Security News

The current distributed remote work environment has also triggered a new threat landscape, with malicious actors increasingly targeting mobile devices with phishing attacks. Mobile Molly Works constantly on the go using a range of mobile devices, such as tablets and phones, and often relies on public WiFi networks for work.

The Password Checkup feature came first in the form of a Chrome extension, then was built into Google Account's password manager and Chrome, and now it has been enhanced with support for the ". Enhanced Safe Browsing mode, which was first introduced in Chrome 83, allows users to get a more personalized protection against malicious sites.

The approach is reminiscent of core Magecart group attacks, but in this case, the attack was the work of the Fullz House group, according to Malwarebytes, which is a Magecart splinter group that's mainly known for its phishing prowess. The group has been analyzed in the past, and gets its name from the use of carding sites to resell "Fullz," an underground slang term meaning a full set of an individual's personally identifying information plus financial data.

Hackers associated with the "Fullz House" group have compromised the website of Boom! Mobile and planted a web skimmer, Malwarebytes reports. The attack on Boom! Mobile, Malwarebytes reveals, involved the injection of one line of code containing a Base64 encoded URL designed to load a JavaScript library from a remote domain used in a previous attack.

Malicious mobile apps can pose a problem for any smartphone owner. A new series of malicious apps designed for both iOS and Android are being promoted by rogue TikTok accounts as a way to gain a wide audience.

WizCase experts have identified an unprotected Elasticsearch server that contained terabytes of data pertaining to users of Microsoft's Bing mobile application. White hat hacker Ata Hakcil, who identified the leak, was able to confirm that the Elasticsearch server belonged to Microsoft's Bing mobile app by installing the application and running a search for WizCase.

Mozilla now offers a VPN service that protects Windows and mobile devices, and soon your Linux and macOS desktops. Mozilla has released their VPN service, which is currently available for Android, iOS, Windows, and will soon be available for Linux and macOS. The service offers fast network speeds, location selection, zero activity logs stored on Mozilla servers, is currently available in six countries, runs on a global network of servers powered by Mullvad, uses device-level encryption, has no bandwidth restrictions, makes use of 280+ servers in 30+ countries, and only costs you $4.99 per month for up to five devices.

The usage of banking services through a mobile app has quickly been embraced by consumers. Currently, researches indicate that mobile banking apps are often not as secure as expected.

Popular mobile messengers expose personal data via discovery services that allow users to find contacts based on phone numbers from their address book, according to researchers. When installing a mobile messenger like WhatsApp, new users can instantly start texting existing contacts based on the phone numbers stored on their device.

With the new Mobile SDK, TeamViewer offers a solution that ensures exactly that: if the smartphone user leaves the app to be supported, the screen contents on the support employee's side are greyed out. The SDK contains a collection of programming tools and libraries that allow developers to integrate the remote support functions of TeamViewer into their app as a white label solution - without much programming effort.