Security News > 2022 > February

A financially motivated campaign that targets Android devices and spreads mobile malware via SMS phishing techniques since at least 2018 has spread its tentacles to strike victims located in France and Germany for the first time. Dubbed Roaming Mantis, the latest spate of activities observed in 2021 involve sending fake shipping-related texts containing a URL to a landing page from where Android users are infected with a banking trojan known as Wroba whereas iPhone users are redirected to a phishing page that masquerades as the official Apple website.

The global identity theft protection services market is estimated at $10 Billion in 2022 and is forecast to surpass $24 Billion by 2032, growing at a CAGR of 9.4% during 2022-2032, according to Fact.MR. The global identity theft protection services market is estimated to have an absolute $ opportunity of $14 Billion during the assessment period of 2022-2032. Monitoring services that help in observing unauthorized use of personal information and recovery services which deals with the ripple effects of post-identity theft are anticipated to increase the identity theft protection services market growth of by ~23% in upcoming half-decade.

Aims to make life harder for miscreants Microsoft Office will soon block untrusted Visual Basic for Applications (VBA) macros sourced from the internet by default – a security measure users can...

Two different Android banking Trojans, FluBot and Medusa, are relying on the same delivery vehicle as part of a simultaneous attack campaign, according to new research published by ThreatFabric. The ongoing side-by-side infections, facilitated through the same smishing infrastructure, involved the overlapping usage of "App names, package names, and similar icons," the Dutch mobile security firm said.

Imperva fellow explains why data privacy is about much more the breaches and just knowing where your data is. I could be a network firewall and say, "By protecting your network, I'm protecting your data. Therefore, I do data security." The same thing would be true of encryption or, even more specific, technologies like tokenization or pseudo-anonymization or all of these things to hide your data in certain ways, all of these are data security and trying to protect data.

Perimeter 81's cloud-delivered, user-friendly platform offers a seamless SaaS interface with a feature-rich experience including built-in SSO and 2FA integrations. Perimeter 81's self-service portal allows organizations to create, deploy and scale their secure network infrastructure and business applications quickly and without friction.

The wide-ranging adoption of cloud facilities and the subsequent mushrooming of organizations' networks, combined with the recent migration to remote work, had the direct consequence of a massive expansion of organizations' attack surface and led to a growing number of blind spots in connected architectures. The unforeseen results of this expanded and attack surface with fragmented monitoring has been a marked increase in the number of successful cyber-attacks, most notoriously, ransomware, but covering a range of other types of attacks as well.

How to use DuckDuckGo on your PC and mobile devices. To install the DuckDuckGo extension, open Chrome or Firefox and browse to the DuckDuckGo home page.

5 services and tools helping companies with digital safety. As more companies and people use different digital platforms to advertise and promote their products and services, online integrity and safety are rapidly becoming a priority topic of concern.

GitLab on how DevSecOps can help developers provide security from end-to-end. TechRepublic's Karen Roby spoke with Jonathan Hunt, VP of security for GitLab, about the security challenges companies face today and how the concept and practice of DevSecOps can help developers build end-to-end security into their applications.