Security News

The approach is reminiscent of core Magecart group attacks, but in this case, the attack was the work of the Fullz House group, according to Malwarebytes, which is a Magecart splinter group that's mainly known for its phishing prowess. The group has been analyzed in the past, and gets its name from the use of carding sites to resell "Fullz," an underground slang term meaning a full set of an individual's personally identifying information plus financial data.

Hackers associated with the "Fullz House" group have compromised the website of Boom! Mobile and planted a web skimmer, Malwarebytes reports. The attack on Boom! Mobile, Malwarebytes reveals, involved the injection of one line of code containing a Base64 encoded URL designed to load a JavaScript library from a remote domain used in a previous attack.

Malicious mobile apps can pose a problem for any smartphone owner. A new series of malicious apps designed for both iOS and Android are being promoted by rogue TikTok accounts as a way to gain a wide audience.

WizCase experts have identified an unprotected Elasticsearch server that contained terabytes of data pertaining to users of Microsoft's Bing mobile application. White hat hacker Ata Hakcil, who identified the leak, was able to confirm that the Elasticsearch server belonged to Microsoft's Bing mobile app by installing the application and running a search for WizCase.

Mozilla now offers a VPN service that protects Windows and mobile devices, and soon your Linux and macOS desktops. Mozilla has released their VPN service, which is currently available for Android, iOS, Windows, and will soon be available for Linux and macOS. The service offers fast network speeds, location selection, zero activity logs stored on Mozilla servers, is currently available in six countries, runs on a global network of servers powered by Mullvad, uses device-level encryption, has no bandwidth restrictions, makes use of 280+ servers in 30+ countries, and only costs you $4.99 per month for up to five devices.

The usage of banking services through a mobile app has quickly been embraced by consumers. Currently, researches indicate that mobile banking apps are often not as secure as expected.

Popular mobile messengers expose personal data via discovery services that allow users to find contacts based on phone numbers from their address book, according to researchers. When installing a mobile messenger like WhatsApp, new users can instantly start texting existing contacts based on the phone numbers stored on their device.

With the new Mobile SDK, TeamViewer offers a solution that ensures exactly that: if the smartphone user leaves the app to be supported, the screen contents on the support employee's side are greyed out. The SDK contains a collection of programming tools and libraries that allow developers to integrate the remote support functions of TeamViewer into their app as a white label solution - without much programming effort.

Verizon and Inseego launched the Inseego MiFi M2100 5G UW mobile hotspot, built to deliver blazing-fast speeds across Verizon's 5G Ultra Wideband1 and 4G LTE network. The MiFi M2100 5G UW is now available at Verizon for $16.66 per month for 24 months on Verizon Device Payment.

The Dutch national communication security authority, NLNCSA, has cleared international medical imaging IT and cybersecurity company Sectra's mobile VPN for use up to and including the RESTRICTED security level. Sectra's mobile VPN, for use up to and including the RESTRICTED security level, is a solution that was produced through a strategic partnership with Samsung.