Leaky Access Tokens Exposed Amazon Photos of Users

Hackers with Amazon users’ authentication tokens could’ve stolen or encrypted personal photos and documents. The Amazon Photos app for Android insufficiently protected user access tokens, according to a blog post…

Google Warns Spyware Being Deployed Against Android, iOS Users

The company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs. Google is warning victims in Kazakhstan and Italy…

Kazakh Govt. Used Spyware Against Protesters

Researchers have discovered that a Kazakhstan government entity deployed sophisticated Italian spyware within its borders. An agent of the Kazakhstan government has been using enterprise-grade spyware against domestic targets, according…

Can your mobile phone get a virus? Yes – and you’ll have to look carefully to see the signs

Padlokr –  Padlokr –  Ritesh Chugh, CQUniversity Australia With nearly 84% of the world’s population now owning a smartphone, and our dependence on them growing all the time, these devices…

iPhones Vulnerable to Attack Even When Turned Off

Wireless features Bluetooth, NFC and UWB stay on even when the device is powered down, which could allow attackers to execute pre-loaded malware. Attackers can target iPhones even when they…

Mozilla: Lack of Security Protections in Mental-Health Apps Is ‘Creepy’

Popular apps to support people’s psychological and spiritual well-being can harm them by sharing their personal and sensitive data with third parties, among other privacy offenses. While they have good…

‘CatalanGate’ Spyware Infections Tied to NSO Group

Citizen Lab uncovers multi-year campaign targeting autonomous region of Spain, called Catalonia. An unknown zero-click exploit in Apple’s iMessage was used by Israeli-based NSO Group to plant either Pegasus or…

Protect Your Executives’ Cybersecurity Amidst Global Cyberwar

In this time of unprecedented cyberwar, organizations must protect the personal digital lives of their executives in order to reduce the company’s risk of direct or collateral damage. It’s been…

Google Play Bitten by Sharkbot Info-stealer ‘AV Solution’

Google removed six different malicious Android applications targeting mainly users in the U.K. and Italy that were installed about 15,000 times. Researchers have found the info-stealing Android malware Sharkbot lurking…

Attackers Spoof WhatsApp Voice-Message Alerts to Steal Info

Threat actors target Office 365 and Google Workspace in a new campaign, which uses a legitimate domain associated with a road-safety center in Moscow to send messages. Attackers are spoofing…