Security Affairs

JANUARY 30, 2024

Data of 750 million Indian mobile subscribers was offered for sale on dark web hacker forums earlier in January. CloudSEK researchers warned that a database containing data of 750 million Indian mobile subscribers was offered for sale on dark web hacker forums earlier in January.

Mobile 139

Mobile Identity Theft Cybercrime Cyber Attacks 139

SecureWorld News

MARCH 31, 2025

A critical business function, not just a checkbox "World Backup Day acts as a crucial reminder that data loss is inevitable, encouraging us to take proactive steps to protect our information," says Emilio Sepulveda , Manager of Information Security at Deepwatch.

Backups 94

Backups Mobile Encryption CISO 94

Security Affairs

DECEMBER 21, 2023

More than 22,000 users of Blink Mobility should take the necessary steps to protect themselves against the risk of identity theft. Los Angeles-based electric car-sharing provider Blink Mobility left a misconfigured MongoDB database open to the public.

Mobile 133

Mobile Identity Theft Passwords Phishing 133

Security Affairs

OCTOBER 30, 2023

Canada banned the Chinese messaging app WeChat and Kaspersky antivirus on government mobile devices due to privacy and security risks. The Government of Canada announced a ban on the use of the WeChat and Kaspersky applications on government-issued mobile devices due to privacy and security risks.

Mobile 137

Mobile Government Data collection Antivirus 137

Security Affairs

OCTOBER 17, 2024

VMWare warns to address a remote code execution vulnerability, tracked as CVE-2024-38814 (CVSS score of 8.8), in its HCX application mobility platform. ” VMware HCX (Hybrid Cloud Extension) is a workload mobility platform designed to simplify the migration, rebalancing, and continuity of workloads across data centers and clouds.

Authentication 129

Authentication Mobile Hacking Information Security 129

Daniel Miessler

JULY 21, 2021

There’s a paradox in information security where the community wants two things at once: High quality research and talks, and. He’s the COO of Corellium, which does mobile forensics. Unbiased research and talks. I’ve personally been one of these affiliated speakers countless times. My friend Joel P.

Mobile 353

Mobile Marketing Information Security 353

Security Affairs

APRIL 16, 2025

” In September, security researchers from G DATA discovered more than two dozen Android mobile phones from different manufacturers already infected by pre-installed malware. .” concludes the report that includes indicators of compromise (IoCs).

Malware 126

Malware Manufacturing Mobile Spyware 126

Security Affairs

OCTOBER 18, 2023

IMEI is a unique number assigned to each mobile device and is used to identify a device on a mobile network. If that happens, it can cause disruptions to the mobile service of the device. The leak also increases the risk of malware attacks, as exposed information about phone models could be exploited by threat actors.

Mobile 134

Mobile Phishing Manufacturing Risk 134

Security Affairs

AUGUST 28, 2023

A security researcher demonstrated how to discover a target’s IP address by sending a link over the Skype mobile app. The security researcher Yossi discovered that is possible to discover a target’s IP address by sending a link over the Skype mobile app. The problem only impacts the Skype mobile app.

Mobile 134

Mobile Media VPN Risk 134

Security Affairs

APRIL 13, 2025

Cell C is the fourth-largest mobile network operator in South Africa, , after Vodacom, MTN, and Telkom. The company founded in 2001 offers prepaid and postpaid mobile plans, data bundles and internet services, fiber broadband, roaming and international calling, SIM-only plans and device deals.

Data breaches 126

Data breaches Unstructured Data Identity Theft Healthcare 126

Security Affairs

AUGUST 23, 2024

Cybercriminals use progressive web applications (PWA) to impersonate banking apps and steal credentials from mobile users. ESET researchers detailed a phishing campaign against mobile users that uses Progressive Web Applications (PWAs).

Phishing 130

Phishing Mobile Banking Social Engineering 130

Security Affairs

APRIL 19, 2025

Threat actors are actively exploiting a remote code execution flaw in SonicWall Secure Mobile Access (SMA) appliances since January 2025. Arctic Wolf researchers warn that threat actors actively exploit a vulnerability, tracked as CVE-2021-20035 (CVSS score of 7.1), in SonicWall Secure Mobile Access (SMA) since at least January 2025.

