Tag: mobile

WhatsApp accounts targeted in ‘GhostPairing’ attack

Dec 18, 2025 8:19 PM

Tags: access, attack, email, flaw, group, mobile, phishing, risk, spam, threat, windows

Defending WhatsApp: Users can check which devices are paired via WhatsApp via Settings > Linked Devices. A rogue device link will appear here. Despite having access to a user’s WhatsApp account, the attacker can’t revoke their device access, which must be initiated by the primary device. Another tip is to enable two-step PIN verification. This…
WhatsApp accounts targeted in ‘GhostPairing’ attack

Dec 18, 2025 8:19 PM

Tags: access, attack, email, flaw, group, mobile, phishing, risk, spam, threat, windows

Defending WhatsApp: Users can check which devices are paired via WhatsApp via Settings > Linked Devices. A rogue device link will appear here. Despite having access to a user’s WhatsApp account, the attacker can’t revoke their device access, which must be initiated by the primary device. Another tip is to enable two-step PIN verification. This…
Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App

Dec 18, 2025 10:19 AM

Tags: android, korea, malware, mobile, north-korea, phishing, qr, threat

The North Korean threat actor known as Kimsuky has been linked to a new campaign that distributes a new variant of Android malware called DocSwap via QR codes hosted on phishing sites mimicking Seoul-based logistics firm CJ Logistics (formerly CJ Korea Express).”The threat actor leveraged QR codes and notification pop-ups to lure victims into installing…
CVE-2025-40602: SonicWall Secure Mobile Access (SMA) 1000 Zero-Day Exploited

Dec 18, 2025 5:20 AM

Tags: access, advisory, attack, authentication, control, cve, cyber, data, exploit, firewall, flaw, injection, international, mobile, ransomware, sql, vulnerability, zero-day

A zero-day vulnerability in SonicWall’s Secure Mobile Access (SMA) 1000 was reportedly exploited in the wild in a chained attack with CVE-2025-23006. Key takeaways: CVE-2025-40602 is a local privilege escalation vulnerability in the appliance management console (AMC) of the SonicWall SMA 1000 appliance. CVE-2025-40602 has been exploited in a chained attack with CVE-2025-23006, a deserialization…
Exploited SonicWall zero-day patched (CVE-2025-40602)

Dec 17, 2025 11:19 PM

Tags: access, exploit, mobile, vulnerability, zero-day

SonicWall has patched a local privilege escalation vulnerability (CVE-2025-40602) affecting its Secure Mobile Access (SMA) 1000 appliances and is urging customers to apply the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/17/sonicwall-cve-2025-40602/
Kimsuky Hackers Use Weaponized QR Codes to Distribute Malicious Mobile Apps

Dec 17, 2025 9:19 PM

Tags: access, cyber, hacker, korea, malicious, malware, mobile, north-korea, qr, service, threat

Threat researchers have uncovered a sophisticated mobile malware campaign attributed to North Korea-linked threat actor Kimsuky, leveraging weaponized QR codes and fraudulent delivery service impersonations to trick users into installing remote access trojans on their smartphones. The ENKI WhiteHat Threat Research Team identified the latest iteration of >>DOCSWAP
Microsoft to Block Exchange Online Access from Outdated Devices

Dec 17, 2025 9:19 PM

Tags: access, cyber, microsoft, mobile, update

Microsoft has announced a significant update to its device connectivity policies for Exchange Online, aimed at enhancing security and ensuring users are on modern protocols. Starting March 1, 2026, mobile devices running Exchange ActiveSync (EAS) versions older than 16.1 will no longer be able to connect to Exchange Online mailboxes. Exchange ActiveSync version 16.1 was originally…
SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances

Dec 17, 2025 8:19 PM

Tags: access, cve, exploit, flaw, mobile, vulnerability

SonicWall has rolled out fixes to address a security flaw in Secure Mobile Access (SMA) 100 series appliances that it said has been actively exploited in the wild.The vulnerability, tracked as CVE-2025-40602 (CVSS score: 6.6), concerns a case of local privilege escalation that arises as a result of insufficient authorization in the appliance management console…
Actively exploited SonicWall zero-day patched (CVE-2025-40602)

Dec 17, 2025 6:19 PM

Tags: access, exploit, mobile, vulnerability, zero-day

SonicWall has patched a local privilege escalation vulnerability (CVE-2025-40602) affecting its Secure Mobile Access (SMA) 1000 appliances and is urging customers to apply the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/17/sonicwall-cve-2025-40602/
Actively exploited SonicWall zero-day patched (CVE-2025-40602)

