Tag: mobile

DuckDuckGo Browser’s Scam Blocker to Guard Against Phishing and Malware Sites

Jun 22, 2025 12:35 AM

Tags: cyber, malware, mobile, phishing, scam, threat, update

DuckDuckGo has rolled out an advanced update to its browser’s built-in Scam Blocker, a robust security feature designed to shield users from a wide array of online threats, including phishing sites, malware, and sophisticated scams. Now integrated into the DuckDuckGo browser for both desktop and mobile platforms, Scam Blocker offers protection by default, requiring no…
Godfather Android trojan uses virtualization to hijack banking and crypto apps

Jun 21, 2025 8:35 AM

Tags: android, banking, crypto, malware, mobile

Godfather Android trojan uses virtualization to hijack banking and crypto apps, stealing user funds, warns mobile security firm Zimperium. Zimperium zLabs has uncovered a major evolution of the GodFather Android trojan, which uses on-device virtualization to hijack real banking and crypto apps. Instead of using fake overlays, the malware creates a sandbox on the victim’s…
Passkeys on Facebook, Messenger for mobile imminent

Jun 20, 2025 11:35 PM

Tags: mobile, passkey

First seen on scworld.com Jump to article: www.scworld.com/brief/passkeys-on-facebook-messenger-for-mobile-imminent
Cybersecurity Snapshot: Tenable Report Spotlights Cloud Exposures, as Google Catches Pro-Russia Hackers Impersonating Feds

Jun 20, 2025 7:35 PM

Tags: access, advisory, ai, api, apple, attack, authentication, best-practice, business, cisa, cisco, cloud, conference, container, control, credentials, cve, cyber, cybersecurity, data, data-breach, detection, email, encryption, endpoint, exploit, google, governance, government, group, guide, hacker, Hardware, identity, infrastructure, intelligence, Internet, kubernetes, linux, macOS, microsoft, mitigation, mobile, monitoring, network, oracle, password, phishing, ransomware, risk, russia, service, social-engineering, software, sql, strategy, tactics, technology, threat, tool, update, vmware, vulnerability, windows

Check out highlights from Tenable’s “2025 Cloud Security Risk Report,” which delves into the critical risk from insecure cloud configurations. Plus, Google reveals a Russia-sponsored social engineering campaign that targeted prominent academics’ Gmail accounts. And get the latest on AI system security, just-in-time access, CIS Benchmarks and more! Dive into six things that are top…
New Android Malware Surge Hits Devices via Overlays, Virtualization Fraud, and NFC Theft

Jun 20, 2025 5:35 PM

Tags: android, cybersecurity, data-breach, fraud, malware, mobile, nfc, service, theft, threat

Cybersecurity researchers have exposed the inner workings of an Android malware called AntiDot that has compromised over 3,775 devices as part of 273 unique campaigns.”Operated by the financially motivated threat actor LARVA-398, AntiDot is actively sold as a Malware-as-a-Service (MaaS) on underground forums and has been linked to a wide range of mobile campaigns,” PRODAFT…
Meta To Introduce Full Passkey Support for Facebook on Mobiles

Jun 20, 2025 2:35 PM

Tags: mobile, passkey

Around half of the world’s top 100 websites have already integrated passkey support First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/meta-introduce-full-passkey-support/
GodFather Android Malware Uses On-Device Virtualization to Hijack Legitimate Banking Apps

Jun 20, 2025 1:35 PM

Tags: android, attack, banking, crypto, cyber, login, malware, mobile

Zimperium zLabs has uncovered a highly advanced iteration of the GodFather Android banking malware, which employs a groundbreaking on-device virtualization technique to compromise legitimate mobile banking and cryptocurrency applications. Unlike traditional overlay attacks that merely mimic login screens, this malware creates a fully isolated virtual environment on the victim’s device, enabling attackers to monitor and…
Godfather Android malware now uses virtualization to hijack banking apps

Jun 19, 2025 10:36 PM

Tags: android, banking, data, malware, mobile

A new version of the Android malware “Godfather” creates isolated virtual environments on mobile devices to steal account data and transactions from legitimate banking apps. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/godfather-android-malware-now-uses-virtualization-to-hijack-banking-apps/
New Android Malware Surge Hits Devices via Overlays, Virtualization Fraud and NFC Theft

Jun 19, 2025 9:35 PM

Tags: android, cybersecurity, data-breach, fraud, malware, mobile, nfc, service, theft, threat

