Hacking, Mobile and Technology - Cyber Security Informer

RSAC Fireside Chat: Deploying Hollywood-tested content protection to improve mobile app security

The Last Watchdog

MAY 18, 2023

Your go-to mobile apps aren’t nearly has hackproof as you might like to believe. Related: Fallout of T-Mobile hack Hackers of modest skill routinely bypass legacy security measures, even two-factor authentication, with techniques such as overlay attacks. And hard data shows instances of such breaches on the rise.

Mobile

Mobile Authentication Internet Internet

T-Mobile API Hack Affects Data of 37 Million Customers

SecureWorld News

JANUARY 20, 2023

T-Mobile announced on Thursday that a hacker accessed varying amounts of personal data from 37 million customers from late November 2022 until the malicious activity was detected on January 5th of this year. According to the mobile phone giant, the attacker accessed account information from postpaid and prepaid customers via one of its APIs.

Mobile

Mobile Hacking Data breaches Authentication

Account Hijacking Site OGUsers Hacked, Again

Krebs on Security

DECEMBER 2, 2020

For at least the third time in its existence, OGUsers — a forum overrun with people looking to buy, sell and trade access to compromised social media accounts — has been hacked. OGUsers was hacked at least twice previously, in May 2019 and again in March 2020. called Disco Payments. ”

Accountability

Accountability Hacking Scams Media

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

T-Mobile confirms servers were hacked, investigates data breach

Bleeping Computer

AUGUST 16, 2021

Mobile has confirmed that threat actors hacked their servers in a recent cyber attack but still investigate whether customer data was stolen. [.].

Mobile

Mobile Data breaches Hacking Cyber Attacks

Kyivstar, Ukraine’s largest mobile carrier brought down by a cyber attack

Security Affairs

DECEMBER 12, 2023

The Ukrainian telecommunications company provides communication services and data transmission based on a broad range of fixed and mobile technologies, including 4G (LTE) in Ukraine. The Kyivstar mobile network serves about 26 million mobile customers and more than 1 million broadband fixed internet customers in the country.

Cyber Attacks

Cyber Attacks Mobile Telecommunications Internet

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

The Last Watchdog

AUGUST 19, 2021

At the start of this week, word got out that hackers claimed to have seized personal data for as many as 100 million T-Mobile patrons. Related: Kaseya hack worsens supply chain risk. According to the attackers, this was a configuration issue on an access point T-Mobile used for testing. This was not a sophisticated attack.

Mobile

Mobile Data breaches Authentication Accountability

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

The Last Watchdog

APRIL 7, 2020

Zoosk’s core service is delivered via a mobile app that has 20 different registration and/or login pages – all are API driven. Thus, it was well worth it for a hacking group to study Zoosk’s IT stack to reconnoiter its weak points. They can take the next step and execute a hack, which can include harvesting account credentials.

Mobile

Mobile Digital transformation Scams Accountability

Android mobile devices from top vendors in China have pre-installed malware

Security Affairs

FEBRUARY 9, 2023

Researchers reported that the top-of-the-line Android mobile devices sold in China are shipped with malware. The smartphones analyzed by the r researchers were observed sending data to the device vendor and the Chinese mobile network operators (e.g., ” reads the paper published by the experts.

Mobile

Mobile Malware Surveillance Spyware

BlackMatter ransomware gang hit Technology giant Olympus

Security Affairs

SEPTEMBER 13, 2021

Technology giant Olympus announced it was the victim of a ransomware attack and is currently investigating the extent of the incident. “Upon detection of suspicious activity, we immediately mobilized a specialized response team including forensics experts, and we are currently working with the highest priority to resolve this issue.

Technology

Technology Ransomware Computers and Electronics Cybercrime

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

USDoD told KrebsOnSecurity their phony application was submitted in November in the CEO’s name, and that the application included a contact email address that they controlled — but also the CEO’s real mobile phone number. “I wasn’t expected to be approve[d].”

