Tag: mobile
-
$80 Billion Lost to SMS Fraud Last Year. The Good News Is Wrong.
Mobile fraud losses are projected to decline in 2026. That headline is technically accurate and deeply misleading. The fraud is not going away. It is changing channels, picking up speed, and getting harder to stop. The number looks like progress. Global subscriber losses from SMS fraud, smishing, account takeover, and related mobile threats reached $80……
-
US clarifies mobile hotspots part of foreign router ban despite rarity of American made consumer kit
Silicon often from US, but the kit from APAC and elsewhere First seen on theregister.com Jump to article: www.theregister.com/2026/04/24/fcc_does_a_doubletake_adds/
-
Toronto police arrest three in Canada’s first mobile SMS blaster case
Canadian police arrested three men over the use of a mobile “SMS blaster,” a device capable of impersonating a cellular tower to send mass phishing messages and disrupt mobile networks. First seen on therecord.media Jump to article: therecord.media/canada-sms-blaster-cybercriminals
-
Hackers Exploit SS7 and Diameter Flaws to Track Mobile Users Globally
A recent investigation by Citizen Lab has uncovered sophisticated, multi-year surveillance campaigns exploiting foundational vulnerabilities in global mobile networks. The report, titled >>Bad Connection,<< reveals how suspected commercial surveillance vendors (CSVs) weaponize the SS7 and Diameter signaling protocols to covertly track high-profile individuals across the globe without interacting directly with their devices. These findings underscore…
-
Surveillance campaigns use commercial surveillance tools to exploit long-known telecom vulnerabilities
Researchers said it’s the first-ever mapping of attack traffic to mobile operator signalling infrastructure. First seen on cyberscoop.com Jump to article: cyberscoop.com/surveillance-campaigns-use-commercial-surveillance-tools-to-exploit-long-known-telecom-vulnerabilities/
-
A single platform powers SIM farm proxy networks across 17 countries
Racks of phones and 4G modems, connected to carrier networks and rented out as commercial mobile proxy services, are operating across at least 94 locations in 17 countries. An … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/21/sim-farm-proxy-network-cybercrime/
-
They Built a Legendary Privacy Tool. Now They’re Sworn Enemies
There’s a lot of love all over the world for GrapheneOS, the gold standard of mobile security. There’s very little love between the two guys at the center of its history. First seen on wired.com Jump to article: www.wired.com/story/they-built-privacy-tool-grapheneos-now-sworn-enemies/
-
NGate Android malware uses HandyPay NFC app to steal card data
A new variant of the NGate malware that steals NFC payment data is targeting Android users by hiding in a trojanized version of HandyPay, a legitimate mobile payments processing tool. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ngate-android-malware-uses-handypay-nfc-app-to-steal-card-data/
-
Android-Trojaner gibt sich als Bank oder Behörde aus
Sicherheitsforscher von Infoblox und der vietnamesischen Organisation Chong Lua Dao haben eine weitreichende Malware-Infrastruktur aufgedeckt, die gezielt auf Mobile-Banking-Nutzer abzielt. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/android-trojaner-bank-oder-behoerde
-
Android-Trojaner gibt sich als Bank oder Behörde aus
Sicherheitsforscher von Infoblox und der vietnamesischen Organisation Chong Lua Dao haben eine weitreichende Malware-Infrastruktur aufgedeckt, die gezielt auf Mobile-Banking-Nutzer abzielt. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/android-trojaner-bank-oder-behoerde
-
Google Rolls Out EndEnd Encryption to Eligible Gmail Users on Mobile
Google has brought end-to-end encrypted Gmail to Android and iOS for eligible Workspace users, extending secure mobile email without extra apps. The post Google Rolls Out End-to-End Encryption to Eligible Gmail Users on Mobile appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-gmail-end-to-end-encryption-mobile/
-
iPhone forensics expose Signal messages after app removal in U.S. case
An FBI case in Texas shows Signal messages can still be recovered from iPhones even after app uninstall, via system artifacts, challenging privacy assumptions. The recent revelations about FBI forensic access to Signal messages on an iPhone have reignited a long-standing misunderstanding about mobile privacy: the belief that disappearing messages and encrypted apps guarantee that…
-
Google makes it harder to exploit Pixel 10 modem firmware
Google is working to improve the security of Pixel phones by focusing on the cellular baseband modem, a part of the device that handles communication with mobile networks and … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/13/google-pixel-rust-baseband-modem-security/
-
Google Brings EndEnd Encrypted Gmail to Android and iPhone
Google has officially expanded Gmail’s end-to-end encryption (E2EE) feature to Android and iOS devices, empowering organizations and users to protect the confidentiality of email content directly from their mobile devices. This enhancement is part of Gmail’s client-side encryption (CSE) program, enabling stricter compliance controls and preserving data sovereignty across regulated industries. With this new rollout, Gmail users can…
-
South Korea introduces universal basic mobile data access