Cybersecurity researchers have exposed the inner workings of an Android malware called AntiDot that has compromised over 3,775 devices as part of 273 unique campaigns.”Operated by the financially motivated threat actor LARVA-398, AntiDot is actively sold as a Malware-as-a-Service (MaaS) on underground forums and has been linked to a wide range of mobile campaigns,” PRODAFT…
From cleaners to creepers: The risk of mobile privilege escalation

Jun 18, 2025 6:54 AM

Tags: access, android, mobile, risk

In this Help Net Security video, Nico Chiaraviglio, Chief Scientist at Zimperium, explores how Android apps can be abused to escalate privileges, giving attackers access to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/18/android-mobile-privilege-escalation-video/
GCHQ Intern Sentenced to 7 Years for Illegally Copying Secret Files to Smartphone

Jun 17, 2025 9:54 AM

Tags: breach, computer, cyber, data, intelligence, mobile, phone

A former intern at the UK’s intelligence agency GCHQ has been sentenced to seven and a half years in prison after admitting to smuggling top secret data out of a secure facility using his mobile phone, in a breach described by prosecutors as a “flagrant violation” of national security protocols. Hasaan Arshad, 25, a computer…
Exposure Management Is the Future of Proactive Security

Jun 16, 2025 5:54 PM

Tags: attack, business, cloud, compliance, corporate, cybersecurity, data, guide, identity, Internet, jobs, mobile, risk, skills, strategy, technology, threat, tool, update, vulnerability, vulnerability-management

Each Monday, the Tenable Exposure Management Academy provides the practical, real-world guidance you need to shift from vulnerability management to exposure management. In this post, Jorge Orchilles, Senior Director of Readiness and Proactive Security at Verizon, offers an up-close glimpse at the thinking that drove his move to exposure management. You can read the entire…
App Store Security Threats in 2025: Why Hackers Target Mobile Ecosystems

Jun 16, 2025 3:54 PM

Tags: attack, cybercrime, hacker, mobile, tactics, threat

In 2025, app store security threats have reached unprecedented levels, driven by increasingly sophisticated cybercriminal tactics and expanding attack surfaces. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/app-store-security-threats-in-2025-why-hackers-target-mobile-ecosystems/
Canadian Airline WestJet Suffers Cyberattack, Halts App and Web Services

Jun 16, 2025 2:54 PM

Tags: access, breach, cyber, cyberattack, cybersecurity, mobile, service

Calgary-based WestJet Airlines, Canada’s second-largest carrier, is grappling with the fallout from a significant cybersecurity incident that has disrupted access to its mobile app and internal systems. The breach, first detected on June 13, has led to intermittent outages and errors for guests attempting to use WestJet’s digital platforms, including the WestJet app and website.…
How to Monetize Unity Apps: Best Practices

Jun 14, 2025 4:54 PM

Tags: best-practice, mobile

Unity is one of the most popular game engines for mobile and cross-platform app development. It powers millions… First seen on hackread.com Jump to article: hackread.com/how-to-monetize-unity-apps-best-practices/
Data breach purportedly pilfers over 64M T-Mobile records

Jun 13, 2025 10:54 PM

Tags: breach, data, data-breach, mobile

First seen on scworld.com Jump to article: www.scworld.com/brief/data-breach-purportedly-pilfers-over-64m-t-mobile-records
Cybersecurity Snapshot: NIST Offers Zero Trust Implementation Advice, While OpenAI Shares ChatGPT Misuse Incidents

Jun 13, 2025 7:54 PM

Tags: access, ai, attack, best-practice, breach, chatgpt, china, cloud, computer, computing, control, credentials, crime, cyber, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, encryption, endpoint, exploit, finance, fraud, government, guide, Hardware, identity, infrastructure, intelligence, Internet, iot, korea, law, least-privilege, linkedin, malicious, malware, military, ml, mobile, monitoring, network, nist, north-korea, openai, phishing, phone, programming, ransomware, risk, russia, scam, service, social-engineering, software, supply-chain, technology, theft, threat, tool, update, vulnerability, zero-trust

Check out NIST best practices for adopting a zero trust architecture. Plus, learn how OpenAI disrupted various attempts to abuse ChatGPT. In addition, find out what Tenable webinar attendees said about their exposure management experiences. And get the latest on cyber crime trends, a new cybersecurity executive order and more! Dive into six things that…
SHARED INTEL QA: A sharper lens on rising API logic abuse, and a framework to fight back