Hacking

Hacking Energy and Utilities Cybercrime Accountability

Exclusive: The largest mobile malware marketplace identified by Resecurity in the Dark Web

Security Affairs

DECEMBER 5, 2022

Resecurity has identified a new underground marketplace in the Dark Web oriented towards mobile malware developers and operators. Later, cybercriminals successfully applied the same approach to mobile devices, because modern digital payments are extremely interconnected when it comes to mobile applications used by consumers. .

Mobile

Mobile Malware Banking Retail

Russian cybercrime forums launch contests for cryptocurrency hacks

Security Affairs

JUNE 7, 2021

Cybercriminals in Russian underground forums have been invited to take part in competitions for hacking cryptocurrency and NFT. Several Russian underground forums have launched competitions for hacking cryptocurrency schema and Non-fungible token (NFT). SecurityAffairs – hacking, cryptocurrency hack). Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Cybercrime Hacking Technology

STEPS FORWARD: How the Middle East led the U.S. to adopt smarter mobile security rules

The Last Watchdog

APRIL 13, 2020

When it comes to securing mobile computing devices, the big challenge businesses have long grappled with is how to protect company assets while at the same time respecting an individual’s privacy. Reacting to the BYOD craze , mobile security frameworks have veered from one partially effective approach to the next over the past decade.

Mobile

Mobile Computers and Electronics Encryption Data privacy

China Says U.S. Hacking Huawei Since 2009

SecureWorld News

SEPTEMBER 28, 2023

In a tale as old as the computer, China has once again pointed fingers at the United States, accusing it of hacking into one of its technology companies. RELATED: 8 Steps Huawei Took to Steal IP from T-Mobile and Cover It Up ] The timing of these accusations holds significant weight, as both China and the U.S.

Hacking

Hacking Artificial Intelligence Telecommunications Cyber Attacks

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

Security Boulevard

SEPTEMBER 27, 2021

Assessing the risks involved in using the latest technology is something our culture had to adopt in the early days of the computer. New technologies come with risks — there’s no denying that. Related: How Russia uses mobile apps to … (more…).

Hacking

Hacking Cybersecurity Mobile Technology

T-Mobile Hacker Identified, China’s New Privacy Law, Tesla Bot Announcement

Security Boulevard

AUGUST 29, 2021

A 21-year-old Virginia native living in Turkey is allegedly behind the massive T-Mobile hack, China adopts a new national privacy law, and is Elon Musk’s Tesla Bot just creepy or is it the beginning of “useful AI” that people love and is “unequivocally good”. ** Links mentioned on the show ** 21-year-old tells WSJ he […].

Mobile

Mobile Hacking Data breaches Technology

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

The Last Watchdog

SEPTEMBER 27, 2021

Assessing the risks involved in using the latest technology is something our culture had to adopt in the early days of the computer. New technologies come with risks — there’s no denying that. Related: How Russia uses mobile apps to radicalize U.S. The Creeper Virus (1971).

Cybersecurity

Cybersecurity Hacking Identity Theft Technology

T-Mobile Confirms Data Breach, Says Too Early to Assess Damage

eSecurity Planet

AUGUST 17, 2021

T-Mobile USA officials have confirmed they are investigating a breach of company systems, but say it’s too early to tell whether the personal data of 100 million customers has been exposed, as the alleged hackers have claimed. The attackers had access to the T-Mobile systems for two to three weeks before access was shut down Aug.

Data breaches

Data breaches Mobile Artificial Intelligence Identity Theft

T-Mobile: Leaky API Exposes Data on 37 Million

The Security Ledger

JANUARY 20, 2023

Telecommunications giant T-Mobile disclosed on Thursday that hackers obtained data on 37 million customers through a vulnerable API (application program interface). The post T-Mobile: Leaky API Exposes Data on 37 Million appeared first on The. The disclosure was included in an 8-K filing with the U.S. Read the whole entry. »

Mobile

Mobile Telecommunications Technology Data breaches

'Darcula' Phishing Service Unleashes Sophisticated Smishing Attacks

SecureWorld News

APRIL 1, 2024

A new Phishing-as-a-Service (PhaaS) threat called "darcula" is taking advantage of encrypted mobile messaging services to unleash a wave of sophisticated smishing attacks targeting organizations across more than 100 countries. Mobile devices tend to have weaker security compared to desktop systems, making them an attractive target vector."