Passwords 105

Passwords VPN Firewall Accountability 105

Security Affairs

MARCH 28, 2025

. “Preliminary findings indicate that the suspects developed malware called Mamont, which they distributed via Telegram channels under the guise of safe mobile applications and video files. Crooks typically disguise the malicious code as legitimate mobile apps or video files.

Banking 113

Banking Computers and Electronics Mobile Malware 113

Security Affairs

DECEMBER 12, 2023

The Ukrainian telecommunications company provides communication services and data transmission based on a broad range of fixed and mobile technologies, including 4G (LTE) in Ukraine. The Kyivstar mobile network serves about 26 million mobile customers and more than 1 million broadband fixed internet customers in the country.

Cyber Attacks 130

Cyber Attacks Mobile Internet Internet 130

Security Affairs

APRIL 2, 2025

In March 2018, security researchers at Antivirus firmDr.Web discovered that 42 models of low-cost Android smartphones were shipped with the Android.Triada.231 The Triada Trojan was spotted for the first time in 2016 by researchers at Kaspersky Lab who considered it the most advanced mobile threat seen to the date of the discovery.

Malware 119

Malware Cryptocurrency Mobile Firmware 119

Security Affairs

OCTOBER 28, 2024

million mobile and fixed subscribers. “” The telecommunications firm has filed a criminal complaint and informed France’s agencies National Commission for Information Technology and Civil Liberties (CNIL) and the National Agency for the Security of Information Systems (ANSSI). Free S.A.S.

Cyber Attacks 123

Cyber Attacks Telecommunications Data breaches Banking 123

SecureWorld News

MARCH 20, 2025

Mobile madness: the sneaky side of cyber scams With fans constantly checking scores, streaming games, and logging into betting apps, mobile devices are a major attack surface. Fake betting apps, fraudulent login pages, and malicious streaming links can easily bypass traditional security layers.

Scams 82

Scams Social Engineering Mobile Phishing 82

Security Affairs

APRIL 29, 2025

.” In 2024, over 60% of zero-day exploits targeting enterprise tech hit security and networking tools, offering attackers efficient access to systems and networks. GTIG experts reported that in 2024, zero-day attacks targeting enterprise tech grew, while browser and mobile exploits dropped. ” continues the report.

Surveillance 105

Surveillance Mobile Software Hacking 105

Security Affairs

APRIL 26, 2025

Founded in 1994, it has grown to become Africa’s largest mobile network operator, serving over 290 million subscribers across 18 countries in Africa and the Middle East. The company is also expanding into areas like mobile money and digital entertainment, aiming to become Africas leading digital platform.

Data breaches 104

Data breaches Telecommunications Financial Services Mobile 104

Security Affairs

OCTOBER 31, 2024

We want to reassure you that Interbank guarantees the security of your deposits and all your financial products.” ” [link] The financial organization announced that it had resumed its mobile and online platforms after recent outages and sought to assure customers that their funds were not impacted by the security incident.

Data breaches 126

Data breaches Financial Services Hacking Mobile 126

Security Affairs

DECEMBER 4, 2024

T-Mobile detected recent infiltration attempts but confirmed no unauthorized system access occurred, and no sensitive data was compromised. This is not the case at T-Mobile.” Connectivity to a compromised provider was interrupted, and T-Mobile notified industry and government leaders.

Telecommunications 111

Telecommunications Government Mobile Cyber threats 111

Security Affairs

NOVEMBER 30, 2024

SpyLoan activity has surged, with malicious apps and infected devices increasing over 75% from Q2 to Q3 2024, highlighting their growing mobile threat presence. Some apps were suspended by Google from Google Play while others were updated by the developers.

Social Engineering 127

Social Engineering Media Mobile Scams 127

Security Affairs

APRIL 8, 2025

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,mobile) A misconfigured digital certificate further confirmed the connection, strengthening the evidence of Paragons global spyware operations.

Spyware 114

Spyware Media Hacking Surveillance 114

Security Affairs

MARCH 21, 2025

Zero-day prices have risen as the level of security of messaging apps and mobile devices becomes harder to hack. Despite the ban on military and government devices, Ukrainian users rely heavily on Telegram to communicate and receive news on ongoing conflicts.

