Collaborate Disseminate
Apple confirmed that their latest iPhone 11 phones come with a feature that requires regular geolocation checks, but the company said that information doesn’t leave the phone. Security researcher Brian Krebs noticed that the latest iPhone 11 was … Continue reading Apple Confirms iPhone Regularly Gathers Location Data, But Says It Doesn’t Leave the Phone
Security researchers from IBM X-Force have identified a new wiper malware, possibly developed and deployed by state-funded Iranian groups in the Middle East. The malware, which the researchers dubbed ZeroCleare, is designed to destroy data on targeted … Continue reading Iranian Malware Targeted Energy and Industrial Sectors in the Middle East
A couple of Python libraries that posed as real components were caught stealing SSH and GPG keys from projects that used them. Software developer Lukas Martini discovered that the python3-dateutil and jeIlyfish libraries in the PyPI (Python Package Ind… Continue reading Fake Python Libraries Caught Trying to Steal SSH and GPG Keys
Cybersecurity researchers have discovered a vulnerability in Android in active use in the wild, called Strandhogg, that lets attackers gather sensitive and private information from the victim, without raising any flags. The vulnerability, discovered by… Continue reading Dangerous Android Vulnerability that Lets Attackers Steal Sensitive Data Found in Wild
A database owned by TrueDialog storing millions of SMS text messages in plain text was found online, accessible to anyone and unprotected by passwords. The data in the rogue database was found accessible online by vpnMentor security researchers Noam Ro… Continue reading Unsecured Server with Private Data from Millions of SMS Messages Found Online
Twitter and Facebook developers found that a couple of software development kits (SDKs) from third-party sources accessed private user data outside of their purview, without the user’s knowledge and consent. Twitter was the first to inform users … Continue reading Third-Party SDK Gathered User Data from Twitter and Facebook without Consent
Personal data for 1.2 billion people was discovered in an open Elasticsearch server. It’s unclear who owned the server, how the data got there, who had access to it, and how long sat in the open, free for anyone to access. The more than 4 terabyt… Continue reading Mystery Server Found to Host Private Data in the Open for 1.2 Billion People
Police in California have arrested a man accused of being among a group of hackers who found a way to take over Twitter CEO Jack Dorsey’s Twitter account. The hacker was allegedly part of a group called The Chuckling Squad, which claimed responsi… Continue reading Man Suspected of Hacking Jack Dorsey’s Twitter Account Arrested
The post Almost Half of SMB Executives Believe Employees Can’t Recognize Phishing appeared first on Security Boulevard.
Continue reading Almost Half of SMB Executives Believe Employees Can’t Recognize Phishing
Google has announced a significant expansion of its Android Security Rewards (ASR) program, which is used to reward security researchers who manage to find vulnerabilities in the companies’ various products. A top prize of $1 million is now on th… Continue reading Google Drastically Increases Rewards for Researchers Who Can Compromise Titan M