Tag: mobile

HPE’s sensitive data exposed in alleged IntelBroker hack

Jan 20, 2025 1:22 PM

Tags: access, api, apple, breach, cisco, data, data-breach, docker, email, github, hacker, leak, marketplace, mobile, open-source, sap, service, software, threat

IntelBroker has struck again. This time, the notorious BreachForums bigwig, which has a long list of high-profile victims, including Europol, Cisco, and GE, has claimed to have breached IT giant Hewlett Packard Enterprise (HPE).The suspected Serbian-origin hacker is offering to sell on BreachForums, sensitive data allegedly stolen from HPE including product source codes and personally…
Note to CISOs: Mobile devices are endpoints!

Jan 14, 2025 9:04 PM

Tags: ciso, endpoint, mobile

First seen on scworld.com Jump to article: www.scworld.com/perspective/note-to-cisos-mobile-devices-are-endpoints
Thunderbird Mobile – Mailen mit Datenschutz und ohne Werbung

Jan 14, 2025 9:46 AM

Tags: mobile

First seen on security-insider.de Jump to article: www.security-insider.de/mozillas-email-programm-thunderbird-jetzt-auf-smartphone-a-4bc10c0337df4acf996dbd7a2237a962/
Open Bullet 2: The Preferred Credential Stuffing Tool for Bots

Jan 14, 2025 8:46 AM

Tags: attack, breach, credentials, data, mobile, open-source, software, tool

Open Bullet 2 is an open-source software, specialized in credential stuffing attacks, i.e. attacks that use bots to automatically steal user accounts at scale by automatically testing stolen credentials found in data breaches. It can target both websites and mobile applications. When it comes to credential-stuffing attacks, Open Bullet First seen on securityboulevard.com Jump to…
Mobile Data Privacy Class Action Against Google Proceeds

Jan 11, 2025 9:28 PM

Tags: data, google, mobile, privacy

First seen on scworld.com Jump to article: www.scworld.com/brief/mobile-data-privacy-class-action-against-google-proceeds
Washington State Sues T-Mobile For Negligence Over Massive 2021 Data Breach

Jan 8, 2025 9:19 PM

Tags: breach, data, data-breach, mobile

First seen on scworld.com Jump to article: www.scworld.com/brief/washington-state-sues-t-mobile-for-negligence-over-massive-2021-data-breach
German court finds hacked EncroChat phone evidence inadmissible

Jan 8, 2025 9:19 PM

Tags: mobile, network, phone

The Berlin Regional Court has found that evidence obtained by a joint French and Dutch operation to hack the EncroChat encrypted mobile phone network is legally inadmissible, raising questions about its use in other European countries First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366617630/German-court-finds-hacked-EncroChat-phone-evidence-inadmissible
Gravy Analytics Hit by Cyberattack, Hackers Allegedly Stole data

Jan 8, 2025 3:18 PM

Tags: business, cyber, cyberattack, data, hacker, intelligence, mobile, privacy

Gravy Analytics, a prominent player in location intelligence, has reportedly fallen victim to a significant cyberattack. Initial investigations suggest that hackers have exfiltrated sensitive data, raising concerns over consumer privacy and data security. Founded to enhance business decision-making through location-based insights, Gravy Analytics collects anonymized location data from mobile devices. This information is utilized to…
Washington State Filed Lawsuit Against T-Mobile Massive Data Breach

Jan 8, 2025 10:18 AM

Tags: breach, cyber, data, data-breach, fraud, identity, mobile, risk

Washington State Attorney General Bob Ferguson filed a consumer protection lawsuit against T-Mobile for its alleged failure to secure sensitive personal information of over 2 million residents. This lawsuit comes in the wake of a massive data breach that exposed the personal details of Washingtonians, putting them at heightened risk of fraud and identity theft.…
The biggest data breach fines, penalties, and settlements so far

Jan 8, 2025 9:18 AM

Tags: access, apache, attack, breach, business, china, ciso, communications, compliance, control, credentials, credit-card, cyberattack, cybercrime, cybersecurity, data, data-breach, email, finance, flaw, framework, GDPR, google, hacker, Hardware, identity, Internet, law, leak, linkedin, microsoft, mobile, monitoring, network, office, phone, privacy, regulation, risk, service, software, technology, tool, training, update, vulnerability

Sizable fines assessed for data breaches in recent years suggest that regulators are getting more serious about cracking down on organizations that don’t properly protect consumer data.Hit with a $ 1.3 billion fine for unlawfully transferring personal data from the European Union to the US, Meta tops the list of recent big-ticket sanctions, with one…
Massive T-Mobile breach prompts lawsuit from Washington state

Jan 7, 2025 10:18 PM

Tags: breach, mobile

First seen on scworld.com Jump to article: www.scworld.com/brief/massive-t-mobile-breach-prompts-lawsuit-from-washington-state
Washington state sues T-Mobile over 2021 data breach security failures

