Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Startup Privafy Raises $22M with New Approach to Network Security
The company today disclosed an approach to data security designed to protect against modern threats at a lower cost than complex network tools.
Mobile Banking Malware Up 50% in First Half of 2019
A new report from Check Point recaps the cybercrime trends, statistics, and vulnerabilities that defined the security landscape in 2019.
Active Directory Needs an Update: Here's Why
AD is still the single point of authentication for most companies that use Windows. But it has some shortcomings that should be addressed.
Google Lets iPhone Users Turn Device into Security Key
The iPhone can now be used in lieu of a physical security key as a means of protecting Google accounts.
Chinese Malware Found Preinstalled on US Government-Funded Phones
Researchers found unremovable malware preinstalled in the Unimax U686CL, a budget Android device sold by Assurance Wireless.
TikTok Bugs Put Users' Videos, Personal Data At Risk
Researchers found it was possible to spoof SMS messages from TikTok and exploit an API flaw that could grant access to users' personal data.
As Hackers Target Mobile Payment Apps, Here's How to Keep Them at Bay
A little vigilance helps retailers reduce and prevent three of the most common kinds of mobile app fraud
IoT Security: How Far We've Come, How Far We Have to Go
As organizations fear the proliferations of connected devices on enterprise networks, the private and public sector come together to address IoT vulnerabilities.
Android App Analysis Uncovers Seasonal Shopping Risk
Researchers scanned 4,200 Android apps and found many exhibit malicious behavior or have a dangerous level of permissions.
Younger Generations Drive Bulk of 2FA Adoption
Use of two-factor authentication has nearly doubled in the past two years , pointing to a new wave of acceptance.
What's in a Botnet? Researchers Spy on Geost Operators
The investigation of a major Android banking botnet yields insights about how cybercriminals structure and run an illicit business.
StrandHogg Vulnerability Affects All Versions of Android
The bug enables malware to pose as any legitimate Android app, letting attackers track messages, photos, credentials, and phone conversations.
New Free Emulator Challenges Apple's Control of iOS
An open-source tool gives researchers and jailbreakers a free option for researching vulnerabilities in the operating system — and gives Apple a new headache.
7 Ways to Hang Up on Voice Fraud
Criminals are coming at us from all direction, including our phones. Don't answer that next call without reading this tips first.
Tushu, Take Twoshu: Malicious SDK Reappears in Google Play
Months after the Tushu SDK was found infecting Android apps on Google Play, its operators are back with new evasive techniques.
They See You When You're Shopping: Holiday Cybercrime Starts Early
Researchers notice year-end phishing attacks starting in July and ramping up in September.
Google Increases Top Android Hacking Prize to $1M
Google expands its Android Security Rewards program and multiplies its top cash prize from $200,000 to $1 million.
Employee Privacy in a Mobile Workplace
Why businesses need guidelines for managing their employees' personal information -- without compromising on security.
Vulnerability Could Give Criminals Camera Control on Millions of Android Smartphones
Unauthorized activities could be triggered even if a phone is locked, its screen is turned off, or a person is in the middle of a call.
Facebook Discloses WhatsApp MP4 Video Vulnerability
A stack-based buffer overflow bug can be exploited by sending a specially crafted video file to a WhatsApp user.
Google Announces App Defense Alliance
The industry partnership will scan apps for malware before they're published on the Google Play Store.
Google Launches OpenTitan Project to Open Source Chip Security
OpenTitan is an open source collaboration among Google and technology companies to strengthen root-of-trust chip design.
US Lawmakers Fear Chinese-Owned TikTok Poses Security Risk
The popular video app has more than 110 million downloads in the United States and could give China access to users' personal data, they say.
40% of Security Pros Job Hunting as Satisfaction Drops
Symptoms of job dissatisfaction creep into an industry already plagued with gaps in diversity and work-life balance.
Apple Boots 17 Trojan-Laden Apps From Mobile Store
Malware was designed to carry out click-fraud, Wandera says.
Mobile Users Targeted With Malware, Tracked by Advertisers
Cybercriminals continue to seed app stores with malicious apps, advanced attackers successfully compromise mobile devices, and advertisers continue to track users, new reports show.