Government 144

Government Surveillance Mobile Hacking 144

Security Affairs

DECEMBER 12, 2024

These are the first known mobile malware families linked to the Russian APT. These findings tie the mobile surveillance families to Gamaredons desktop campaigns. Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon (a.k.a. Armageddon , Primitive Bear, and ACTINIUM).

Mobile 97

Mobile Malware Surveillance Social Engineering 97

Security Affairs

NOVEMBER 10, 2024

US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. The US government’s Consumer Financial Protection Bureau (CFPB) advises employees to avoid using cellphones for work after China-linked APT group Salt Typhoon hackers breached major telecom providers.

Hacking 128

Hacking Internet Internet Government 128

Security Affairs

NOVEMBER 8, 2024

Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source.

Media 118

Media Mobile Passwords Hacking 118

Security Affairs

OCTOBER 21, 2024

IntelBroker targeted many major organizations in past attacks, including AMD , AT&T, Bank of America, Microsoft, Europol , SAP, T-Mobile, Verizon, and others. The company has disabled public access to the site while we continue the investigation.

Cybercrime 129

Cybercrime Data breaches Technology Banking 129

Security Affairs

NOVEMBER 12, 2024

Law enforcement warned that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source.

Media 126

Media Wireless Mobile Encryption 126

Security Affairs

DECEMBER 4, 2024

BT Group operates in 180 countries, the company leads in UK fixed-line, broadband, mobile, TV, and IT services. This incident was restricted to specific elements of the platform, which were rapidly taken offline and isolated,” a company spokesman told BleepingComputer. The attack did not impact live BT Conferencing services.

Ransomware 123

Ransomware Telecommunications Healthcare Insurance 123

The Last Watchdog

JANUARY 16, 2023

An essential component of ISO 27001 compliance is performing penetration tests as it can effectively identify where to make improvements to the information security management system of an organization. By now, the importance of penetration testing is known to most companies.

Penetration Testing 214

Penetration Testing Mobile Marketing Technology 214

Security Affairs

NOVEMBER 13, 2024

Zoom Offensive Security reported both vulnerabilities, the vulnerabilities impact Zoom Workplace App, Rooms Client, Rooms Controller, Video SDK, and Meeting SDK prior to version 6.2.0 across desktop and mobile platforms, and Workplace VDI Client for Windows before version 6.1.12 (except 6.0.14).

Authentication 113

Authentication Mobile Hacking Information Security 113

Security Affairs

JANUARY 20, 2025

The DoNot APT group has been observed misusing the OneSignal platform, which typically provides tools for sending push notifications, in-app messages, emails, and SMS widely used in mobile and web applications. In this case, the group is leveraging OneSignal to deliver phishing links through notifications.

Malware 113

Malware Cyber Attacks Mobile Phishing 113

Security Affairs

DECEMBER 16, 2024

. “While activists have long expressed concerns about spyware infections occurring during police interviews, Amnesty International believes that this report describes the first forensically documented spyware infections enabled by the use of Cellebrite mobile forensic technology.”

Spyware 104

Spyware Surveillance Technology Mobile 104

The Last Watchdog

MAY 19, 2022

Security is also necessary if your retrieval system (such as a website or mobile app) has a paywall or is restricted to only a subset of people, such as customers or resellers. What about public information? The newer “headless” CMS, running in the cloud, contains everything but the presentation system.

Data breaches 262

Data breaches Encryption Mobile Technology 262

Security Affairs

OCTOBER 29, 2024

The group UNC5812 also coordinated influence campaigns to spread narratives and solicit content aimed at weakening the support for Ukraine’s mobilization and military recruitment efforts. .” reads the report published by Google.

Malware 117

Malware Social Engineering Software Mobile 117

Security Affairs

MARCH 9, 2025

.” reads the report published by the researchers “Exploitation of this hidden functionality would allow hostile actors to conduct impersonation attacks andpermanently infect sensitive devices such as mobile phones, computers, smart locks or medical equipment bybypassing code audit controls.”

Manufacturing 125

Manufacturing IoT Firmware Mobile 125