Phishing

Phishing Mobile Encryption Technology

US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Security Boulevard

FEBRUARY 27, 2024

The post US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My! Pay no attention to that man: State Dept. Global Engagement Centre chief James Rubin (pictured) follows the yellow brick road. appeared first on Security Boulevard.

Hacking

Hacking Social Engineering Data privacy Engineering

Details of SANS Holiday Hack Challenge 2021

CyberSecurity Insiders

DECEMBER 14, 2021

SANS Holiday Hack Challenge 2021 is back to help Santa Claus defeat cyber villains like Jack Frost to save the holiday season from a digital disaster. SANS Holiday Hack Challenge 2020 witnessed the participation of over 19,000 players and this year it’s expected to double up, as the event is being held online.

Hacking

Hacking Penetration Testing Social Engineering Mobile

SurfingAttack – hacking phones via ultrasonic waves

Security Affairs

MARCH 2, 2020

SurfingAttack is an attacking technique that allows to wake up mobile device and control them using voice commands encoded in ultrasonic waves. SurfingAttack is a hacking technique that sees voice commands encoded in ultrasonic waves silently activate a mobile phone’s digital assistant. ” reported The Register.

Hacking

Hacking Mobile Advertising Engineering

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

Security Affairs

JUNE 15, 2020

Security vulnerabilities in modern communication protocol GTP used by mobile network operators can be exploited by attackers to target 4G/5G users. “The GTP protocol contains a number of vulnerabilities threatening both mobile operators and their clients. SecurityAffairs – hacking, 5G). Pierluigi Paganini.

Mobile

Mobile Internet Internet Wireless

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Security Affairs

JUNE 16, 2020

Wireless carrier T-Mobile suffered a major outage in the United States, that impacted service at other carriers, due to a “massive” DDoS attack. Wireless carrier T-Mobile suffered a massive DDoS attack that caused a major outage in the United States that impacted service at other carriers due to a “massive” DDoS attack.

DDOS

DDOS Mobile Wireless Advertising

HackerGPT 2.0 Unveils New AI Cyber Defense Strategies

eSecurity Planet

MARCH 15, 2024

HackerGPT, first launched in 2023, is a ChatGPT-powered tool that merges AI technology with cybersecurity-focused expertise. in February 2024, it serves as an extensive repository of hacking tools and techniques to actively assist users in managing complex cybersecurity protection strategies. Launch of HackerGPT 2.0

Mobile

Mobile Hacking Education Cybersecurity

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Krebs on Security

SEPTEMBER 4, 2018

Less than a week ago, security researcher Nitish Shah directed KrebsOnSecurity to an open database on the Web that allowed anyone to query up-to-the-minute mSpy records for both customer transactions at mSpy’s site and for mobile phone data collected by mSpy’s software. The database required no authentication.

Spyware

Spyware Mobile Advertising Software

Asian media firm E27 hacked, attackers asked for a “donation”

Security Affairs

JUNE 28, 2020

Asian media firm E27 has been hacked by a hacking group identifying themselves as “Korean Hackers” and “Team Johnwick”that asked for a “donation” to provide information on the vulnerabilities they have exploited in the attack. SecurityAffairs – hacking, E27). Pierluigi Paganini.

Media

Media Hacking Passwords Data breaches

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. technology companies during the summer of 2022. Multiple security firms soon assigned the hacking group the nickname “ Scattered Spider.” 9, 2024, U.S.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

Zero-day exploit used to hack iPhones of Al Jazeera employees

Security Affairs

DECEMBER 21, 2020

Tens of Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones. Researchers from Citizen Lab reported that at least 36 Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones.

