Mobile and Risk - Cyber Security Informer

Experts Flag Security, Privacy Risks in DeepSeek AI App

Krebs on Security

FEBRUARY 6, 2025

New mobile apps from the Chinese artificial intelligence (AI) company DeepSeek have remained among the top three “free” downloads for Apple and Google devices since their debut on Jan. “To mitigate these risks, the House has taken security measures to restrict DeepSeeks functionality on all House-issued devices.”

Risk

Risk Artificial Intelligence Mobile Encryption

Pairwise Authentication of Humans

Schneier on Security

FEBRUARY 10, 2025

To mitigate that risk, I have developed this simple solution where you can setup a unique time-based one-time passcode (TOTP) between any pair of persons. Here’s an easy system for two humans to remotely authenticate to each other, so they can be sure that neither are digital impersonations.

Authentication

Authentication Mobile Risk

T-Mobile detected network intrusion attempts and blocked them

Security Affairs

NOVEMBER 28, 2024

T-Mobile reported recent infiltration attempts but pointed out that threat actors had no access to its systems and no sensitive data was compromised. T-Mobile detected recent infiltration attempts but confirmed no unauthorized system access occurred, and no sensitive data was compromised. This is not the case at T-Mobile.”

Mobile

Mobile Telecommunications Government Internet

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. The security breach poses a major national security risk. and international telecom firms.

Mobile

Mobile Telecommunications Data breaches Hacking

IT threat evolution in Q3 2024. Non-mobile statistics

SecureList

NOVEMBER 29, 2024

Non-mobile statistics IT threat evolution in Q3 2024. Mobile statistics The statistics presented here are based on detection verdicts by Kaspersky products and services received from users who consented to providing statistical data. IT threat evolution in Q3 2024 IT threat evolution in Q3 2024.

Mobile

Mobile Adware Ransomware Malware

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

Krebs on Security

NOVEMBER 28, 2022

A recent scoop by Reuters revealed that mobile apps for the U.S. But that story omitted an important historical detail about Pushwoosh: In 2013, one of its developers admitted to authoring the Pincer Trojan , malware designed to surreptitiously intercept and forward text messages from Android mobile devices. “Pushwoosh Inc.

Mobile

Mobile Malware Technology Government

Flaw in Verizon call record requests put millions of Americans at risk

Malwarebytes

APRIL 4, 2025

For people in a domestic abuse situation, public figures, or those of interest to resourceful cyberattackers, a history of calls and frequent callers falling in the wrong hands can put people at physical risk or even compromise national security. Follow the steps to disable Call Filter.

Risk

Risk Wireless Mobile Telecommunications

IBM Addresses AI, Quantum Security Risks with New Platform

Security Boulevard

OCTOBER 23, 2024

The post IBM Addresses AI, Quantum Security Risks with New Platform appeared first on Security Boulevard. IBM is rolling out Guardian Data Security Center, a framework designed to give enterprises the tools they need to address the emerging cyberthreats that come the ongoing development of generative AI and quantum computing.

Risk

Risk Data privacy Mobile Government

Popular VPNs are routing traffic via Chinese companies, including one with link to military

Malwarebytes

APRIL 3, 2025

Up to one in five of the most popular mobile VPNs for iOS last year are owned by Chinese companies that do their best to hide the fact. Mobile VPNs are apps that connect your smartphone to the internet via different computers around the world. The company developed several mobile apps for Innovative Connecting Pte.

VPN

VPN Mobile Government Technology

Mobile Device Security Policy

Tech Republic Security

JANUARY 31, 2024

Mobile devices are commonly used to conduct company business, which can render them more susceptible to risk than desktop or even laptop computers. Desktops are routinely stationary devices and laptops are harder to lose than smartphones or tablets, being more sizable.

Mobile

Mobile Social Engineering Engineering Phishing

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

The Last Watchdog

AUGUST 19, 2021

At the start of this week, word got out that hackers claimed to have seized personal data for as many as 100 million T-Mobile patrons. Related: Kaseya hack worsens supply chain risk. According to the attackers, this was a configuration issue on an access point T-Mobile used for testing. This was not a sophisticated attack.

Mobile

Mobile Data breaches Authentication Accountability

10 Behaviors That Will Reduce Your Risk Online

Daniel Miessler

MAY 14, 2020

What follows is a set of basic security hygiene steps that will significantly reduce your risk online. For your most important accounts—such as those controlling your email account, your bank, and your mobile phone account—you should enable two-factor authentication. So, I decided to update the advice myself.

Risk

Risk Passwords Password Management Accountability

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

The Last Watchdog

MAY 23, 2023

As digital transformation accelerates, Application Programming Interfaces (APIs) have become integral to software development – especially when it comes to adding cool new functionalities to our go-to mobile apps. Approov recently did a deep dive study of 650 financial services mobile apps of financial institutions across Europe and the US.

