HackDig : Dig high-quality web security articles for hacker

Yodel parcel tracking app blabs about other people’s parcels

byLisa Vaas“Fragile?” “Handle with care?”“Meh! Looks like a football to me,” workers for the UK parcel delivery company Yodel must have said around the time – 2016 – they were caught on video, apparently tossing packages around.Have they grown more tender? Dunno, but FWIW, a year after the football exposé, they made it to the top of the country&#
Publish At:2019-12-05 12:35 | Read:162 | Comments:0 | Tags:Android Mobile Privacy Ax Sharma courier delivery leak packa

Critical DoS messaging flaw fixed in December Android update

byJohn E DunnFor anyone lucky enough to get them, Android’s December 2019 updates arrived this week, patching a small list of system and Qualcomm flaws across the operating system’s two patch levels.In Google’s estimation, at the top of the urgent list on the 2019-12-01 patch level (see below for explanation) is CVE-2019-2232, a critical flaw affecting Andro
Publish At:2019-12-05 12:35 | Read:143 | Comments:0 | Tags:Android Google Linux Mobile Operating Systems Security threa

Mobile Cyberespionage Campaign Distributed Through CallerSpy Mounts Initial Phase of a Targeted Attack

We found a new spyware family disguised as chat apps on a phishing website. We believe that the apps, which exhibit many cyberespionage behaviors, are initially used for a targeted attack campaign. We first came across the threat in May on the site http://gooogle[.]press/, which was advertising a chat app called “Chatrious.” Users can download the malicious
Publish At:2019-12-02 14:35 | Read:308 | Comments:0 | Tags:Bad Sites Mobile android APK cyberespionage spyware

Android bug puts your device’s camera at risk

Update your Android OS because hackers might be accessing your camera and photos A camera security threat for Android devices might have affected hundreds of millions of smartphone and tablet users. The chilling revelation made by researchers exposed a system vulnerability in Android devices that was allowing unauthorized remote use and access to the device’
Publish At:2019-11-22 16:15 | Read:178 | Comments:0 | Tags:Mobile News Mobile Security Android cybersecurity Malware

Privacy and Security Issues Found in Popular Shopping Apps

Just in time for Black Friday, Cyber Monday and the holiday shopping season, we investigated the most recent versions* of 30 of the leading, well-known mobile shopping applications to see how the application providers protect users from security and privacy risks.  The results based on our Advanced Application Analysis z3A technology are alarming: 100% of
Publish At:2019-11-20 12:25 | Read:145 | Comments:0 | Tags:App Security Mobile Security Android apps iOS mobile endpoin

Stealthy new Android malware poses as ad blocker, serves up ads instead

Since its discovery less than a month ago, a new Trojan malware for Android we detect as Android/Trojan.FakeAdsBlock has already been seen on over 500 devices, and it’s on the rise. This nasty piece of mobile malware cleverly hides itself on Android devices while serving up a host of advertisements: full-page ads, ads delivered when opening the default brows
Publish At:2019-11-14 16:50 | Read:130 | Comments:0 | Tags:Android ads blocker android malware android trojan Android/T

Zimperium Analyzes TikTok’s Security and Privacy Risks

Several news outlets over the last few days are talking about how TikTok, the viral short video app where millions of teens post comedy skits set to music, is under fire from U.S. lawmakers.   CNN reports US lawmakers on both sides of the aisle warn that the app could pose a national security risk, and are calling on regulators and intelligence agencies to
Publish At:2019-11-12 00:25 | Read:191 | Comments:0 | Tags:App Security Mobile Threat Defense Android apps iOS mobile M

Zimperium and Google Partner to Fight Bad Apps through App Defense Alliance

We are thrilled to announce Google has selected us to help ensure the safety of the millions of apps in the Google Play Store through its App Defense Alliance.    As a member of the App Defense Alliance, Google will provide us access to mobile apps as they are being queued to publish in the Google Play Store. Through our advanced machine learning-based z9 t
Publish At:2019-11-12 00:25 | Read:212 | Comments:0 | Tags:Android Machine Learning Mobile Malware Mobile Security News

A week in security (October 28 – November 3)

Last week on Malwarebytes Labs, we celebrated the birth of the Internet 50 years ago, highlighted reports about the US Federal Trade Commission (FTC) filing a case against stalkerware developer Retina-X, issued a PSI on disaster donation scams, looked at the top cybersecurity challenged SMBs face, and provided guidance to journalists on how they can defend t
Publish At:2019-11-11 23:20 | Read:173 | Comments:0 | Tags:A week in security Adobe Creative Cloud advanced persistent

Android smartphone owners fall victim to new ‘unremovable’ malware variant

No matter how destructive or invasive, Android malware can usually be removed from an infected device. But a new variant is causing problems for users. Known as xHelper, this new malware is causing a number of problems – not least the fact that it cannot be easily uninstalled. Normally deleting affected apps is enough to stop the infection, but not so with x
Publish At:2019-11-11 22:35 | Read:161 | Comments:0 | Tags:Malware Mobile News Mobile Security Android cybersecurity

Fake Photo Beautification Apps on Google Play can Read SMS Verification Code to Trigger Wireless Application Protocol (W

By Song Wang (Mobile Threat Analyst) At the start of the year, Google updated its permission requests in Android applications, and in particular, restricted access to SMS and CALL Log permissions. Google also added requirements for non-default applications (or those that don’t provide critical core features), allowing them to prompt and ask users for permiss
Publish At:2019-10-18 14:35 | Read:645 | Comments:0 | Tags:Mobile Social android Carrier Billing google play WAP Billin

Security and Privacy Issues Found in Popular Travel Apps

Planned your holiday travel just yet? Too soon? Not according to experts who told The Today Show the best time to book your Thanksgiving AND Christmas travel plans are before Halloween. After Halloween, fares go up, layover possibilities increase as does ending up in the middle seat.  The truth is, whenever you book travel – and more of us are doing s
Publish At:2019-10-16 12:30 | Read:550 | Comments:0 | Tags:App Security Mobile Security Mobile Threat Defense Android a

There are Really Only Two Mobile Operating Systems – How Hard Could it Possibly be to Keep Current?

No one expects securing mobile devices to be a fast check-off on IT and security to-do lists.  But one area that seems manageable on the surface, becomes increasingly complex when you dig into the details – – updating to the current operating system.   The variety of mobile devices – over 25,000 different models in 2019 – combined wi
Publish At:2019-09-26 16:10 | Read:597 | Comments:0 | Tags:Mobile Security Android iOS mobile attacks mobile devices Mo

Google sets Android security updates rules but enforcement is unclear

The vendor requirements for Android are a strange and mysterious thing but a new leak claims Google has added language to force manufacturers to push more regular Android security updates. According to The Verge, Google’s latest contract will require OEMs to supply Android security updates for two years and provide at least four updates within the firs
Publish At:2019-09-19 23:05 | Read:272 | Comments:0 | Tags:Android Google Google Apps Google Play Store Security update

Android Ecosystem Security Transparency Report is a wary first step

Reading through Google’s first quarterly Android Ecosystem Security Transparency Report feels like a mix of missed opportunities and déjà vu all over again. Much of what is in the new Android ecosystem security report is data that has been part of Google’s annual Android Security Year in Review report, including the rates of potentially harmful a
Publish At:2019-09-19 23:05 | Read:164 | Comments:0 | Tags:Android Android security Google

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud