Category: Mobile security

Cloud security, Mobile security

AT&T, Verizon Subscribers Exposed as Mobile Bills Turn Up on the Open Web

December 6, 2019

Via: Threat Post

Names, addresses, phone numbers, call and text message records and account PINs were all caught up in a cloud misconfiguration. Hundreds of thousands of mobile phone bills for AT&T, Verizon and T-Mobile subscribers have been laid open to anyone with […]

Access control, Mobile, Mobile security, Privacy protection, Security

CPoC: New data security standard for contactless payments

December 5, 2019

Via: Help Net Security

The PCI Security Standards Council (PCI SSC) published a new data security standard for solutions that enable merchants to accept contactless payments using a commercial off-the-shelf (COTS) mobile device with near-field communication (NFC). PCI CPoC Standard Using the PCI Contactless […]

Mobile security, Phishing

Crooks are exploiting unpatched Android flaw to drain users’ bank accounts

December 3, 2019

Via: Help Net Security

Hackers are actively exploiting StrandHogg, a newly revealed Android vulnerability, to steal users’ mobile banking credentials and empty their accounts, a Norwegian app security company has warned. “Promon identified the StrandHogg vulnerability after it was informed by an Eastern European […]

Mobile, Mobile security

Hackers attack OnePlus again – this time stealing customer details

November 25, 2019

Via: Hot for Security

Hackers have once again successfully compromised the website of Chinese phone manufacturer OnePlus. Back in January 2018, it was revealed that the credit card details of some 40,000 people using the OnePlus website had been stolen by hackers. On that […]

Mobile security, Vulnerabilities

Google Will Award $1M-Plus to People Who Can Hack Titan M Security Chip

November 22, 2019

Via: Threat Post

Google is willing to award up to $1.5 million to hackers who can successfully hack its Titan M security chip on the company’s Pixel devices as part of an expansion of its Android bug-bounty program unveiled this week. The company […]

Mobile security, Vulnerabilities

Popular Apps on Google Play Store Remain Unpatched

November 21, 2019

Via: Threat Post

Check Point researchers found that hundreds of marquee Android mobile apps still contain vulnerabilities that allow remote code-execution even if users update. Most people think if they keep their mobile apps updated to the latest version, they also are patching […]

Mobile security, Vulnerabilities

WhatsApp Vulnerability Allows Code Execution Via Malicious MP4 File

November 18, 2019

Via: Security Week

A security vulnerability in WhatsApp that was made public last week could be abused to execute arbitrary code remotely on affected devices. Tracked as CVE-2019-11931, the issue is a stack-based buffer overflow that can be triggered by sending a specially […]

Mobile security, Wireless security

Canada Spy Agencies Split Over Proposed Huawei 5G Ban: Media

November 14, 2019

Via: Security Week

The Canadian Security Intelligence Service (CSIS) and the Communications Security Establishment (CSE) were tasked with conducting a cybersecurity review to evaluate the risks as well as the economic costs to Canadian telecoms and consumers of blacklisting the equipment supplier. The […]

Malware, Mobile security, Vulnerabilities

Understanding the Ripple Effect: Large Enterprise Data Breaches Threaten Everyone

November 11, 2019

Via: Threat Post

Big businesses are constantly under attack, and that affects everyone from customers and business partners to parties with national security interests. When successful, the initial compromise is only a means to an end — the real goal is to mount […]

Hacker, Mobile, Mobile security, Threats & Malware

China-Linked Hackers Spy on Texts With MessageTap Malware

October 31, 2019

Via: Threat Post

Researchers have discovered a new malware used for cyber-espionage efforts by China-linked threat group APT41. The malware intercepts telecom SMS server traffic and sniffs out certain phone numbers and SMS messages – particularly those with keywords relating to Chinese political […]