Jun 12, 2025 5:54 PM

Tags: api, cloud, framework, infrastructure, mobile, service

In today’s digital enterprise, API-driven infrastructure is the connective tissue holding everything together. Related: The DocuSign API-abuse hack From mobile apps to backend workflows, APIs are what keep digital services talking”, and scaling. But this essential layer of connectivity is also… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/shared-intel-qa-a-sharper-lens-on-rising-api-logic-abuse-and-a-framework-to-fight-back/
Half of Mobile Users Now Face Daily Scams

Jun 11, 2025 11:55 AM

Tags: data-breach, mobile, scam

Malwarebytes claims 44% of mobile users are exposed to scams every day First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/half-of-mobile-users-now-face/
Android Enterprise Rolls Out Security and Productivity Updates

Jun 10, 2025 8:56 PM

Tags: android, mobile, update

Android Enterprise has introduced features for mobile security, device management and user productivity in its latest update First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/android-enterprise-security-updates/
Android Enterprise update puts mobile security first

Jun 10, 2025 8:56 PM

Tags: android, google, mobile, update

Google is rolling out new Android Enterprise features aimed at improving mobile security, IT management, and employee productivity. According to Zimperium’s 2025 Global Mobile … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/10/android-enterprise-new-features-2025/
Secure mobile applications with Dart, Flutter, and Sonatype

Jun 10, 2025 6:55 PM

Tags: framework, mobile
OpenAI working to fix ChatGPT outage affecting users worldwide

Jun 10, 2025 3:55 PM

Tags: chatgpt, mobile, openai

OpenAI is working to fix an ongoing outage impacting ChatGPT users worldwide and preventing them from accessing the chatbot on the web or via mobile and desktop apps. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/technology/openai-working-to-fix-chatgpt-outage-affecting-users-worldwide/
OpenAI working to fix ChatGPT outage affecting users worldwide

Jun 10, 2025 3:55 PM

Tags: chatgpt, mobile, openai

OpenAI is working to fix an ongoing outage impacting ChatGPT users worldwide and preventing them from accessing the chatbot on the web or via mobile and desktop apps. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/technology/openai-working-to-fix-chatgpt-outage-affecting-users-worldwide/
Operation DRAGONCLONE: China Mobile Tietong Hit by Advanced APT Attack

Jun 10, 2025 5:55 AM

Tags: apt, attack, china, mobile

The post Operation DRAGONCLONE: China Mobile Tietong Hit by Advanced APT Attack appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/operation-dragonclone-china-mobile-tietong-hit-by-advanced-apt-attack/
How to Use Risk-Based Metrics in an Exposure Management Program

Jun 9, 2025 9:55 PM

Tags: attack, business, cloud, control, cybersecurity, data, exploit, guide, intelligence, iot, metric, mobile, monitoring, risk, service, threat, tool, update, vulnerability, vulnerability-management

Each Monday, the Tenable Exposure Management Academy provides the practical, real-world guidance you need to shift from vulnerability management to exposure management. In this post, Tenable security engineers Arnie Cabral and Jason Schavel share how you can use risk-based metrics. You can read the entire Exposure Management Academy series here. We’re information security engineers at…
New Way to Track Covertly Android Users

Jun 9, 2025 5:55 PM

Tags: android, browser, chrome, google, Internet, mobile, russia

Researchers have discovered a new way to covertly track Android users. Both Meta and Yandex were using it, but have suddenly stopped now that they have been caught. The details are interesting, and worth reading in detail: >Tracking code that Meta and Russia-based Yandex embed into millions of websites is de-anonymizing visitors by abusing legitimate…
Do You Really Need a REAL ID to Fly in the US? Breaking Down the Myths

Jun 9, 2025 8:54 AM

Tags: identity, mobile

Join us as we discuss the long-awaited implementation of the REAL ID Act in the U.S. We cover the essentials you need to fly, the potential benefits of using your passport, and how new mobile IDs fit into the TSA’s plans. We also discuss the broader implications for identity surveillance and who truly benefits from……
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 48

Jun 8, 2025 2:54 PM

Tags: ai, detection, exploit, international, malware, mobile, threat, tool

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Pure Crypter Malware Analysis: 99 Problems but Detection Ain’t One Attacker exploits misconfigured AI tool to run AI-generated payload Crocodilus Mobile Malware: Evolving Fast, Going Global How Threat Actors Exploit Human Trust: A Breakdown of the…
Cellebrite Acquires Corellium, Raising Stakes for Mobile Security and Surveillance Tools

Jun 6, 2025 9:54 PM

Tags: mobile, tool

First seen on scworld.com Jump to article: www.scworld.com/brief/cellebrite-acquires-corellium-raising-stakes-for-mobile-security-and-surveillance-tools