Information Security, Internet and Mobile

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

Security Affairs

JUNE 15, 2020

Security vulnerabilities in modern communication protocol GTP used by mobile network operators can be exploited by attackers to target 4G/5G users. “The GTP protocol contains a number of vulnerabilities threatening both mobile operators and their clients. ” reads the report published by the experts.

Mobile

Mobile Internet Internet Wireless

Kyivstar, Ukraine’s largest mobile carrier brought down by a cyber attack

Security Affairs

DECEMBER 12, 2023

The Ukrainian telecommunications company provides communication services and data transmission based on a broad range of fixed and mobile technologies, including 4G (LTE) in Ukraine. The Kyivstar mobile network serves about 26 million mobile customers and more than 1 million broadband fixed internet customers in the country.

Cyber Attacks

Cyber Attacks Mobile Telecommunications Internet

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Security Affairs

MARCH 28, 2022

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure. On March 29, 2022, a massive cyber attack caused a major internet disruption across Ukraine on national provider Ukrtelecom. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Internet

Internet Internet Mobile Cyber Attacks

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

Californian IT company DNA Micro leaks private mobile phone data

Security Affairs

OCTOBER 18, 2023

Once the instance is exposed to the internet – without being secured by authentication – it’s accessible to anyone. IMEI is a unique number assigned to each mobile device and is used to identify a device on a mobile network. If that happens, it can cause disruptions to the mobile service of the device.

Mobile

Mobile Phishing Manufacturing Risk

Internet disruption in Russia coincided with the introduction of restrictions

Security Affairs

MARCH 12, 2021

Experts at the NetBlocks Internet Observatory observed this week a temporary disruption of internet service in Russia due to new restrictions. On Wednesday 10 March 2021, researchers from Network data from the NetBlocks Internet Observatory observed the disruption of internet service provided by the Russian operator Rostelecom.

Internet

Internet Internet Mobile Hacking

At least 4,460 vulnerable Pulse Connect Secure hosts are exposed to the Internet

Security Affairs

DECEMBER 10, 2022

Censys researchers warn of more than 4,000 vulnerable Pulse Connect Secure hosts exposed to the Internet. Pulse Connect Secure is a widely-deployed SSL VPN solution for remote and mobile users, for this reason, it is a target of attacks by multiple threat actors. ” reads the post published by Censys.

Internet

Internet Internet VPN Mobile

Two students uncovered a flaw that allows to use laundry machines for free

Security Affairs

MAY 20, 2024

Two students discovered a security flaw in over a million internet-connected laundry machines that could allow laundry for free. They manage and operate many internet-connected laundry machines and systems, offering services such as coin and card-operated laundry machines, mobile payment solutions, and maintenance support.

Mobile

Mobile Internet Internet Accountability

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Security Affairs

JUNE 16, 2020

Wireless carrier T-Mobile suffered a major outage in the United States, that impacted service at other carriers, due to a “massive” DDoS attack. Wireless carrier T-Mobile suffered a massive DDoS attack that caused a major outage in the United States that impacted service at other carriers due to a “massive” DDoS attack.

DDOS

DDOS Mobile Wireless Advertising

Iran – Government blocks Internet access in response to the protests

Security Affairs

NOVEMBER 24, 2019

Iran – After the announcement of the government to cut fuel subsidies, protests erupted in the country and the authorities blocked Internet access. Initially, mobile networks stopped working in large areas of the country, the government blocked any access to the Internet. SecurityAffairs – Iran, Internet access).

Internet

Internet Internet Government Small Business

Recently a large chunk of European mobile traffic was rerouted through China Telecom

Security Affairs

JUNE 8, 2019

On June 6, for more than two hours China Telecom re-routed through its infrastructure a large chunk of European mobile traffic. In November security researchers Chris C. Demchak and Yuval Shavitt published a paper that detailed how China Telecom has been misdirecting Internet traffic through China over the past years.