Mobile

Mobile Digital transformation Financial Services Software

Differences in App Security/Privacy Based on Country

Schneier on Security

SEPTEMBER 30, 2022

One hundred twenty-seven apps varied in what the apps were allowed to access on users’ mobile phones, 49 of which had additional permissions deemed “dangerous” by Google. are at higher privacy risk. We present the first large-scale measurement study of geodifferences in the mobile app ecosystem.

Mobile

Mobile Internet Internet VPN

Recycle Your Phone, Sure, But Maybe Not Your Number

Krebs on Security

MAY 19, 2021

Many online services allow users to reset their passwords by clicking a link sent via SMS, and this unfortunately widespread practice has turned mobile phone numbers into de facto identity documents. Which means losing control over one thanks to a divorce, job termination or financial crisis can be devastating.

Mobile

Mobile Wireless Accountability Authentication

Location, name, and photos of random kids shown to parents in child tracker mix up

Malwarebytes

APRIL 3, 2025

Not one but several worried parents that tracked their children by using T-Mobile tracking devices suddenly found that they were looking at the location of random other children. T-Mobile sells a small GPS tracker called SyncUP , which can be used to track, among others, the locations of young children who dont have cell phones yet.

Mobile

Mobile Media Surveillance Technology

Mishing Is the New Phishing — And It’s More Dangerous

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals are shifting their focus from emails to text messages, using mishing a more deceptive form of phishing to target mobile users and infiltrate corporate networks, according to new security research by Zimperium. Zimperium found that mishing activity peaked in August 2024, with over 1,000 daily attacks recorded. What is mishing?

Phishing

Phishing Mobile Social Engineering Data breaches

BYOD Policies Fueling Security Risks

Security Boulevard

SEPTEMBER 12, 2024

The use of employee mobile devices at work, or bring your own device (BYOD), is a significant and growing threat to organizational security. The post BYOD Policies Fueling Security Risks appeared first on Security Boulevard.

Risk

Risk Mobile Social Engineering Engineering

Predator Spyware Spreads: 11 Countries Now at Risk

Penetration Testing

MARCH 3, 2024

The operators behind the invasive Predator mobile spyware remain undeterred by public exposure and scrutiny.

Spyware

Spyware Penetration Testing Risk Mobile

Kroll Employee SIM-Swapped for Crypto Investor Data

Krebs on Security

AUGUST 25, 2023

19, 2023, someone targeted a T-Mobile phone number belonging to a Kroll employee “in a highly sophisticated ‘SIM swapping’ attack.” ” T-Mobile has not yet responded to requests for comment. . ” T-Mobile has not yet responded to requests for comment.

Mobile

Mobile Cyber Risk Data breaches Cryptocurrency

Student Devices Wiped — Mobile Guardian Hacked AGAIN

Security Boulevard

AUGUST 7, 2024

The post Student Devices Wiped — Mobile Guardian Hacked AGAIN appeared first on Security Boulevard. Hackers ate my homework: MDM software for schools is breached for second time this year—13,000 devices wiped in Singapore alone.

Mobile

Mobile Hacking Software Data privacy

World Backup Day: A Clarion Call for Cyber Resilience

SecureWorld News

MARCH 31, 2025

Encryption and automation reduce the risk of human error and ensure consistency. Don't overlook mobile and shadow data Modern IT environments extend well beyond servers and cloud storage. He advocates for proactive mobile threat defense to protect data before it ever reaches backup systems.

Backups

Backups Mobile Encryption CISO

Android App Infects Up To 10 Million Users with Update

Adam Levin

FEBRUARY 8, 2021

Takeaways: Keep an eye out for new and suspicious behavior on your mobile device, especially after installing a new app or updating an existing one. There is always a level of risk involved with installing any app to your device. may also allow a bad player to place invasive data tracking on your device as well as annoying advertising.

Mobile

Mobile Advertising Malware Risk

Robocall Legal Advocate Leaks Customer Data

Krebs on Security

AUGUST 3, 2020

A California company that helps telemarketing firms avoid getting sued for violating a federal law that seeks to curb robocalls has leaked the phone numbers, email addresses and passwords of all its customers, as well as the mobile phone numbers and other data on people who have hired lawyers to go after telemarketers.

Mobile

Mobile Marketing Consumer Protection Wireless

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

SecureWorld News

FEBRUARY 6, 2025

The move comes amid growing concerns that DeepSeek's generative AI capabilities pose a national security risk due to its direct links to the Chinese Communist Party (CCP) and China Mobile, a Chinese government-owned entity already banned by the U.S. Federal Communications Commission (FCC) for security concerns. What's next?