Dec 17, 2025 6:19 PM

Tags: access, exploit, mobile, vulnerability, zero-day

SonicWall has patched a local privilege escalation vulnerability (CVE-2025-40602) affecting its Secure Mobile Access (SMA) 1000 appliances and is urging customers to apply the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/17/sonicwall-cve-2025-40602/
CASB buyer’s guide: What to know about cloud access security brokers before you buy

Dec 17, 2025 9:19 AM

Tags: access, ai, antivirus, api, authentication, business, chatgpt, cisco, cloud, compliance, control, corporate, data, detection, email, encryption, endpoint, firewall, framework, gartner, google, guide, identity, india, infection, infrastructure, intelligence, Internet, leak, login, malicious, malware, marketplace, microsoft, mobile, monitoring, network, office, phone, privacy, programming, ransomware, regulation, risk, risk-assessment, saas, service, software, strategy, technology, threat, tool, unauthorized, vpn, zero-day, zero-trust

cloud access security broker (CASB) enterprise buyer’s guide today! ] In this buyer’s guide: Cloud access security brokers (CASBs) explainedWhy enterprises need cloud access security brokers (CASBs)What to look for in a cloud access security broker (CASB) toolCore cloud access security broker (CASB) servicesLeading cloud access security broker (CASB) vendorsWhat to ask before cloud access…
CASB buyer’s guide: What to know about cloud access security brokers before you buy

Dec 17, 2025 9:19 AM

Tags: access, ai, antivirus, api, authentication, business, chatgpt, cisco, cloud, compliance, control, corporate, data, detection, email, encryption, endpoint, firewall, framework, gartner, google, guide, identity, india, infection, infrastructure, intelligence, Internet, leak, login, malicious, malware, marketplace, microsoft, mobile, monitoring, network, office, phone, privacy, programming, ransomware, regulation, risk, risk-assessment, saas, service, software, strategy, technology, threat, tool, unauthorized, vpn, zero-day, zero-trust

cloud access security broker (CASB) enterprise buyer’s guide today! ] In this buyer’s guide: Cloud access security brokers (CASBs) explainedWhy enterprises need cloud access security brokers (CASBs)What to look for in a cloud access security broker (CASB) toolCore cloud access security broker (CASB) servicesLeading cloud access security broker (CASB) vendorsWhat to ask before cloud access…
Cellik Android Malware Uses One-Click APK Builder to Hide in Play Store Apps

Dec 17, 2025 9:19 AM

Tags: access, android, attack, control, cyber, google, malicious, malware, mobile, spyware, threat, tool

A newly discovered Android Remote Access Trojan (RAT) called Cellik is democratizing sophisticated mobile surveillance attacks by bundling advanced spyware capabilities with an automated tool that allows attackers to inject malicious code into legitimate Google Play Store applications seamlessly. The malware address a significant escalation in Android-targeted threats, combining complete device control, real-time surveillance, and…
Cellik Android Malware Uses One-Click APK Builder to Hide in Play Store Apps

Dec 17, 2025 9:19 AM

Tags: access, android, attack, control, cyber, google, malicious, malware, mobile, spyware, threat, tool

A newly discovered Android Remote Access Trojan (RAT) called Cellik is democratizing sophisticated mobile surveillance attacks by bundling advanced spyware capabilities with an automated tool that allows attackers to inject malicious code into legitimate Google Play Store applications seamlessly. The malware address a significant escalation in Android-targeted threats, combining complete device control, real-time surveillance, and…
7 Mobile Cybersecurity Trends Approov Forecast for 2025, And the Results Are In

Dec 16, 2025 5:19 PM

Tags: cybersecurity, mobile
How to create a ransomware playbook that works

Dec 16, 2025 9:19 AM

Tags: access, antivirus, attack, authentication, awareness, backup, best-practice, breach, business, communications, corporate, credentials, cyber, cybersecurity, data, defense, detection, edr, email, encryption, exploit, finance, firewall, flaw, identity, incident response, infrastructure, insurance, law, least-privilege, malicious, malware, mfa, mobile, phishing, ransom, ransomware, risk, skills, social-engineering, software, strategy, technology, threat, tool, training, update, vulnerability