Everyone gets unlimited 400 Kbps access, oldies get expanded caps, and leaky telcos get their social license back First seen on theregister.com Jump to article: www.theregister.com/2026/04/10/south_korea_data_access_universal/
-
Google Extends Gmail Encryption to Mobile, but Limits Access to Enterprise Tier
Google has expanded its encryption capabilities in Gmail to mobile devices, enabling enterprise customers to transmit encrypted emails directly within the app on both Android and iOS. The update removes a limitation that previously restricted native encrypted email use on mobile devices. The rollout allows eligible users to compose and read encrypted messages natively, without..…
-
The Cyber Express Weekly Roundup: Major State Threats, Crypto Attacks, and Legal Gaps
In this week’s weekly roundup, The Cyber Express summarizes key cybersecurity news across state-sponsored attacks, crypto ecosystem breaches, regulatory gaps, and mobile data exposure risks. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/weekly-roundup-cybersecurity-global-threats/
-
Google rolls out Gmail endend encryption on mobile devices
Google says Gmail end-to-end encryption (E2EE) is now available on all Android and iOS devices, allowing enterprise users to read and compose emails without additional tools. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/google/google-rolls-out-gmail-end-to-end-encryption-on-mobile-devices/
-
Gmail’s endend encryption comes to mobile, no extra apps required
Google has expanded Gmail client-side encryption to Android and iOS devices, allowing users to engage with their organization’s most sensitive data on mobile devices while … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/10/google-gmail-e2ee-mobile-devices/
-
Cloudflare ‘actively adjusting’ quantum priorities in wake of Google warning
Tags: android, attack, awareness, browser, chrome, ciso, communications, compliance, computer, computing, crypto, cryptography, cybersecurity, data, encryption, google, government, group, Hardware, infrastructure, Internet, ml, mobile, regulation, risk, service, strategy, technology, threat, vulnerabilityNational Institute of Standards and Technology (NIST) has set a 2030 deadline for depreciating legacy encryption algorithms ahead of their planned retirement in 2035.Late last month Google brought forward its own post-quantum cryptography (PQC) deadline a year to 2029 because advances in quantum computers mean that legacy encryption and digital signature systems are at greater…
-
CISA Issues Warning on Critical Ivanti EPMM Flaw Exploited in Ongoing Attacks
Tags: attack, cisa, cve, cyber, cybersecurity, endpoint, exploit, flaw, infrastructure, ivanti, kev, mobile, threat, vulnerabilityThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a critical security flaw in Ivanti Endpoint Manager Mobile (EPMM). The agency recently added the vulnerability, identified as CVE-2026-1340, to its Known Exploited Vulnerabilities (KEV) catalog after confirming that threat actors are actively exploiting it in real-world attacks. Critical Ivanti EPMM Flaw…
-
Google API Keys Quietly Gain Access to Gemini on Android Devices
Google API key flaw exposes mobile apps to Gemini AI access, private files and billing risks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/google-api-keys-access-gemini/
-
CISA Orders Rapid Patching For ‘Critical’ Ivanti Mobile Management Flaw
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is ordering federal agencies to prioritize patching for a critical-severity Ivanti mobile management vulnerability. First seen on crn.com Jump to article: www.crn.com/news/security/2026/cisa-orders-rapid-patching-for-critical-ivanti-mobile-management-flaw
-
CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday
CISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-exploited-ivanti-epmm-flaw-by-sunday/
-
Two prominent Egyptian journalists targeted with elaborate spearphishing campaign
Digital civil rights nonprofit Access Now released a report on the findings with the mobile security company Lookout on Wednesday, saying they saw evidence the hackers may “use the methods and infrastructure associated with the attacks to deliver spyware and exfiltrate data.” First seen on therecord.media Jump to article: therecord.media/two-egyptian-journalists-targeted-spearphishing-campaign
-
Silent Network Authentication: The Invisible Layer Replacing SMS OTP in 2026
Silent Network Authentication verifies users in 1-4 seconds using SIM cryptography without any user action. Learn how SNA works, why it beats SMS OTP on security and UX, and how to implement it for mobile-first banking, fintech, and e-commerce. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/silent-network-authentication-the-invisible-layer-replacing-sms-otp-in-2026/
-
Fraud Rockets Higher in Mobile-First Latin America
Cyber-fraudsters move quickly from compromised devices to account takeover to funds transfer, shifting money before many financial institutions can react. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/fraud-mobile-first-latin-america
-
Fraud Rockets Higher in Mobile-First Latin America
Cyber-fraudsters move quickly from compromised devices to account takeover to funds transfer, shifting money before many financial institutions can react. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/fraud-mobile-first-latin-america