Collecting Cyber-News from over 60 sources

Tag: mobile

Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users

Feb 19, 2026 12:01 PM

Tags: android, attack, banking, cybersecurity, finance, malware, mobile, threat

Cybersecurity researchers have disclosed details of a new Android trojan called Massiv that’s designed to facilitate device takeover (DTO) attacks for financial theft.The malware, according to ThreatFabric, masquerades as seemingly harmless IPTV apps to deceive victims, indicating that the activity is primarily singling out users looking for the online TV applications.”This new threat, while First…
Public mobile networks are being weaponized for combat drone operations

Feb 19, 2026 8:00 AM

Tags: attack, mobile, network, russia, ukraine

On June 1, 2025, Ukraine launched a coordinated drone strike on five airfields inside Russia, disabling or destroying aircrafts. The attack involved more than 100 drones … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/enea-mobile-connected-drones-report/
Public mobile networks are being weaponized for combat drone operations

Feb 19, 2026 8:00 AM

Tags: attack, mobile, network, russia, ukraine

On June 1, 2025, Ukraine launched a coordinated drone strike on five airfields inside Russia, disabling or destroying aircrafts. The attack involved more than 100 drones … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/enea-mobile-connected-drones-report/
Keenadu: Android malware that comes preinstalled and can’t be removed by users

Feb 18, 2026 1:58 PM

Tags: access, ai, android, backdoor, banking, browser, cctv, chrome, control, credentials, data, endpoint, firmware, governance, identity, infection, kaspersky, malware, mitigation, mobile, network, risk, software, update

Embedded in core system apps: Keenadu can control legitimate system applications on affected devices. Kaspersky observed it inside critical components such as face unlock applications, raising the possibility that attackers could access biometric data. The malware was also found operating within the home screen app that controls the device’s primary interface.The researchers warned that the…
Critical Ivanti EPMM Zero-Day Vulnerabilities Exploited in the Wild, Targeting Corporate Networks

Feb 18, 2026 1:58 PM

Tags: control, corporate, cve, cyber, data-breach, endpoint, exploit, ivanti, mobile, network, remote-code-execution, vulnerability, zero-day

Two critical zero-day vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-1281 and CVE-2026-1340, are being actively exploited to compromise enterprise mobile fleets and corporate networks. Both are remote code execution (RCE) vulnerabilities that allow unauthenticated attackers to run arbitrary commands on exposed EPMM servers, effectively giving them full control of the mobile device…
ZeroDayRAT spyware targets Android and iOS devices via commercial toolkit

Feb 17, 2026 2:58 PM

Tags: android, control, detection, edr, email, exploit, infection, malicious, mobile, software, spyware, threat, unauthorized, vulnerability

Reliance on deception and not exploits: Despite the name, ZeroDayRAT does not depend on undisclosed operating system vulnerabilities to infect devices. Instead, the primary infection vector is social engineering. Victims are persuaded to install a malicious application or configuration profile disguised as legitimate software, often delivered through links shared via SMS, email, or messaging platforms.While…
Poland arrests suspect linked to Phobos ransomware operation

Feb 17, 2026 12:58 PM

Tags: access, breach, computer, credentials, credit-card, group, mobile, phone, ransomware

Polish police have detained a 47-year-old man suspected of ties to the Phobos ransomware group and seized computers and mobile phones containing stolen credentials, credit card numbers, and server access data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/poland-arrests-suspect-linked-to-phobos-ransomware-operation/
Mobile Mitarbeiter, neue Tools und Zugriffe absichern – Sophos kündigt Workspace Protection für hybrides Arbeiten an

Feb 17, 2026 9:58 AM

Tags: mobile, sophos, tool

First seen on security-insider.de Jump to article: www.security-insider.de/sophos-kuendigt-workspace-protection-fuer-hybrides-arbeiten-an-a-3f2ad24a34094da223bac0ebaafd0dfe/
QR Codes Exploited for Phishing Attacks and Malware Spread on Mobile Devices

Feb 17, 2026 8:58 AM

Tags: attack, cyber, exploit, malicious, malware, mobile, phishing, qr, threat

QR code abuse has become a significant mobile threat vector, with attackers using it to deliver phishing pages, trigger in”‘app account takeovers, and distribute malicious applications outside official app stores. Because people routinely scan QR codes for payments, menus and app downloads, these attacks often bypass enterprise protections by shifting the interaction onto less”‘protected personal…
New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft

Feb 16, 2026 12:58 PM

Tags: access, android, cybersecurity, data, mobile, spyware, theft, update

Cybersecurity researchers have disclosed details of a new mobile spyware platform dubbed ZeroDayRAT that’s being advertised on Telegram as a way to grab sensitive data and facilitate real-time surveillance on Android and iOS devices.”The developer runs dedicated channels for sales, customer support, and regular updates, giving buyers a single point of access to a fully…
ZeroDayRAT Exploit Targets Android iOS, Enabling Real-Time Surveillance and Massive Data Theft

