Security News

Hackers with access to the Signaling System 7 used for connecting mobile networks across the world were able to gain access to Telegram messenger and email data of high-profile individuals in the cryptocurrency business. Hackers pulling an SS7 attack can intercept text messages and calls of a legitimate recipient by updating the location of their device as if it registered to a different network.

Learn how to use Apple's Privacy Report in Safari so you can see which websites attempted to track you on your iPhone or iPad. Cross-site trackers operate by tracking you as you surf from one website to another. By default, the mobile version of Safari on your iPhone and iPad tries to prevent cross-site trackers from following you.

Absolute announced the launch of its new Absolute Control mobile app, designed to help customers secure endpoint devices and protect sensitive data while on the go. The user-friendly app extends the power of the Absolute console, enabling IT and Security teams to easily locate lost or stolen devices, check the health of critical endpoint security agents, and take swift action to lock a device if it is determined to be at risk.

The new offerings extend the value of Masergy's Managed SD-WAN Secure solutions to the remote workforce, supporting their network connections with built-in security, dual-link redundancy, load balancing, and dynamic traffic steering capabilities. Businesses of all sizes use Masergy's SD-WAN to provide secure and reliable cloud application performance to office employees, and now their users at home or on the go have access to the same level of security and performance.

The current distributed remote work environment has also triggered a new threat landscape, with malicious actors increasingly targeting mobile devices with phishing attacks. Mobile Molly Works constantly on the go using a range of mobile devices, such as tablets and phones, and often relies on public WiFi networks for work.

The Password Checkup feature came first in the form of a Chrome extension, then was built into Google Account's password manager and Chrome, and now it has been enhanced with support for the ". Enhanced Safe Browsing mode, which was first introduced in Chrome 83, allows users to get a more personalized protection against malicious sites.

The approach is reminiscent of core Magecart group attacks, but in this case, the attack was the work of the Fullz House group, according to Malwarebytes, which is a Magecart splinter group that's mainly known for its phishing prowess. The group has been analyzed in the past, and gets its name from the use of carding sites to resell "Fullz," an underground slang term meaning a full set of an individual's personally identifying information plus financial data.

Hackers associated with the "Fullz House" group have compromised the website of Boom! Mobile and planted a web skimmer, Malwarebytes reports. The attack on Boom! Mobile, Malwarebytes reveals, involved the injection of one line of code containing a Base64 encoded URL designed to load a JavaScript library from a remote domain used in a previous attack.

Malicious mobile apps can pose a problem for any smartphone owner. A new series of malicious apps designed for both iOS and Android are being promoted by rogue TikTok accounts as a way to gain a wide audience.

WizCase experts have identified an unprotected Elasticsearch server that contained terabytes of data pertaining to users of Microsoft's Bing mobile application. White hat hacker Ata Hakcil, who identified the leak, was able to confirm that the Elasticsearch server belonged to Microsoft's Bing mobile app by installing the application and running a search for WizCase.