Credit to Author: Malwarebytes Labs| Date: Mon, 27 Jun 2022 09:30:06 +0000
The most important and interesting computer security stories from the last week.
The post A week in security (June 20 – June 26) appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Sat, 25 Jun 2022 16:00:00 +0000
Before dining over catfish this National Catfish Day, remember another catfish that’s also captured the public’s attention.
The post 5 ways to avoid being catfished appeared first on Malwarebytes Labs.
Read more
Credit to Author: Andrew Couts| Date: Sat, 25 Jun 2022 13:00:00 +0000
Plus: Microsoft details Russia’s Ukraine hacking campaign, Meta’s election integrity efforts dwindle, and more.
Read more
Credit to Author: Matt Burgess| Date: Sat, 25 Jun 2022 11:00:00 +0000
It’s never been easier to switch between iPhone and Android—and to get your messages out of the Meta ecosystem entirely.
Read more
Credit to Author: William Malik| Date: Fri, 24 Jun 2022 00:00:00 +0000
Why cybersecurity is the first step to private network deployment
Read more
Credit to Author: Jonny Evans| Date: Fri, 24 Jun 2022 09:40:00 -0700
Here we go again: another example of government surveillance involving smartphones from Apple and Google has emerged, and it shows how sophisticated government-backed attacks can become and why there’s justification for keeping mobile platforms utterly locked down.
I don’t intend to focus too much on the news, but in brief it is as follows:
The attack works like this: The target is sent a unique link that aims to trick them into downloading and installing a malicious app. In some cases, the spooks worked with an ISP to disable data connectivity to trick targets into downloading the app to recover that connection.
Credit to Author: Paul Ducklin| Date: Fri, 24 Jun 2022 15:32:13 +0000
Fortunately, it’s not a major bugfix, which means it’s easy to patch and can teach us all some useful lessons.
Read more
Credit to Author: Shweta Sharma| Date: Fri, 24 Jun 2022 08:51:00 -0700
Google’s Threat Analysis Group (TAG) has identified Italian vendor RCS Lab as a spyware offender, developing tools that are being used to exploit zero-day vulnerabilities to effect attacks on iOS and Android mobile users in Italy and Kazakhstan.
According to a Google blog post on Thursday, RCS Lab uses a combination of tactics, including atypical drive-by downloads as initial infection vectors. The company has developed tools to spy on the private data of the targeted devices, the post said.
Credit to Author: Lily Hay Newman| Date: Thu, 23 Jun 2022 17:30:32 +0000
The spyware has been used to target people in Italy, Kazakhstan, and Syria, researchers at Google and Lookout have found.
Read moreCredit to Author: Pieter Arntz| Date: Fri, 24 Jun 2022 11:34:04 +0000
International cybersecurity authorities have published a Cybersecurity Information Sheet on making it harder to abuse PowerShell
The post Cybersecurity agencies: You don’t have to delete PowerShell to secure it appeared first on Malwarebytes Labs.
Read more