Jan 7, 2025 8:17 PM

Tags: breach, data, data-breach, mobile

Washington state has sued T-Mobile over failing to secure the sensitive personal information of over 2 million Washington residents in a 2021 data breach. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/legal/washington-state-sues-t-mobile-over-2021-data-breach-security-failures/
T-Mobile Sued by Washington State Over 2021 Data Breach

Jan 7, 2025 7:17 PM

Tags: breach, data, data-breach, mobile

Attorney General Accuses Telecom of Failing to Correctly Notify Millions of Victims. Washington state’s attorney general filed a consumer protection lawsuit against T-Mobile over a massive 2021 data breach that exposed personally identifiable information for more than 79 million consumers, alleging in part the telecom failed to correctly notify victims. First seen on govinfosecurity.com Jump…
Washington state sues T-Mobile over allegedly shoddy cyber practices leading to 2021 breach

Jan 7, 2025 5:18 PM

Tags: breach, cyber, cybersecurity, data, mobile

Washington state’s attorney general says in a lawsuit that T-Mobile knew about its cybersecurity weaknesses for years and could have avoided a 2021 data breach. First seen on therecord.media Jump to article: therecord.media/washington-state-lawsuit-tmobile-2021-data-breach
Washington Attorney General Sues T-Mobile Over 2021 Data Breach

Jan 7, 2025 2:17 PM

Tags: breach, data, data-breach, mobile

Washington State Attorney General Bob Ferguson has filed a lawsuit against T-Mobile over a 2021 data breach that impacted over 76 million consumers. The post Washington Attorney General Sues T-Mobile Over 2021 Data Breach appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/washington-attorney-general-sues-t-mobile-over-2021-data-breach/
US military allocated about $30 billion to spend on cybersecurity in 2025

Jan 7, 2025 8:17 AM

Tags: access, ai, attack, best-practice, china, communications, computing, cyber, cybersecurity, data, defense, disinformation, framework, government, group, guide, infrastructure, intelligence, international, iran, law, military, mobile, network, office, ransomware, risk, russia, software, spy, spyware, technology, terrorism, threat, tool, unauthorized, vulnerability

The United States military will receive about $30 billion in cybersecurity funding in fiscal 2025 from $895.2 billion earmarked for US military activities under the National Defense Authorization Act (NDAA), an annual piece of must-pass legislation signed by President Joe Biden last month.The nearly 1,000-page bill’s budget doesn’t enable clear-cut or quick calculations of how…
Washington sues T-Mobile over 2021 data breach that spilled 79 million customer records

Jan 6, 2025 11:17 PM

Tags: breach, data, data-breach, mobile

The 2021 breach affected at least 2 million Washington state residents, and tens of millions more customers around the United States. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/06/washington-sues-t-mobile-over-2021-data-breach-that-spilled-79-million-customer-records/
More telecom firms were breached by Chinese hackers than previously reported

Jan 6, 2025 2:18 PM

Tags: access, at&t, attack, breach, china, cisco, communications, cyber, cyberespionage, cybersecurity, data, defense, disinformation, espionage, exploit, finance, fortinet, framework, government, group, hacker, Hardware, infrastructure, intelligence, international, microsoft, mobile, network, phone, regulation, risk, risk-management, router, spy, technology, threat, vulnerability

Chinese hackers linked to the Salt Typhoon cyberespionage operation have breached even more US telecommunications firms than initially reported.New victims, Charter Communications, Consolidated Communications, and Windstream, add to a growing list that already includes AT&T, Verizon, T-Mobile, and Lumen Technologies.Earlier, the US authorities informed that nine telecom firms have been affected by the Chinese espionage…
Stealthy Steganography Backdoor Attacks Target Android Apps

Jan 6, 2025 10:19 AM

Tags: android, attack, backdoor, cyber, mobile

BARWM, a novel backdoor attack approach for real-world deep learning (DL) models deployed on mobile devices. Existing backdoor attacks often suffer from limitations such as altering the model structure or relying on easily detectable, sample-agnostic triggers. By utilizing DNN-based steganography to generate sample-specific backdoor triggers that are imperceptible, it is able to circumvent these limitations.…
New FireScam Android data-theft malware poses as Telegram Premium app

Jan 5, 2025 11:17 AM

Tags: android, data, github, malware, mobile, phishing, russia, theft

A new Android malware named ‘FireScam’ is being distributed as a premium version of the Telegram app via phishing websites on GitHub that mimick the RuStore, Russia’s app market for mobile devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-firescam-android-data-theft-malware-poses-as-telegram-premium-app/
DDoS Disrupts Japanese Mobile Giant Docomo

Jan 3, 2025 1:17 PM

Tags: attack, ddos, mobile, service

Docomo has revealed a DDoS attack on Thursday took down key services First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ddos-disrupts-japanese-mobile/
Japan’s largest mobile carrier says cyberattack disrupted some services

Jan 2, 2025 5:58 PM

Tags: cyberattack, mobile, service

Tokyo-based mobile carrier NTT Docomo said some of its web systems were disrupted by a distributed denial-of-service (DDoS) attack.]]> First seen on therecord.media Jump to article: therecord.media/ntt-docomo-japan-mobile-carrier-ddos-incident
Top 12 ways hackers broke into your systems in 2024

