Malicious Apps Caught Secretly Turning Android Phones into Proxies for Cybercriminals

/in

Several malicious Android apps that turn mobile devices running the operating system into residential proxies (RESIPs) for other threat actors have been observed on the Google Play Store.
The findings come from HUMAN’s Satori Threat Intelligence team, which said the cluster of VPN apps came fitted with a Golang library that transformed the user’s device into a proxy node without their knowledge.

The Hacker News – ​Read More

Israeli LGBTQ Dating App Atraf Faces Data Leak, 700,000 Users Affected

/in

Atraf, a popular Israeli LGBTQ dating app, has suffered a major data breach exposing the personal information of over half a million users. Leaked data includes cleartext passwords and payment card data.

Cyware News – Latest Cyber News – ​Read More

Report: 17 Billion Personal Records Exposed in Data Breaches in 2023

/in

Reported data breach incidents rose by 34.5% in 2023, with over 17 billion personal records compromised throughout the year, according to Flashpoint’s 2024 Global Threat Intelligence Report.

Cyware News – Latest Cyber News – ​Read More

KuCoin Charged with AML Violations That Let Cybercriminals Launder Billions

/in

In an indictment, the Department of Justice claimed that KuCoin knowingly allowed U.S.-based users to trade on its platform while fulfilling none of its AML obligations, as defined by U.S. laws and regulations.

Cyware News – Latest Cyber News – ​Read More

Pentagon Lays Out Strategy to Improve Defense Industrial Base Cybersecurity

/in

The strategy, which covers fiscal years 2024 through 2027, lays out four topline goals, such as improving best practices within the industrial base. Each goal contains a subset of objectives, such as being able to recover from a cyberattack.

Cyware News – Latest Cyber News – ​Read More

NIST Unveils New Consortium to Operate the NVD

/in

It’s now official: the US National Institute of Standards and Technology (NIST) will hand over some aspects of the management of the world’s most widely used software vulnerability repository to an industry consortium.

Cyware News – Latest Cyber News – ​Read More

Researchers Dissect Infostealer Malware Targeting macOS Users

/in

The ongoing infostealer attacks targeting macOS users may have adopted different methods to compromise victims’ Macs, but operate with the end goal of stealing sensitive data, Jamf Threat Labs said in a report published Friday.

Cyware News – Latest Cyber News – ​Read More

Update: AT&T Confirms Data for 73 Million Customers Leaked on Hacker Forum

/in

While the company continues to say there is no indication their systems were breached, it has now confirmed that the leaked data belongs to 73 million current and former customers.

Cyware News – Latest Cyber News – ​Read More

Vultur Android Banking Trojan Returns with Upgraded Remote Control Capabilities

/in

The Android banking trojan known as Vultur has resurfaced with a suite of new features and improved anti-analysis and detection evasion techniques, enabling its operators to remotely interact with a mobile device and harvest sensitive data.
“Vultur has also started masquerading more of its malicious activity by encrypting its C2 communication, using multiple encrypted payloads that are decrypted

The Hacker News – ​Read More

A Ghost Ship’s Doomed Journey Through the Gate of Tears

/in

Millions lost internet service after three cables in the Red Sea were damaged. Houthi rebels deny targeting the cables, but their missile attack on a cargo ship, left adrift for months, is likely to blame.

Security Latest – ​Read More