Asus, Lenovo and Other Routers Riddled with Remotely Exploitable Bugs
Independent researchers found 125 different CVEs across 13 different router and NAS models.
Mobile Security
Hackers Exploiting a Critical Weakness In Mobile Phones to Track Location
The interface designed for the usage of cell carriers is being exploited heavily by attackers. It allows the cell carriers to get in direct touch with the SIM cards inside subscribers’ smartphones, the interface can be employed by the carriers for allo…
T-Mobile Has a Secret Setting to Protect Your Account From Hackers That It Refuses to Talk About
It’s called “NOPORT” and, in theory, it makes it a bit harder for criminals to hijack phone numbers with an attack known as “SIM swapping,” a type of social engineering that Motherboard has covered extensively and which is increasingly being used to st…
iPhone iOS 13 Lockscreen Bypass Flaw Exposes Contacts
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: www.threatpost.com
Netanyahu, Trump Deny Report of Israeli Spying Near White House
President Benjamin Netanyahu on Thursday denied a media report that Israel spied on cell phones in the vicinity of the White House — and President Donald Trump said he believed him. Speaking on a trip to Russia, Netanyahu said there was no eavesdropping on cell phones around the US presidency because he had forbidden spying against the United States. “I have a directive: no intelligence connection in the United States,…
Android Flashlight Apps Request up to 77 Permissions
An analysis of Android flashlight applications available in Google Play has revealed that they request an average of 25 permissions, with some requesting up to 77 permissions when installed. Several years ago, users had to download and install flashlight applications on their devices, but Android now includes the functionality natively. However, flashlight applications continue to exist, and there are hundreds of them. An investigation performed by Avast’s security researchers has…
Simjacker: SIM Card Attack Used to Spy on Mobile Phone Users
Researchers at AdaptiveMobile Security, a firm that specializes in cyber telecoms security, have disclosed a new SIM card attack method that could work against over 1 billion mobile phones, and they claim it has already been exploited by a surveillance company to track users. Dubbed Simjacker, the attack involves sending a specially crafted SMS message to the targeted phone. The message contains SIM Toolkit (STK) instructions and it’s processed by…
1B Mobile Users Vulnerable to Ongoing ‘SimJacker’ Surveillance Attack
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: https://threatpost.com
Telegram Failed to Delete Images From Local Storage
The Telegram secure messaging application was found to breach users’ privacy by failing to properly remove images from a device’s local storage when the sender selects to delete them for all recipients. The option was meant to provide users with the possibility to delete messages that were sent by mistake or genuinely to any recipient. By deleting erroneously sent messages, the app helped preserve users’ privacy, though it appears that…
Telegram Failed to Delete Removed Images From Local Storage
The Telegram secure messaging application was found to breach users’ privacy by failing to properly remove images from a device’s local storage when the sender selects to delete them for all recipients. The option was meant to provide users with the possibility to delete messages that were sent by mistake or genuinely to any recipient. By deleting erroneously sent messages, the app helped preserve users’ privacy, though it appears that…