Collaborate Disseminate
What are the existing types of vulnerabilities that could result in exploits that do not require user interaction (e.g. zero-click)? I’m trying to understand the type of zero-click attack type for us to plan proper mitigation in code.
Researchers link the malware to Wolf Research operators with “high confidence” after it was spotted in campaigns targeting Thai users. Continue reading WolfRAT Android Malware Targets WhatsApp, Facebook Messenger
Threatpost editors discuss recent ransomware attacks and contact-tracing app privacy concerns. Continue reading News Wrap: Ransomware Extortion Tactics, Contact-Tracing App Security Worries
I’m a mobile app developer developing an app that gets input from users like mobile number, email id, and user name. I’m a bit confused about how to select the encryption method like Symmetric or Asymmetric and how to transmit the data fro… Continue reading How to chose the encryption type for user details? [closed]
Future features include plenty of self-reporting options, and officials’ fears the data could be misused. Continue reading Leaked NHS Docs Reveal Roadmap, Concerns Around Contact-Tracing App
I am developing an android application and in the future also for IOS, and I use a server in PHP.
Is it possible for my server to know the source of the application sending the requests?
For example, if someone modifies the apk of my app… Continue reading How can I prevent my server from receiving requests for a modified application? [duplicate]
Researchers warn that apps that market themselves as “free” are tricking users to subscribe to services that rack up as much as $500 in charges yearly. Continue reading Apple App Store Riddled With Money-Sucking Fleeceware Apps
A security error in the Walgreens mobile app may have leaked customers’ full names, prescriptions and shipping addresses. Continue reading Walgreens Mobile App Leaks Prescription Data
A Vodafone India customer received threat call from virtual number +1(580)686-0426.
I am from a law enforcement dept. of Police. How can we find the origination company of this virtual number.
Continue reading Trace Virtual Number +1(580)686-0426 [closed]
The API of a mobile app I was testing is sending the AWS AccessKeyId and SecretKey used for request signing from the AWS Cognito server unencrypted (apart from the regular TLS encryption). Making it possible to re-sign all requests to thei… Continue reading What is the use case of request signing in this mobile app?