Staffing, skills, and training: Many organizations continue to find that cybersecurity experts are in short supply, so staffing up teams is a challenge. That can be problematic for a ransomware strategy. Companies need to have a variety of skills in place, including expertise in incident detection and prevention, incident response, firewall configuration, and other areas.They…
How to create a ransomware playbook that works

Dec 16, 2025 9:19 AM

Tags: access, antivirus, attack, authentication, awareness, backup, best-practice, breach, business, communications, corporate, credentials, cyber, cybersecurity, data, defense, detection, edr, email, encryption, exploit, finance, firewall, flaw, identity, incident response, infrastructure, insurance, law, least-privilege, malicious, malware, mfa, mobile, phishing, ransom, ransomware, risk, skills, social-engineering, software, strategy, technology, threat, tool, training, update, vulnerability

Staffing, skills, and training: Many organizations continue to find that cybersecurity experts are in short supply, so staffing up teams is a challenge. That can be problematic for a ransomware strategy. Companies need to have a variety of skills in place, including expertise in incident detection and prevention, incident response, firewall configuration, and other areas.They…
How to create a ransomware playbook that works

Dec 16, 2025 9:19 AM

Tags: access, antivirus, attack, authentication, awareness, backup, best-practice, breach, business, communications, corporate, credentials, cyber, cybersecurity, data, defense, detection, edr, email, encryption, exploit, finance, firewall, flaw, identity, incident response, infrastructure, insurance, law, least-privilege, malicious, malware, mfa, mobile, phishing, ransom, ransomware, risk, skills, social-engineering, software, strategy, technology, threat, tool, training, update, vulnerability

Staffing, skills, and training: Many organizations continue to find that cybersecurity experts are in short supply, so staffing up teams is a challenge. That can be problematic for a ransomware strategy. Companies need to have a variety of skills in place, including expertise in incident detection and prevention, incident response, firewall configuration, and other areas.They…
Product showcase: GlassWire mobile firewall for Android

Dec 16, 2025 7:19 AM

Tags: android, firewall, Internet, mobile, monitoring, network, windows

GlassWire is a free network monitoring and security application for Windows and Android. It lets you see how your system communicates over the internet and local network. The … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/16/product-showcase-glasswire-firewall-android/
Frogblight Android Malware Spoofs Government Sites to Collect SMS and Device Details

Dec 15, 2025 9:19 PM

Tags: android, banking, credentials, cyber, government, kaspersky, malware, mobile, social-engineering, spyware, theft, threat

Kaspersky security researchers have uncovered a sophisticated Android banking Trojan called Frogblight that targets Turkish users by impersonating legitimate government applications. First detected in August 2025, this advanced malware combines banking credential theft with extensive spyware functionality, marking a significant threat to mobile users in the region.”‹ The malware employs a deceptive social engineering approach,…
Europe’s DMA raises new security worries for mobile ecosystems

Dec 15, 2025 7:19 AM

Tags: control, cybersecurity, law, mobile, service

Mobile security has long depended on tight control over how apps and services interact with a device. A new paper from the Center for Cybersecurity Policy and Law warns that … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/15/eu-dma-mobile-security-risks/
Rise in Device-Driven Cybercrime and Expanding Ransomware Threats Put India on Alert

Dec 10, 2025 10:32 AM

Tags: crime, cybercrime, data, india, mobile, phone, ransomware, threat

Recent data released by the National Crime Records Bureau (NCRB) paints a troubling picture of the rapid rise in cybercrime in India, particularly cases executed through mobile phones and computers. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cybercrime-in-india-ncrb-report-2023-2025/
Key cybersecurity takeaways from the 2026 NDAA

Dec 10, 2025 8:32 AM

Tags: access, ai, attack, awareness, best-practice, control, cyber, cybersecurity, data, defense, framework, governance, government, group, guide, infrastructure, injection, intelligence, international, malicious, military, ml, mobile, monitoring, network, nist, privacy, resilience, risk, risk-assessment, service, spyware, supply-chain, theft, threat, tool, training, unauthorized, vulnerability

AI and machine learning security and procurement requirements: Recognizing that AI now underpins everything from battlefield planning to intelligence analysis, the bill introduces sweeping requirements to safeguard these systems from emerging digital threats.The NDAA spells out a spate of policy and procurement practices that the military should meet regarding artificial intelligence and machine learning (ML).…
Key cybersecurity takeaways from the 2026 NDAA