Feb 16, 2026 7:58 AM

Tags: android, cyber, data, exploit, mobile, spyware, theft

A newly surfaced mobile spyware platform called ZeroDayRAT is rapidly gaining traction across underground Telegram channels. ZeroDayRAT is designed to give attackers complete remote control over both Android and iOS devices, supporting versions from Android 5 through 16 and iOS up to version 26, including the latest iPhone 17 Pro. The panel interface allows the operator to manage multiple infected devices worldwide as…
One threat actor responsible for 83% of recent Ivanti RCE attacks

Feb 14, 2026 5:58 PM

Tags: attack, cve, endpoint, exploit, intelligence, ivanti, mobile, rce, remote-code-execution, threat, vulnerability

Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-21962 and CVE-2026-24061. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/one-threat-actor-responsible-for-83-percent-of-recent-ivanti-rce-attacks/
Dutch mobile phone giant Odido announces data breach

Feb 12, 2026 7:58 PM

Tags: breach, ceo, data, data-breach, email, finance, mobile, phone

In a statement about the incident, Odido CEO SÃ¸ren Abildgaard said names, bank account numbers, addresses, mobile numbers, email addresses, account numbers and IDs were stolen. First seen on therecord.media Jump to article: therecord.media/dutch-telecom-giant-announces-data-breach
83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure

Feb 12, 2026 9:58 AM

Tags: endpoint, exploit, flaw, infrastructure, intelligence, ivanti, mobile

A significant chunk of the exploitation attempts targeting a newly disclosed security flaw in Ivanti Endpoint Manager Mobile (EPMM) can be traced back to a single IP address on bulletproof hosting infrastructure offered by PROSPERO.Threat intelligence firm GreyNoise said it recorded 417 exploitation sessions from 8 unique source IP addresses between February 1 and 9,…
App-Entwicklung unter Zeitdruck verschiebt Sicherheit ans Prozessende – Warum mobile Apps zum gefährlichsten Einfallstor werden

Feb 12, 2026 8:58 AM

Tags: mobile

First seen on security-insider.de Jump to article: www.security-insider.de/mobile-apps-einfallstor-security-as-a-service-a-02936e77d6374a986f7951cd3deef1d6/
ZeroDayRAT spyware grants attackers total access to mobile devices

Feb 10, 2026 6:26 PM

Tags: access, android, banking, cctv, control, crypto, data, mobile, spyware, theft

ZeroDayRAT is a commercial mobile spyware that grants full remote access to Android and iOS devices for spying and data theft. ZeroDayRAT is a newly discovered commercial mobile spyware toolkit that gives attackers full control over Android and iOS devices. It supports live camera access, keylogging, and theft of banking and crypto data. First spotted…
Cyberangriff auf EU-Kommission

Feb 10, 2026 4:15 PM

Tags: advisory, authentication, bug, cve, cvss, cyberattack, endpoint, exploit, germany, ivanti, mail, mobile, usa, vulnerability

Cyberkriminellen ist es gelungen, in ein System der EU-Kommission einzudringen.Die Europäische Kommission wurde Ziel einer Cyberattacke. Wie aus einer kürzlich veröffentlichten Mitteilung hervorgeht, erfolgte der Angriff Ende Januar und zielte auf ein System zur Verwaltung mobiler Endgeräte ab (Mobile Device Management MDM) .Demnach sind die Täter möglicherweise an Namen und Rufnummern einiger Mitarbeiter gekommen. Es…
New Mobile Spyware ZeroDayRAT Targets Android and iOS

Feb 10, 2026 4:15 PM

Tags: access, android, mobile, spyware

ZeroDayRAT is a new mobile spyware targeting Android and iOS, offering attackers persistent access First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/zerodayrat-mobile-spyware-android/
Microsoft announces new mobile-style Windows security controls

Feb 10, 2026 3:14 PM

Tags: access, cctv, control, microsoft, mobile, windows

Microsoft wants to introduce smartphone-style app permission prompts in Windows 11 to request user consent before apps can access sensitive resources such as files, cameras, and microphones. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-announces-new-mobile-style-windows-security-controls/
ZeroDayRAT malware grants full access to Android, iOS devices

Feb 10, 2026 3:14 PM

Tags: access, android, control, cybercrime, malware, mobile, spyware, tool

A new commercial mobile spyware platform dubbed ZeroDayRAT is being advertised to cybercriminals on Telegram as a tool that provides full remote control over compromised Android and iOS devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/zerodayrat-malware-grants-full-access-to-android-ios-devices/
Dutch agencies hit by Ivanti EPMM exploit exposing employee contact data