Mobile

Mobile Internet Internet Telecommunications

Malware found pre-installed in cheap push-button mobile phones sold in Russia

Security Affairs

SEPTEMBER 6, 2021

Security researcher ValdikSS found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores. A Russian security researcher that goes online with the name of ValdikSS has found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores.

Mobile

Mobile Malware Firmware Manufacturing

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. ” reads the report published by Google. Follow me on Twitter: @securityaffairs and Facebook.

Surveillance

Surveillance Mobile Spyware Telecommunications

Hijacking nearby Firefox mobile browsers via WiFi by exploiting a bug

Security Affairs

SEPTEMBER 19, 2020

The SSDP protocol is based on the Internet protocol suite for advertisement and discovery of network services and presence information. The flaw was discovered the security researcher by Chris Moberly from GitLab. . The vulnerability resides in the implementation of Simple Service Discovery Protocol in Firefox.

Mobile

Mobile Advertising Engineering Phishing

This service allows checking if your mobile is included in the Facebook leak

Security Affairs

APRIL 6, 2021

Security researcher implemented a service to verify if your mobile number is included in the recent Facebook data leak. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. ” Alosefer explained. ” added the expert. ” added the expert. Pierluigi Paganini.

Mobile

Mobile Data breaches Accountability Phishing

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. SocksEscort[.]com com , is what’s known as a “SOCKS Proxy” service.

Malware

Malware VPN Internet Internet

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

Security Affairs

JANUARY 5, 2024

The Ukrainian telecommunications company provides communication services and data transmission based on a broad range of fixed and mobile technologies, including 4G (LTE) in Ukraine. The Kyivstar mobile network serves about 26 million mobile customers and more than 1 million broadband fixed internet customers in the country.

Mobile

Mobile Telecommunications Cyber Attacks Internet

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. has been associated with accounts at the mobile app site aptoide.com (user: CoolappsforAndroid) and vimeworld.ru

Scams

Scams DDOS Cryptocurrency Accountability

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs

FEBRUARY 8, 2024

how are they connected to the Internet (hint: they aren't, they are… [link] — Robᵉʳᵗ Graham ? ErrataRob) February 7, 2024 Several experts explained that electric toothbrushes have no direct connections to the internet, they relies on Bluetooth to connect to mobile apps. what was the brand of toothbrushes?

DDOS

DDOS IoT Media Internet

Fake Coronavirus Finder spread Ginp Mobile Banker

Security Affairs

MARCH 25, 2020

Security experts have spotted a new COVID-themed campaign aimed at distributing the Ginp Mobile Banker with “Coronavirus Finder” lure. Use a reliable security solution. For example, Kaspersky Internet Security for Android is quite aware of Ginp and detects it as Tojan-Banker.AndroidOS.Ginp.

Mobile

Mobile Banking Malware Passwords

U.S. CISA warns of actively exploited Ivanti EPMM flaw CVE-2023-35082

Security Affairs

JANUARY 19, 2024

At the end of July, Ivanti disclosed a security vulnerability impacting Endpoint Manager Mobile (EPMM), tracked as CVE-2023-35078 (CVSS score: 7.8), that was exploited in the wild as part of an exploit chain by threat actors. and below). and below). Ivanti addressed the vulnerability with the release of the MobileIron Core 11.3

Mobile

Mobile Internet Internet Hacking

CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

JULY 26, 2023

US CISA added actively exploited Ivanti ‘s Endpoint Manager Mobile (EPMM) vulnerability to its Known Exploited Vulnerabilities catalog. The vulnerability is an authentication bypass issue impacting Ivanti Endpoint Manager Mobile (EPMM) mobile device management software (formerly MobileIron Core).

