Mobile Carrier Customer Service Ushers in SIM-Swap Fraud
Weak challenge questions by customer service reps make it easy for fraudsters to hijack a phone line and bypass 2FA to breach accounts.
Mobile Security
Google Account Security Keys Launch for iPhone
iPhone users can now use Bluetooth to secure their Google accounts.
A Practical Guide to Zero-Trust Security
There are five different pillars to implement when moving to a modern, zero-trust security model.
Trump Slams Apple for Refusing to Unlock Suspected Shooter’s iPhones
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: https://threatpost.com
Encryption Battle Reignited as US Govt at Loggerheads With Apple
Apple and the US government are at loggerheads for the second time in four years over unlocking iPhones connected to a mass shooting, reviving debate over law enforcement access to encrypted devices. Attorney General Bill Barr claimed Monday that Apple failed to provide “substantive assistance” in unlocking two iPhones in the investigation into the December shooting deaths of three US sailors at a Florida naval station, which he called an…
Google Researchers Detail Critical iMessage Vulnerability
Google Project Zero security researchers have published technical details on an iMessage vulnerability addressed last year, which could be exploited remotely to achieve arbitrary code execution. Tracked as CVE-2019-8641, the vulnerability is considered Critical, featuring a CVSS score of 9.8, and was discovered by Google Project Zero security researchers Samuel Groß and Natalie Silvanovich. In September 2019, Apple announced that the release of iOS 12.4.2 for iPhone 5s, iPhone 6,…
Tinder, Grindr Accused of Illegally Sharing User Data
Popular dating apps like Tinder and Grindr are sharing the personal data of their users to third parties in breach of EU regulations, a Norwegian consumer rights group said Tuesday. A new report by the Norwegian Consumer Council (NCC) details how Grindr, which markets itself as the “world’s largest social networking app for gay, bi, trans and queer people,” shares the GPS data, IP addresses, ages and genders of its…
Major U.S. Mobile Carriers Vulnerable to SIM Swapping Attacks
Weak security measures in place at several major wireless carriers in the United States make it easy for attackers to perform SIM swap attacks on prepaid mobile accounts, a recent study found. In a SIM swapping attack, social engineering is used to convince a wireless services provider to hand over control of the victim’s phone number by modifying the SIM card attached to the phone and mobile account. After hijacking…
Apple Denies FBI Request to Unlock Shooter’s iPhone—Again
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: www.threatpost.com
A 101 guide to mobile device management
Extending beyond the traditional company network, mobile connectivity has become an extension of doing business and IT staff need to not just rethink how existing activities, operations, and business models can fit into mobile constructs, but rethink h…