8 Tips for More Secure Mobile Computing
Mobile devices are a huge part of enterprise IT. Here's what to advise their users to do to keep their devices — and critical business data — best protected.
FIDO-Based Authentication Arrives for Smartwatches
The Nok Nok App SDK for Smart Watch is designed to let businesses implement FIDO-based authentication on smartwatches.
Schadenfreude Is a Bad Look & Other Observations About Recent Disclosures
The debate about whether Android or iOS is the more inherently secure platform misses the larger issues that both platforms are valuable targets and security today is no guarantee of security tomorrow.
USB Drive Security Still Lags
While USB drives are frequent pieces of business hardware, a new report says that one-third of US businesses have no policy governing their use.
How the Software-Defined Perimeter Is Redefining Access Control
In a world where traditional network boundaries no longer exist, VPNs are showing their age.
FBI Investigates Mobile Voting Intrusion
A group tried to access West Virginia's mobile voting app in 2018; now, the FBI is looking into what actually happened.
Android 0-Day Seen Exploited in the Wild
The local privilege escalation vulnerability affects Pixel, Samsung, Huawei, Xiaomi, and other devices.
Stalkerware on the Rise Globally
Stalkware is being installed on more and more victims' devices, and the trend is only accelerating, according to a new report.
Apple Patches Multiple Vulnerabilities Across Platforms
Updates address two separate issues in Apple's desktop and mobile operating systems.
7 Ways VPNs Can Turn from Ally to Threat
VPNs are critical pieces of the security infrastructure, but they can be vulnerable, hackable, and weaponized against you. Here are seven things to be aware of before you ignore your VPN.
Instagram Bug Put User Account Details, Phone Numbers at Risk
The vulnerability, now patched, is the latest in a series of bad news for Facebook.
New Privacy Features in iOS 13 Let Users Limit Location Tracking
Apple will introduce other features that allow more secure use of iPhones in workplace settings as well.
5G Standard to Get New Security Specifications
Researchers had recently demonstrated how attackers could intercept device capability information and use it against 5G mobile subscribers.
Android Phone Flaw Allows Attackers to Divert Email
Researchers find that a spoofing a service message from the phone carrier is simple and effective on some brands of Android smartphones.
@jack Got Hacked: Twitter CEO's Tweets Hijacked
Twitter CEO Jack Dorsey's Twitter account was, apparently, hijacked for roughly 20 minutes and used for a racist rant.
Google Announces New, Expanded Bounty Programs
The company is significantly expanding the bug-bounty program for Google Play and starting a program aimed at user data protection.
TrickBot Comes to Cellular Carriers
A new malicious campaign seeks cell account PINs from victims.
Malware Found in Android App with 100M Users
CamScanner, a legitimate app used to scan and manage documents, was found executing payloads on Android devices.
6 Ways Airlines and Hotels Can Keep Their Networks Secure
As recent news can attest, travel and hospitality companies are prime targets for cybercriminals. Here are six privacy and security tips that can help lock down privacy and security.
Apple Releases Emergency Patch for iPhone Jailbreak Flaw
iOS version 12.4.1 fixes the "use after free" vulnerability.
More Than Half of Social Media Login Attempts Are Fraud
Overall, account registrations for tech companies are four times more likely to be malicious than legitimate, a new report states.
SafeGuard Cyber Adds Security, Compliance Capabilities for WeChat
A lack of visibility into the app could expose business users to compliance risks and security threats, the company says.
'Box Shield' Brings New Security Controls
New controls and threat detection capabilities built into Box aim to prevent accidental data leakage and misuse.
Apple Misstep Leaves iPhones Open to Jailbreak
Newest version of iOS contains a critical bug that the company had previously already patched.
|
Latest Comment:
It's a PEN test of our cloud security.
IT 2020: A Look AheadAre you ready for the critical changes that will occur in 2020? We've compiled editor insights from the best of our network (Dark Reading, Data Center Knowledge, InformationWeek, ITPro Today and Network Computing) to deliver to you a look at the trends, technologies, and threats that are emerging in the coming year. Download it today!
How Enterprises are Attacking the Cybersecurity Problem
Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
Tweet This
7 Comments