Mobile

Mobile Authentication Internet Internet

Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware

The Security Ledger

AUGUST 1, 2019

Also: Adam Meyers of CrowdStrike joins us to talk about that company's first ever report on mobile malware, which is. Also: Adam Meyers of CrowdStrike joins us to talk about that company’s first ever report on mobile malware, which is gaining currency with advanced persistent threat (APT) groups. Read the whole entry. »

Mobile

Mobile Malware Insurance Cyber Risk

Android app with over 5m downloads leaked user browsing history

Security Affairs

DECEMBER 8, 2022

The Android app Web Explorer – Fast Internet left an open instance, exposing a trove of sensitive data that malicious actors could use to check specific users’ browsing history. Firebase is a mobile application development platform that offers many features, including analytics, hosting, and real-time cloud storage.

Internet

Internet Internet Mobile Authentication

NASA identified 1,785 cyber incidents in 2020

Security Affairs

MAY 27, 2021

The audit conducted by NASA’s inspector general revealed that the agency has more than 4,400 applications, over 15,000 mobile devices, roughly 13,000 software licenses, nearly 50,000 computers, and a 39,000 Tb of data. NASA lacked an Agency-wide risk management framework for information security and an information security architecture.

Information Security

Information Security Cyber Attacks Mobile Architecture

GUEST ESSAY: The case for using augmented reality (AR) and virtual reality (VR) to boost training

The Last Watchdog

JANUARY 9, 2024

Common examples of AR applications include the Pokemon Go mobile game and Snapchat filters. Everyone in the company is responsible for maintaining information security and applying protective measures in line with established policies. Potential drawbacks While AR and VR have their advantages, there are also disadvantages.

Technology

Technology Cybersecurity Risk Mobile

Utopia P2P Messenger Update Brings Most Awaited Features

Hackology

DECEMBER 11, 2023

Are you tired of messaging apps that compromise your privacy and security? Look no further than Utopia P2P Messenger Mobile App! Utopia includes a personal AI assistant called ChatGPT, available 24/7 for answering questions and providing information. It’s the ultimate solution for all your messaging needs.

Mobile

Mobile Encryption Architecture Cryptocurrency

SHARED INTEL: From airbags to malware: vehicle cyber safety arises in the age of connected cars

The Last Watchdog

MAY 15, 2023

Funso Richard , Information Security Officer at Ensemble , highlighted the gravity of these threats. More recently, Sultan Qasim Khan, a principal security adviser with a UK-based security firm, tricked a Tesla into thinking the driver was inside by rerouting communication between the automaker’s mobile app and the car.

Malware

Malware Manufacturing IoT Software

Ivanti fixed a new critical Sentry API authentication bypass flaw

Security Affairs

AUGUST 21, 2023

While the issue has a high CVSS score, there is a low risk of exploitation for customers who do not expose port 8443 to the internet.” Ivanti recommends that customers restrict access to MICS to internal management networks and not expose this to the internet.” ” reads the advisory published by the company.

Authentication

Authentication Internet Internet Mobile

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

The Federal Bureau of Investigation (FBI) observed an escalation in SIM swap attacks aimed at stealing millions from the victims by hijacking their mobile phone numbers. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Mobile

Mobile Cryptocurrency Authentication Accountability

Check Point released hotfix for actively exploited VPN zero-day

Security Affairs

MAY 29, 2024

On May 28, the experts discovered how attackers were targeing its customers and released a fix for Check Point Network Security gateways. “The vulnerability potentially allows an attacker to read certain information on Internet-connected Gateways with remote access VPN or mobile access enabled.

VPN

VPN Authentication Passwords Accountability

79,400 MyRepublic Customers Affected by Major Data Breach

Heimadal Security

SEPTEMBER 10, 2021

Singapore-based mobile operator and Internet service provider MyRepublic revealed today that the personal information of almost 79,400 mobile subscribers was potentially accessed by threat actors, making it the latest incident in a string of cyberattacks in recent months. What Happened?