Government

Government Artificial Intelligence Data privacy Mobile

AppLite: A New Threat Targeting Mobile Devices and Enterprises

SecureWorld News

DECEMBER 10, 2024

Zimperium's zLabs team has uncovered a dangerous new variant of the Antidot banking trojan, dubbed AppLite, that is targeting Android devices through sophisticated mobile phishing (mishing) campaigns. Corporate Exploitation: Poses risks to companies by stealing credentials from employee devices used for remote work.

Mobile

Mobile Social Engineering Banking Phishing

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

The Last Watchdog

OCTOBER 10, 2022

The sheer scale of data attributes available in VR make such inferences more accurate and abundant than on any conventional platform, such as web or mobile applications. We hope our work begins to shed light on the risks that lie ahead, and encourage practitioners to advance research at the intersection of data privacy and VR.

Risk

Risk Data privacy Data collection Technology

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Krebs on Security

FEBRUARY 26, 2025

But in a response filed today (PDF), prosecutors in Seattle said Wagenius was a flight risk, partly because prior to his arrest he was searching online for how to defect to countries that do not extradite to the United States. government military which country will not hand me over” -“U.S. million customers. .”

Hacking

Hacking Government Identity Theft Accountability

WhatsApp for Windows vulnerable to attacks. Update now!

Malwarebytes

APRIL 9, 2025

WhatsApp offers a desktop application for Windows and macOS, which users can synchronize with their mobile devices. Desktop versions of WhatsApp are generally used as extensions of mobile apps rather than primary platforms. We dont just report on threatswe remove them Cybersecurity risks should never spread beyond a headline.

Mobile

Mobile Accountability Risk Cybersecurity

How 1-Time Passcodes Became a Corporate Liability

Krebs on Security

AUGUST 30, 2022

A recent spate of SMS phishing attacks from one cybercriminal group has spawned a flurry of breach disclosures from affected companies, which are all struggling to combat the same lingering security threat: The ability of scammers to interact directly with employees through their mobile devices. In an Aug.

Mobile

Mobile Phishing Authentication Accountability

Phishing evolves beyond email to become latest Android app threat

Malwarebytes

FEBRUARY 11, 2025

They started developing entire mobile apps on Android that could provide the same level of theft. These decoy apps are often hosted on less popular mobile app stores, as the protections of the Google Play store often flag and remove these apps, should they ever sneak onto the marketplace. A low number of reviews may signal a decoy app.

Phishing

Phishing Passwords Mobile Authentication

Toll fee scams are back and heading your way

Malwarebytes

APRIL 7, 2025

xin Did you know that Malwarebytes for mobile scans your texts for scams and blocks known malicious sites? We dont just report on phone securitywe provide it Cybersecurity risks should never spread beyond a headline. Keep threats off your mobile devices by downloading Malwarebytes for iOS , and Malwarebytes for Android today.

Scams

Scams Phishing Mobile Internet

PayPal’s “no-code checkout” abused by scammers

Malwarebytes

FEBRUARY 27, 2025

Combining official-looking Google search ads with specially-crafted PayPal pay links, makes this scheme particularly dangerous on mobile devices due to their screen size limitation and likelihood of not having security software. There are also security solutions that can block ads and malicious links, such as Malwarebytes for mobile devices.

Scams

Scams Mobile Small Business Advertising

Digital License Plates

Schneier on Security

OCTOBER 13, 2022

Perhaps most importantly to the average car owner, Reviver said Rplate owners can renew their registration online through the Reviver mobile app. More important are the security risks. That’s it? Right now, an Rplate for a personal vehicle (the battery version) runs to $19.95 a month for 48 months, which will total $975.60

Risk

Risk Mobile Internet Internet

Apple users: Update your devices now to patch zero-day vulnerability

Malwarebytes

JANUARY 28, 2025

We dont just report on phone securitywe provide it Cybersecurity risks should never spread beyond a headline. Keep threats off your mobile devices by downloading Malwarebytes for iOS , and Malwarebytes for Android today.

Media

Media Mobile Software Risk

Millions of stalkerware users exposed again

Malwarebytes

FEBRUARY 28, 2025

There are many reasons not to use stalkerware, but the risk of getting exposed yourself seems to be a recurring deterrent, according to a new investigaton. By definition, stalkerware is a term used to describe the toolssoftware programs and mobile appsthat enable someone to secretly spy on another persons private life via their mobile device.

Mobile

Mobile Data breaches Marketing Internet

Malicious QR codes sent in the mail deliver malware

Malwarebytes

NOVEMBER 15, 2024

And QR codes get typically read by mobile devices, which—unfortunately—still get overlooked when it comes to installing security software. Use anti-malware protection on your devices Your mobile devices are in need of protection just as much as your computer. Using QR codes in snail mail offers the criminals a few advantages.