Dec 31, 2024 8:27 AM

Tags: access, adobe, ai, api, apt, attack, authentication, backdoor, breach, business, china, cloud, control, corporate, credentials, cve, cvss, cyber, cybercrime, cybersecurity, data, data-breach, defense, detection, email, endpoint, exploit, finance, flaw, fortinet, government, group, hacker, healthcare, identity, infection, injection, Internet, iran, ivanti, jobs, malicious, malware, mfa, microsoft, mitigation, mobile, moveIT, north-korea, okta, open-source, phishing, pypi, ransomware, rce, remote-code-execution, risk, russia, scam, software, sql, strategy, supply-chain, tactics, theft, tool, unauthorized, update, vpn, vulnerability, zero-day

In 2024, hackers had a field day finding sneaky ways into systems, from convincing phishing scams that played on human curiosity to brutal software flaws that exposed gaps in tech upkeep. It was a year of clever breaches, showing just how wide the gap is between user habits and security practices.”While every year brings new…
Data protection challenges abound as volumes surge and threats evolve

Dec 27, 2024 7:43 AM

Tags: access, ai, authentication, awareness, ciso, cloud, compliance, control, credentials, cryptography, cybersecurity, data, email, encryption, endpoint, firewall, framework, google, governance, guide, hacker, identity, intelligence, Internet, LLM, mfa, mobile, monitoring, network, office, phishing, phone, risk, risk-assessment, risk-management, saas, strategy, tactics, technology, theft, threat, tool, unauthorized, update, vulnerability

In the global digital economy, data is the most important asset organizations must protect from theft and damage. CISOs are fundamentally guardians of that asset, obligated to keep it secure and available to relevant users when and where they need it.”Every company has become a data company in this day and age; even if you’re…
Indian Railways Website Crashed Again, Disrupting Tatkal Ticket Booking Across India

Dec 26, 2024 2:44 PM

Tags: india, mobile

Rail travelers across India faced disruption as the Indian Railway Catering and Tourism Corporation (IRCTC) website and mobile app went down, causing chaos during the crucial Tatkal ticket booking window. This IRCTC outage, which marks the second major disruption in December alone, left thousands of passengers frustrated, unable to book tickets during the peak hours.…
iOS devices more exposed to phishing than Android

Dec 26, 2024 5:42 AM

Tags: android, attack, cybercrime, data-breach, group, mobile, phishing, tactics, threat

The mobile threat landscape continues to grow at an alarming rate as cybercrime groups shift their tactics and target mobile devices in the early stages of their attacks, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/26/mobile-devices-attacks/
The 2024 cyberwar playbook: Tricks used by nation-state actors

Dec 25, 2024 7:43 AM

Tags: access, ai, apt, at&t, attack, authentication, backdoor, blizzard, botnet, breach, china, cisa, cloud, control, credentials, cve, cvss, cyber, cybersecurity, data, ddos, defense, detection, email, espionage, exploit, flaw, fortinet, google, government, group, hacker, hacking, healthcare, india, infrastructure, iran, ivanti, linux, login, malicious, malware, mfa, microsoft, mobile, network, offense, office, open-source, password, phishing, powershell, remote-code-execution, router, russia, service, social-engineering, software, spear-phishing, spy, strategy, supply-chain, tactics, theft, threat, tool, unauthorized, update, vpn, vulnerability, warfare, windows, worm, zero-day

In 2024, nation-state cyber activity was off the charts, with Chinese, Russian, and Iranian actors leading the charge. Their campaigns weren’t just relentless, they were innovative, using a crafty mix of Tactics, Techniques, and Procedures (TTPs) to gain footholds, stay hidden, and spy-like pros.”There was definitely a continued and noted uptick in nation-state activity in…
Protect 3 Devices With This Maximum Security Software

Dec 23, 2024 4:42 PM

Tags: mobile, phishing, ransomware, software, spam

Trend Micro guards desktop and mobile devices from ransomware, phishing schemes, spam, and more for one year. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/trend-micro-maximum-security/
ICO Warns of Mobile Phone Festive Privacy Snafu

Dec 23, 2024 11:42 AM

Tags: data, mobile, office, phone, privacy

The Information Commissioner’s Office has warned that millions of Brits don’t know how to erase personal data from their old devices First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ico-warns-festive-mobile-phone/
Cybercriminals Go Mobile: Executives Targeted in Advanced Phishing Campaigns

Dec 23, 2024 5:42 AM

Tags: attack, corporate, cybercrime, exploit, mobile, phishing, spear-phishing, vulnerability

Cybercriminals are targeting corporate executives with highly advanced mobile spear phishing attacks, leveraging sophisticated evasion techniques and exploiting the inherent vulnerabilities of mobile devices, a new report reveals. In today’s... First seen on securityonline.info Jump to article: securityonline.info/cybercriminals-go-mobile-executives-targeted-in-advanced-phishing-campaigns/