Hacking

Hacking Surveillance Spyware Government

NIST Tests Forensic Methods for Getting Data From Damaged Mobile Phones

Security Affairs

JANUARY 31, 2020

Crooks sometimes damage their mobile devices to destroy evidence, NIST tests forensic methods for getting data from damaged mobile phones. Criminals sometimes damage their mobile phones in an attempt to destroy evidence. These include hacking tools, albeit ones that may be lawfully used as part of a criminal investigation. .

Mobile

Mobile Manufacturing Media Advertising

SimJacker attack allows hacking any phone with just an SMS

Security Affairs

SEPTEMBER 12, 2019

Cybersecurity researchers at AdaptiveMobile Security disclosed a critical vulnerability in SIM cards dubbed SimJacker that could be exploited by remote attackers to compromise targeted mobile phones and spy on victims just by sending an SMS. “ Simjacker represents a clear danger to the mobile operators and subscribers.

Hacking

Hacking Mobile Spyware Manufacturing

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Security Boulevard

NOVEMBER 5, 2023

Finally, we discuss Google Play Protect’s new feature, “Real-time App Analysis,” which […] The post Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning appeared first on Shared Security Podcast.

Phishing

Phishing Hacking Data breaches Data privacy

Russian zero-day broker is willing to pay $20M for zero-day exploits for iPhones and Android devices

Security Affairs

SEPTEMBER 27, 2023

A Russian zero-day broker is willing to pay $20 million for zero-day exploits for iPhones and Android mobile devices. The Russian zero-day broker firm Operation Zero is increasing payouts for top-tier mobile exploits. Due to high demand on the market, we're increasing payouts for top-tier mobile exploits.

Mobile

Mobile Surveillance Marketing Hacking

MyEstatePoint Property Search Android app leaks user passwords

Security Affairs

JANUARY 5, 2024

The app, developed by NJ Technologies, an India-based software developer, has over half a million downloads on the Google Play store and mainly serves the Indian market. We reached out to NJ Technologies for comment but have yet to receive a reply. However, the instance has been closed off since.

Passwords

Passwords Identity Theft Mobile Technology

How to hack Wincor Cineo ATMs to bypass black-box attack protections and withdraw cash

Security Affairs

NOVEMBER 1, 2021

Researchers demonstrated how crooks could hack Diebold Nixdorf’s Wincor Cineo ATMs to bypass black-box attack protections and withdraw cash. In this attack, a black-box device, such as a mobile device or a Raspberry, is physically connected to the ATM and is used by the attackers to send commands to the machine. score of 6.8.

Hacking

Hacking Firmware Encryption Manufacturing

Details of the Cloud Hopper Attacks

Schneier on Security

JULY 10, 2019

The hacking campaign, known as "Cloud Hopper," was the subject of a U.S. Yet the campaign ensnared at least six more major technology firms, touching five of the world's 10 biggest tech service providers. Waves of hacking victims emanate from those six plus HPE and IBM: their clients. It was much bigger than originally reported.

Identity Theft

Identity Theft Mobile Hacking Technology

Why is ‘Juice Jacking’ Suddenly Back in the News?

Krebs on Security

APRIL 14, 2023

KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about “ juice jacking ,” a term first coined here in 2011 to describe a potential threat of data theft when one plugs their mobile device into a public charging kiosk.

Mobile

Mobile Software Backups Technology

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

Security Affairs

JANUARY 5, 2024

The Sandworm group (aka BlackEnergy , UAC-0082 , Iron Viking , Voodoo Bear , and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST). All mobile communications and internet access were temporarily interrupted.

Mobile

Mobile Telecommunications Cyber Attacks Internet

Over 1 Billion Individual Data Leaked Due to Alleged Chinese Police Database Hacking

Hacker Combat

JULY 8, 2022

Last week, a user going by the handle “ChinaDan” posted a message on Breach Forums (an online hacking forum in China) offering to sell about 24 terabytes of data, which also includes the data of 1 billion people allegedly stolen from Shanghai police. The data was to be sold for 10 Bitcoin, translating to 200,000 USD.