Data breaches

Data breaches Mobile Internet Internet

The Rise of Passkeys

Duo's Security Blog

FEBRUARY 13, 2024

Background This problem really came to a head when the internet rapidly grew from a government project to a major medium for electronic commercial transactions. Thanks to the application of advanced math and science, Public Key Cryptography was used to develop a means of securing ecommerce over the internet.

eCommerce

eCommerce Authentication Encryption Passwords

Belgium telecom operators Proximus and Orange drop Huawei

Security Affairs

OCTOBER 10, 2020

Orange Belgium is using Huawei equipment since 2007 for its mobile network in Belgium and Luxembourg, while the collaboration between Proximus and the Shenzhen-based company started in 2009 for the progressive upgrading of its network. Proximus and Orange’s Belgian branch signed an agreement in 2019 to share their mobile network.

Mobile

Mobile Manufacturing Wireless Internet

OWASP discloses a data breach

Security Affairs

APRIL 1, 2024

OWASP has already removed your information from the Internet, so no immediate action on your part is required. Nothing needs to be done if the information at risk is outdated. . “ I think I am affected. What do I need to do? ” concludes the notification.

Data breaches

Data breaches Mobile Software Media

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Security is also necessary if your retrieval system (such as a website or mobile app) has a paywall or is restricted to only a subset of people, such as customers or resellers. What about public information? percent of CMS users worry about the security of their CMS—while 46.4

Data breaches

Data breaches Encryption Mobile Technology

The AI Attack Surface Map v1.0

Daniel Miessler

MAY 15, 2023

We’re about to make the same mistakes that we made when we went from offline to internet. And then internet to mobile. And then mobile to cloud. If you thought no-code was going to be bad for security, imagine no-code powered by AI! But yay for security. And now AI. And not just writing and art.

Technology

Technology Internet Internet Mobile

Analysis of the 2021 Verizon Data Breach Report (DBIR)

Daniel Miessler

MAY 19, 2021

Top asseet varieties: web application (server), email (server), desktop or laptop (user dev), mobile phone (user dev). Interesting to see mobile phone in there. Even the median random organization with an internet presence has 17 internet-facing assets. It’s number 4, and behind desktop/laptop, but not by much.

Data breaches

Data breaches Social Engineering Ransomware Phishing

Baseband RCE flaws in Samsung’s Exynos chipsets expose devices to remote hack

Security Affairs

MARCH 16, 2023

The researchers discovered a total of eighteen vulnerabilities, the four most severe of these flaws (CVE-2023-24033 and three other vulnerabilities that have yet to be assigned CVE-IDs) allowed for Internet-to-baseband remote code execution. An attacker only needs to know the victim’s phone number to exploit these vulnerabilities.

Hacking

Hacking Mobile Internet Internet

Beginning 2023 Google plans to rollout the initial Privacy Sandbox Beta

Security Affairs

NOVEMBER 16, 2022

Google announced it will roll out the Privacy Sandbox for Android in beta to mobile devices running Android 13 starting early next year. “Beginning early next year we plan to rollout the initial Privacy Sandbox Beta to Android 13 mobile devices, so that developers can take the next steps in testing these new solutions.

Mobile

Mobile Technology Internet Internet

A new Linux version of TargetCompany ransomware targets VMware ESXi environments

Security Affairs

JUNE 6, 2024

. “The IP address used to deliver the payload and exfiltrate a victim’s system information has not yet been observed in previous TargetCompany campaigns. Based on research, this IP address is hosted by China Mobile Communications, an internet service provider (ISP) in China.”

Ransomware

Ransomware Encryption Backups Malware

9 Possible Ways Hackers Can Use Public Wi-Fi to Steal Your Sensitive Data

Security Affairs

FEBRUARY 12, 2024

If you’re unsure, avoid entering sensitive information or use a privacy screen to block prying eyes. DNS Spoofing DNS (Domain Name System) is like the internet’s phone book, translating domain names into IP addresses. Use a VPN to encrypt your internet traffic and avoid connecting to unfamiliar Wi-Fi networks.