Dec 10, 2025 8:32 AM

Tags: access, ai, attack, awareness, best-practice, control, cyber, cybersecurity, data, defense, framework, governance, government, group, guide, infrastructure, injection, intelligence, international, malicious, military, ml, mobile, monitoring, network, nist, privacy, resilience, risk, risk-assessment, service, spyware, supply-chain, theft, threat, tool, training, unauthorized, vulnerability

AI and machine learning security and procurement requirements: Recognizing that AI now underpins everything from battlefield planning to intelligence analysis, the bill introduces sweeping requirements to safeguard these systems from emerging digital threats.The NDAA spells out a spate of policy and procurement practices that the military should meet regarding artificial intelligence and machine learning (ML).…
Racks, sprawl and the myth of redundancy: Why your failover isn’t as safe as you think

Dec 9, 2025 6:32 PM

Tags: access, automation, backup, breach, cloud, control, data, data-breach, defense, detection, dns, encryption, firmware, flaw, infrastructure, intelligence, Internet, metric, mobile, network, resilience, software, strategy, supply-chain, tool, update, vulnerability, zero-day

Cloud complexity and policy traps: Networks, however, no longer stay confined to racks. They live in routing tables, BGP sessions, cloud control planes and software-defined overlays. Many organizations rush to multi-region cloud setups, believing geographic distance alone guarantees resilience. It does not. Last year, I oversaw a global e-commerce platform with active-passive failover across two…
Racks, sprawl and the myth of redundancy: Why your failover isn’t as safe as you think

Dec 9, 2025 6:32 PM

Tags: access, automation, backup, breach, cloud, control, data, data-breach, defense, detection, dns, encryption, firmware, flaw, infrastructure, intelligence, Internet, metric, mobile, network, resilience, software, strategy, supply-chain, tool, update, vulnerability, zero-day

Cloud complexity and policy traps: Networks, however, no longer stay confined to racks. They live in routing tables, BGP sessions, cloud control planes and software-defined overlays. Many organizations rush to multi-region cloud setups, believing geographic distance alone guarantees resilience. It does not. Last year, I oversaw a global e-commerce platform with active-passive failover across two…
Hackers Exploit Multiple Ad Networks to Distribute Triada Malware to Android Users

Dec 8, 2025 3:32 PM

Tags: android, attack, cyber, data, exploit, fraud, hacker, malware, mobile, network, supply-chain

Adex, the anti-fraud and traffic-quality platform operating under AdTech Holding, has successfully identified and neutralized a sophisticated, multi-year malware operation linked to the infamous Triada Trojan. This campaign, which has persistently targeted the mobile advertising ecosystem, underscores the evolving dangers of supply-chain attacks in the digital ad space. According to industry data released alongside the…
Android Malware FvncBot, SeedSnatcher, and ClayRat Gain Stronger Data Theft Features

Dec 8, 2025 12:32 PM

Tags: android, banking, cybersecurity, data, malware, mobile, theft

Cybersecurity researchers have disclosed details of two new Android malware families dubbed FvncBot and SeedSnatcher, as another upgraded version of ClayRat has been spotted in the wild.The findings come from Intel 471, CYFIRMA, and Zimperium, respectively.FvncBot, which masquerades as a security app developed by mBank, targets mobile banking users in Poland. What’s notable about the…
Strengthening Fraud Prevention with Real-Time Mobile Identity Signals

Dec 8, 2025 9:32 AM

Tags: fraud, identity, mobile, tool

Fraud is rising quickly in digital channels, making it harder for businesses to stay secure without adding customer friction. Deterministic, mobile-based identity signals provide the real-time, authoritative verification that outdated probabilistic tools can’t, enabling stronger fraud prevention with smoother onboarding. The post Strengthening Fraud Prevention with Real-Time Mobile Identity Signals appeared first on TechRepublic. First…
FvncBot Android Malware Steals Keystrokes and Injects Harmful Payloads

Dec 6, 2025 9:32 AM

Tags: android, banking, cyber, malware, mobile, threat

A newly discovered Android banking trojan, FvncBot, has emerged as a sophisticated threat targeting mobile banking users in Poland. Researchers from Intel 471 first identified this malware on November 25, 2025, disguised as a security application from mBank, one of Poland’s most prominent banking institutions.”‹ Novel Malware with Advanced Capabilities FvncBot represents an entirely new…