Fake Telegram apps with spyware capabilities have been discovered on the Google Play Store, aiming to steal sensitive information from Android devices. These malicious apps, dubbed "Evil Telegram" by cybersecurity firm Kaspersky, were responsible for collecting user data, including names, user IDs, contacts, phone numbers, and chat messages, and sending it to a server controlled by threat actors. These counterfeit apps had been downloaded millions...

Meta recently announced that it successfully disrupted two of the world's largest covert influence operations that originated from China and Russia. As a result, numerous accounts and pages were blocked across its platform. Guy Rosen, Meta's Chief Information Security Officer, reported that these operations targeted more than 50 applications, including popular platforms like Facebook, Instagram, X (formerly Twitter), YouTube, TikTok, Reddit,...

Kroll, a provider of financial advisory solutions, recently revealed an incident where one of its employees was targeted in an intricate SIM-swapping attack. On August 19, 2023, the episode focused on the employee's T-Mobile account. Unauthorized by Kroll or the employee, T-Mobile transferred the employee's phone number to the attacker's device as per their request. This breach enabled the assailant to access specific files containing personal...

A recent study by Zimperium has uncovered a worrisome trend among threat actors. They are using obscure and unsupported compression methods in Android Package (APK) files to avoid being detected by malware analysis. These methods were found in 3,300 artifacts found in the wild. Out of these artifacts, 71 samples can be easily integrated into an operating system without any issues.

It's important to note that these apps were never available on the Google Play Store. This suggests that...

Google has unveiled its strategic initiative to bolster the security landscape of its Chrome browser by integrating support for quantum-resistant encryption algorithms. Commencing with version 116, this endeavor marks a significant step towards fortifying the protection of online communication.

In a recent announcement, Devon O'Brien detailed the forthcoming inclusion of the X25519Kyber768...

The exploration into the security challenges of remote work commences with the narrative of an employee referred to as "Bob." Bob serves as a DevOps engineer at a major technology company and, like countless others in the post-pandemic era, carries out his tasks remotely from various locations, primarily his home. Around August 2022, he began noticing unusual behavior on his personal computer, including intermittent keystroke delays and sluggish...

The U.S. Securities and Exchange Commission (SEC) has approved new rules that require publicly traded companies to disclose cyber attacks within four days of identifying a "material" impact on their finances. SEC Chair Gary Gensler emphasized the need for consistent and informative disclosure to benefit both companies and investors.

The new rules mandate companies to disclose the nature, scope,...

In the face of new proposals to broaden digital surveillance powers for state intelligence agencies, Apple refuses to compromise its stance on privacy. Recent reports by BBC News reveal that the tech giant is willing to make a bold move by ceasing iMessage and FaceTime services in the U.K. Rather than succumbing to government pressure and jeopardizing encryption protections, Apple joins the growing chorus of dissent against the potential amendments...

With generative artificial intelligence (AI) on the rise, it has unfortunately become a tool of choice for malicious actors, creating a fast track to cybercrime.

A novel generative AI cybercrime tool, dubbed WormGPT, has emerged in underground forums, offering adversaries a potent weapon for launching sophisticated phishing and business email compromise (BEC) attacks.

July 18, 2023 00:29 (on 7/18/23) |  0 | 1 minute read

In a startling revelation, cybersecurity experts at Pradeo, a leading mobile security company, have uncovered two file management apps on the Google Play Store that pose a significant threat to the privacy and security of up to 1.5 million Android users. These seemingly harmless apps, named File Recovery and Data Recovery (com.spot.music.filedate) with over 1 million installs, and File Manager...