DNS

DNS VPN Encryption Passwords

Experts devise an exploit for Apple iOS 16 that relies on fake Airplane Mode

Security Affairs

AUGUST 17, 2023

In reality, the researchers plant an artificial Airplane Mode that modifies the UI to display Airplane Mode icons and cuts internet connection to all apps except the rogue attacker’s application. Using this trick, the attacker can maintain access to the mobile phone even when the user believes it is offline.

Internet

Internet Internet Mobile Hacking

Hackers abusing the Ngrok platform phishing attacks

Security Affairs

FEBRUARY 16, 2021

Researchers at the threat intelligence firm Cyble discovered a new wave of phishing attacks targeting multiple organizations that are abusing the ngrok platform, a secure and introspectable tunnel to the localhost. Users of ngrok and other tunnelling services are advised to obtain authorization from their information security teams.

Phishing

Phishing Cybercrime Mobile Internet

A flaw in Xiaomi phones using MediaTek Chips could allow to forge transactions

Security Affairs

AUGUST 14, 2022

Flaws in Xiaomi Redmi Note 9T and Redmi Note 11 models could be exploited to disable the mobile payment mechanism and even forge transactions. Trusted execution environment (TEE) is an important component of mobile devices designed to process and store sensitive security information such as cryptographic keys and fingerprints.

Mobile

Mobile Marketing Hacking Internet

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

Kyivstar, Ukraine’s largest mobile carrier brought down by a cyber attack

Webinars

Trending Sources

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Webinars

Californian IT company DNA Micro leaks private mobile phone data

Internet disruption in Russia coincided with the introduction of restrictions

At least 4,460 vulnerable Pulse Connect Secure hosts are exposed to the Internet

Two students uncovered a flaw that allows to use laundry machines for free

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Iran – Government blocks Internet access in response to the protests

Recently a large chunk of European mobile traffic was rerouted through China Telecom

Malware found pre-installed in cheap push-button mobile phones sold in Russia

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Hijacking nearby Firefox mobile browsers via WiFi by exploiting a bug

This service allows checking if your mobile is included in the Facebook leak

Who and What is Behind the Malware Proxy Service SocksEscort?

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

Interview With a Crypto Scam Investment Spammer

Unraveling the truth behind the DDoS attack from electric toothbrushes

Fake Coronavirus Finder spread Ginp Mobile Banker

U.S. CISA warns of actively exploited Ivanti EPMM flaw CVE-2023-35082

CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalog

Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware

Android app with over 5m downloads leaked user browsing history

NASA identified 1,785 cyber incidents in 2020

GUEST ESSAY: The case for using augmented reality (AR) and virtual reality (VR) to boost training

Utopia P2P Messenger Update Brings Most Awaited Features

SHARED INTEL: From airbags to malware: vehicle cyber safety arises in the age of connected cars

Ivanti fixed a new critical Sentry API authentication bypass flaw

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Check Point released hotfix for actively exploited VPN zero-day

79,400 MyRepublic Customers Affected by Major Data Breach

The Rise of Passkeys

Belgium telecom operators Proximus and Orange drop Huawei

OWASP discloses a data breach

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The AI Attack Surface Map v1.0

Analysis of the 2021 Verizon Data Breach Report (DBIR)

Baseband RCE flaws in Samsung’s Exynos chipsets expose devices to remote hack

Beginning 2023 Google plans to rollout the initial Privacy Sandbox Beta

A new Linux version of TargetCompany ransomware targets VMware ESXi environments

9 Possible Ways Hackers Can Use Public Wi-Fi to Steal Your Sensitive Data

Experts devise an exploit for Apple iOS 16 that relies on fake Airplane Mode

Hackers abusing the Ngrok platform phishing attacks

A flaw in Xiaomi phones using MediaTek Chips could allow to forge transactions

Stay Connected