TangleBot Malware Reaches Deep into Android Device Functions

Threat Post –  Threat Post –  The mobile baddie grants itself access to almost everything, enabling spying, data-harvesting, stalking and fraud attacks, among others. An Android malware called TangleBot has…

Google Report Spotlights Uptick in Controversial ‘Geofence Warrants’ by Police

Threat Post –  Threat Post –  Digital privacy rights defenders contend that geofencing warrants grab data on everyone near a crime, without cause. Newly released data by Google sheds light…

AT&T Phone-Unlocking Malware Ring Costs Carrier $200M

Threat Post –  Threat Post –  With the help of malicious insiders, a fraudster was able to install malware and remotely divorce iPhones and other handsets from the carrier’s U.S.…

Apple Issues Emergency Fix for NSO Zero-Click Zero Day

Threat Post –  Threat Post –  Citizen Lab urges Apple users to update immediately. The new zero-click zero-day ForcedEntry flaw affects all things Apple: iPhones, iPads, Macs and Watches. Apple…

WhatsApp’s End-to-End Encryption Isn’t Actually Broken

Threat Post –  Threat Post –  WhatsApp’s moderators sent messages flagged by intended recipients. Researchers say this isn’t concerning — yet. End-to-end encryption isn’t designed to secure messages against the…

SOVA, Worryingly Sophisticated Android Trojan, Takes Flight

Threat Post –  Threat Post –  The malware appeared in August with an ambitious roadmap (think ransomware, DDoS) that could make it ‘the most feature-rich Android malware on the market.’…

Financial Cybercrime: Why Cryptocurrency is the Perfect ‘Getaway Car’

Threat Post –  Threat Post –  John Hammond, security researcher with Huntress, discusses how financially motivated cybercrooks use and abuse cryptocurrency. This is Part I of a two-part series on…

BladeHawk Attackers Target Kurds with Android Apps

Threat Post –  Threat Post –  Pro-Kurd Facebook profiles deliver ‘888 RAT’ and ‘SpyNote’ trojans, masked as legitimate apps, to perform mobile espionage. Attackers have been targeting the Kurdish ethic…

Spoofing Bug Highlights Cybersecurity for Digital Vaccine Passports

Threat Post –  Threat Post –  Australian immunization app bug lets attackers fake vaccine status. Three weeks after an independent researcher found a critical bug in the Services Australia COVID-19…

Android Security: Over 150 Security and Privacy Issues Found on Stalkerware

Security Intelligence – Security Intelligence – Android Security: Over 150 Security and Privacy Issues Found on Stalkerware Who stalks the stalkers? When it comes to Android security, stalkerware presents a…