Feb 10, 2026 12:13 PM

Tags: attack, cyberattack, data, data-breach, endpoint, exploit, flaw, hacker, ivanti, mobile

Dutch agencies confirmed attacks exploiting Ivanti EPMM flaws that exposed employee contact data at the data protection authority and courts. Dutch authorities said cyberattacks hit the Dutch Data Protection Authority and the Council for the Judiciary after hackers exploited newly disclosed flaws in Ivanti Endpoint Manager Mobile (EPMM). The incidents were reported to parliament, and…
Dutch Authorities Confirm Ivanti Zero-Day Exploit Exposed Employee Contact Data

Feb 10, 2026 10:13 AM

Tags: attack, country, cyber, data, data-breach, endpoint, exploit, flaw, ivanti, mobile, zero-day

The Netherlands’ Dutch Data Protection Authority (AP) and the Council for the Judiciary confirmed both agencies (Rvdr) have disclosed that their systems were impacted by cyber attacks that exploited the recently disclosed security flaws in Ivanti Endpoint Manager Mobile (EPMM), according to a notice sent to the country’s parliament on Friday.”On January 29, the National…
25 Million Users Affected as AI Chat Platform Leaks 300 Million Messages

Feb 10, 2026 9:13 AM

Tags: ai, apple, breach, cyber, data, google, leak, mobile, vulnerability

>>Chat & Ask AI,<< a highly popular mobile application available on both Google Play and the Apple App Store, has suffered a significant data exposure. An independent security researcher discovered a vulnerability that left approximately 300 million private messages accessible to the public. This breach impacts more than 25 million users, raising serious concerns about…
Threat Actors Using Ivanti EPMM Flaws to Install Stealth Backdoors

Feb 10, 2026 7:13 AM

Tags: attack, backdoor, cve, cyber, data, endpoint, exploit, flaw, ivanti, mobile, ransomware, threat, vulnerability

A sophisticated new cyber campaign has been detected targeting Ivanti Endpoint Manager Mobile (EPMM) systems. Starting on February 4, 2026, threat actors began exploiting two critical vulnerabilities, CVE-2026-1281 and CVE-2026-1340, to plant dormant backdoors. Unlike typical attacks that immediately steal data or deploy ransomware, this campaign focuses on silence and persistence. Stealth Backdoors The attackers…
European Commission Hit by Mobile Management Data Breach

Feb 10, 2026 1:14 AM

Tags: attack, breach, data, data-breach, mobile

The European Commission is investigating a mobile device management breach that exposed staff data amid similar attacks across Europe. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/european-commission-hit-by-mobile-management-data-breach/
Cyber Attack Hits European Commission Staff Mobile Systems

Feb 9, 2026 8:13 PM

Tags: attack, cyber, data-breach, infrastructure, mobile, phone

The European Commission reports a cyber attack on its central mobile infrastructure that may have exposed staff names and phone numbers. First seen on hackread.com Jump to article: hackread.com/cyber-attack-european-commission-staff-mobile-systems/
Ivanti Zero-Days Likely Deployed in EU and Dutch Hacks

Feb 9, 2026 8:13 PM

Tags: attack, cyberattack, endpoint, flaw, infrastructure, ivanti, mobile, theft, zero-day

Ivanti’s Endpoint Manager Mobile Flaws Under Active Exploitation. The European Commission fell victim to a cyberattack that could have allowed the theft of some staff personal information. The European Union’s executive body said Friday it detected on Jan. 30 an attack on its central infrastructure managing mobile devices. First seen on govinfosecurity.com Jump to article:…
European Commission probes cyberattack on mobile device management system

Feb 9, 2026 4:14 PM

Tags: cyberattack, data, mobile, phone

The European Commission is investigating a cyberattack after detecting signs that its mobile device management system was compromised. The European Commission is investigating a cyberattack on its mobile device management platform after detecting intrusion traces. Attackers may have accessed some staff data, including names and phone numbers, but so far they have not compromised any…
European Commission hit by cyberattackers targeting mobile management platform

Feb 9, 2026 4:14 PM

Tags: mobile

The European Commission’s mobile device management platform was hacked but the incident was swiftly contained and no compromise of mobile devices was detected, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/09/european-commission-ivanti-epmm-vulnerabilities/
European Commission Mitigates Cyberattack Aimed at Employee Mobile Information

Feb 9, 2026 3:14 PM

Tags: cyber, cyberattack, cybersecurity, data-breach, detection, infrastructure, mobile

The European Commission successfully contained a cyberattack targeting its mobile device management infrastructure on January 30, 2026. The incident, which potentially exposed staff names and mobile numbers, was neutralized within nine hours of detection, demonstrating the organization’s robust cybersecurity protocols. European Commission Mitigates Cyberattack The Commission’s central system managing mobile devices detected suspicious activity that…