Hacking

Hacking Telecommunications Mobile Government

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

Security Affairs

MAY 22, 2024

OmniVision Technologies is a company that specializes in developing advanced digital imaging solutions. OmniVision Technologies Inc. OmniVision Technologies Inc. In early January, the Cactus ransomware group claimed to have hacked Coop, one of the largest retail and grocery providers in Sweden.

Data breaches

Data breaches Ransomware Manufacturing Encryption

Hacking iPhone or MacBook devices by tricking into visiting a site

Security Affairs

APRIL 3, 2020

Bad news for Apple iPhone or MacBook users, attackers could hack their device’s camera by tricking them into visiting a website. The ethical hacker Ryan Pickren demonstrated that it is possible to hack Apple iPhone or MacBook users by simply tricking them into visiting a website with the Safari browser. Pierluigi Paganini.

Hacking

Hacking Passwords Advertising Mobile

A job ad published by the UK’s Ministry of Defence revealed a secret hacking squad

Security Affairs

AUGUST 15, 2021

A job ad published by the UK’s Ministry of Defence has revealed the existence of a previously undisclosed secret SAS mobile hacker team. The job ad refers to the MAB5 as “a small military unit that specialises in the provision of novel and ground-breaking science and technology prototypes for operational requirements.”

Computers and Electronics

Computers and Electronics Hacking Engineering Mobile

Recently a large chunk of European mobile traffic was rerouted through China Telecom

Security Affairs

JUNE 8, 2019

On June 6, for more than two hours China Telecom re-routed through its infrastructure a large chunk of European mobile traffic. Now a new case sees the involvement of China Telecom, on June 6, for more than two hours a large chunk of European mobile traffic was rerouted through the infrastructure of ISP. Pierluigi Paganini.

Mobile

Mobile Internet Internet Telecommunications

RSAC Fireside Chat: Deploying Hollywood-tested content protection to improve mobile app security

T-Mobile API Hack Affects Data of 37 Million Customers

Webinars

Trending Sources

Account Hijacking Site OGUsers Hacked, Again

Webinars

T-Mobile confirms servers were hacked, investigates data breach

Kyivstar, Ukraine’s largest mobile carrier brought down by a cyber attack

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

Android mobile devices from top vendors in China have pre-installed malware

BlackMatter ransomware gang hit Technology giant Olympus

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Exclusive: The largest mobile malware marketplace identified by Resecurity in the Dark Web

Russian cybercrime forums launch contests for cryptocurrency hacks

STEPS FORWARD: How the Middle East led the U.S. to adopt smarter mobile security rules

China Says U.S. Hacking Huawei Since 2009

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

T-Mobile Hacker Identified, China’s New Privacy Law, Tesla Bot Announcement

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

T-Mobile Confirms Data Breach, Says Too Early to Assess Damage

T-Mobile: Leaky API Exposes Data on 37 Million

'Darcula' Phishing Service Unleashes Sophisticated Smishing Attacks

US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Details of SANS Holiday Hack Challenge 2021

SurfingAttack – hacking phones via ultrasonic waves

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

HackerGPT 2.0 Unveils New AI Cyber Defense Strategies

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Asian media firm E27 hacked, attackers asked for a “donation”

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Zero-day exploit used to hack iPhones of Al Jazeera employees

NIST Tests Forensic Methods for Getting Data From Damaged Mobile Phones

SimJacker attack allows hacking any phone with just an SMS

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Russian zero-day broker is willing to pay $20M for zero-day exploits for iPhones and Android devices

MyEstatePoint Property Search Android app leaks user passwords

How to hack Wincor Cineo ATMs to bypass black-box attack protections and withdraw cash

Details of the Cloud Hopper Attacks

Why is ‘Juice Jacking’ Suddenly Back in the News?

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

Over 1 Billion Individual Data Leaked Due to Alleged Chinese Police Database Hacking

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

Hacking iPhone or MacBook devices by tricking into visiting a site

A job ad published by the UK’s Ministry of Defence revealed a secret hacking squad

Recently a large chunk of European mobile traffic was rerouted through China Telecom

Stay Connected