Malware

Malware Banking Mobile Software

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

The security breach poses a major national security risk. requests for communications data, according to people familiar with the matter, which amounts to a major national security risk.” T-Mobile detected recent infiltration attempts but confirmed no unauthorized system access occurred, and no sensitive data was compromised.

Telecommunications

Telecommunications Government Mobile Cyber threats

GUEST ESSAY: Why rigorous vulnerability management is crucial to protecting critical systems

The Last Watchdog

MARCH 7, 2022

As companies accelerate their reliance on agile software development, cloud-hosted IT infrastructure and mobile applications, vulnerability management (VM) has an increasingly vital security role to play. Related: Log4j vulnerability translates into vast exposures. VM is a well-known and mature segment of cybersecurity.

Data breaches

Data breaches Mobile Risk Cyber Risk

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

SecureWorld News

MARCH 20, 2025

Phishing plays straight out of the cybercrime playbook "March Madness brings heightened cybersecurity risks this year, especially with the expansion of sports gambling beyond traditional office pools creating new attack vectors for credential harvesting and financial fraud," warns J.

Scams

Scams Social Engineering Mobile Phishing

Why is ‘Juice Jacking’ Suddenly Back in the News?

Krebs on Security

APRIL 14, 2023

KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about “ juice jacking ,” a term first coined here in 2011 to describe a potential threat of data theft when one plugs their mobile device into a public charging kiosk.

Mobile

Mobile Software Backups Technology

X users report login troubles as Dark Storm claims cyberattack

Malwarebytes

MARCH 10, 2025

For much of Monday, users could not load the X mobile app, the X website, or log into the services from their phones or laptops. We dont just report on threatswe remove them Cybersecurity risks should never spread beyond a headline. We get attacked every day, but this was done with a lot of resources.

DDOS

DDOS Mobile Media Risk

QR codes sent in attachments are the new favorite for phishers

Malwarebytes

APRIL 3, 2025

Use anti-malware protection on your devices Your mobile devices are in need of protection just as much as your computer. We dont just report on phone securitywe provide it Cybersecurity risks should never spread beyond a headline. Malwarebytes protects devices with Malwarebytes for Android and Malwarebytes for iOS.

Phishing

Phishing Banking Mobile Accountability

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Security Boulevard

MARCH 21, 2025

Check out key findings and insights from the Tenable Cloud AI Risk Report 2025. 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments? 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments?

Risk

Risk IoT Cybersecurity Manufacturing

Experts Flag Security, Privacy Risks in DeepSeek AI App

Pairwise Authentication of Humans

Webinars

Trending Sources

T-Mobile detected network intrusion attempts and blocked them

Webinars

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

IT threat evolution in Q3 2024. Non-mobile statistics

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

Flaw in Verizon call record requests put millions of Americans at risk

IBM Addresses AI, Quantum Security Risks with New Platform

Popular VPNs are routing traffic via Chinese companies, including one with link to military

Mobile Device Security Policy

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

10 Behaviors That Will Reduce Your Risk Online

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

Differences in App Security/Privacy Based on Country

Recycle Your Phone, Sure, But Maybe Not Your Number

Location, name, and photos of random kids shown to parents in child tracker mix up

Mishing Is the New Phishing — And It’s More Dangerous

BYOD Policies Fueling Security Risks

Predator Spyware Spreads: 11 Countries Now at Risk

Kroll Employee SIM-Swapped for Crypto Investor Data

Student Devices Wiped — Mobile Guardian Hacked AGAIN

World Backup Day: A Clarion Call for Cyber Resilience

Android App Infects Up To 10 Million Users with Update

Robocall Legal Advocate Leaks Customer Data

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

AppLite: A New Threat Targeting Mobile Devices and Enterprises

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

WhatsApp for Windows vulnerable to attacks. Update now!

How 1-Time Passcodes Became a Corporate Liability

Phishing evolves beyond email to become latest Android app threat

Toll fee scams are back and heading your way

PayPal’s “no-code checkout” abused by scammers

Digital License Plates

Apple users: Update your devices now to patch zero-day vulnerability

Millions of stalkerware users exposed again

Malicious QR codes sent in the mail deliver malware

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

GUEST ESSAY: Why rigorous vulnerability management is crucial to protecting critical systems

March Madness Meets Cyber Mayhem: How Cybercriminals Are Playing Offense this Season

Why is ‘Juice Jacking’ Suddenly Back in the News?

X users report login troubles as Dark Storm claims cyberattack

QR codes sent in attachments are the new favorite for phishers

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Stay Connected