile security

Cybercriminals are stealing Face ID scans to break into mobile banking accounts

February 15, 2024

Via: The Register

Cybercriminals are targeting iOS users with malware that steals Face ID scans to break into and pilfer money from bank accounts – thought to be a world first. A Chinese-speaking cybercrime group, dubbed GoldFactory by Group-IB’s researchers, started distributing trojanized […]


Mobile, Mobile security

MyEstatePoint Property Search Android app leaks user passwords

January 5, 2024

Via: Security Affairs

The all-in-one real estate app MyEstatePoint Property Search left a publicly accessible MongoDB server containing the sensitive details of its app users. The app, developed by NJ Technologies, an India-based software developer, has over half a million downloads on the […]


Mobile, Mobile security

Kaspersky reveals previously unknown hardware ‘feature’ exploited in iPhone attacks

December 28, 2023

Via: The Register

Kaspersky’s Global Research and Analysis Team (GReAT) has exposed a previously unknown “feature” in Apple iPhones that allowed malware to bypass hardware-based memory protection. Addressed as CVE-2023-38606, which was patched in July 2023, the issue affected iPhones running iOS versions […]


Mobile, Mobile security

New Android malware family has infected thousands of devices – here’s what we know

December 28, 2023

Via: TechRadar

Cybersecurity researchers from McAfee hae uncovered over a dozen malicious apps lurking in the Google Play Store. The researchers claim these apps were carrying a potent piece of malware, capable of stealing sensitive data from the infected Android devices and […]


Mobile, Mobile security

WhatsApp launches self-destructing voice messages to Android and iOS

December 7, 2023

Via: TechRadar

WhatsApp is officially giving users the ability to send out temporary voice messages to their contacts. We say “officially” because this feature has actually been around for the past two months or so although it was in a beta state. […]


Mobile, Mobile security

Google fixed critical zero-click RCE in Android

December 5, 2023

Via: Security Affairs

Google December 2023 Android security updates addressed 85 vulnerabilities, including a critical zero-click remote code execution (RCE) flaw tracked as CVE-2023-40088. The vulnerability resides in Android’s System component, it doesn’t require additional privileges to be triggered. An attacker can exploit […]


Mobile, Mobile security

This crafty malware dropper sneaks past the toughest Google Android security defenses

November 7, 2023

Via: TechRadar

Hackers have found a way to bypass Android’s “Restricted Settings” and install malware on a victim’s devices. Restricted Settings is a security feature first introduced in Android 13 that prevents apps downloaded from non-vetted sources (i.e. places other than the […]


Mobile, Mobile security

Experts reveal more info on this dangerous hacking tactic targeting your iPhone

October 25, 2023

Via: TechRadar

Cybersecurity researchers from Kaspersky have revealed more details on TriangleDB, a piece of malware that targeted a zero-day vulnerability recently discovered in the iOS operating system. In a detailed technical writeup, Kaspersky said the malware contains at least four different […]


Mobile, Mobile security

Signal denies claims of an alleged zero-day flaw in its platform

October 16, 2023

Via: Security Affairs

The popular encrypted messaging app Signal denied claims of an alleged zero-day vulnerability in its platform. The company launched an investigation into the claims after they have seen the vague viral reports alleging a zero-day vulnerability. “PSA: we have seen […]


Mobile, Mobile security

Another top spyware mobile app has been shut down

October 6, 2023

Via: TechRadar

It looks like the second coming of Spyhide was a short-lived one, with the infamous spyware now truly done and dusted. As reported by TechCrunch, the spyware’s back-end server, which survived the first shutdown intact (and was the reason why […]


Mobile, Mobile security

Xenomorph malware is back after months of hiatus and expands the list of targets

September 26, 2023

Via: Security Affairs

Researchers from ThreatFabric uncovered a new campaign spreading Xenomorph malware to Android users in the United States and all over the world. In February 2022, researchers from ThreatFabric first spotted the Xenomorph malware, which was distributed via the official Google […]


Mobile, Mobile security

Code alterations more prevalent in Android apps than iOS

September 22, 2023

Via: Help Net Security

57% of all monitored apps are under attack, with gaming (63%) and FinServ (62%) apps facing the highest risk, according to Digital.ai. The study found no correlation between an app’s popularity and likelihood of being attacked but found Android apps […]


Mobile, Mobile security

Zero-Day Alert: Latest Android Patch Update Includes Fix for Newly Actively Exploited Flaw

September 6, 2023

Via: The Hacker News

Google has rolled out monthly security patches for Android to address a number of flaws, including a zero-day bug that it said may have been exploited in the wild. Tracked as CVE-2023-35674, the high-severity vulnerability is described as a case […]


Cyber-crime, Malware, Mobile, Mobile security

Trojanized Signal, Telegram apps found on Google Play, Samsung Galaxy Store

August 31, 2023

Via: Help Net Security

ESET researchers have identified two active campaigns targeting Android users, where the threat actors behind the tools for Telegram and Signal are attributed to the China-aligned APT group GREF. Most likely active since July 2020 and since July 2022, respectively […]


Mobile, Mobile security

Syrian Threat Actor EVLF Unmasked as Creator of CypherRAT and CraxsRAT Android Malware

August 23, 2023

Via: The Hacker News

A Syrian threat actor named EVLF has been outed as the creator of malware families CypherRAT and CraxsRAT. “These RATs are designed to allow an attacker to remotely perform real-time actions and control the victim device’s camera, location, and microphone,” […]


Mobile, Mobile security

FBI warns about scams that lure you in as a mobile beta-tester

August 16, 2023

Via: Naked Security

The US Federal Bureau of Investigation (FBI) has just published an official public service announcement headlined with with a very specific warning: Cybercriminals Targeting Victims through Mobile Beta-Testing Applications. The Feds didn’t go as far as naming any specific vendors […]