March 1, 2024 at 01:09AM GitHub has announced the default activation of secret scanning push protection for all public repository pushes. This feature identifies over 200 token types from more than 180 service providers to prevent fraudulent use. The move comes as a response to ongoing “repo confusion” attacks targeting GitHub, aiming to thwart malicious … Read more
February 22, 2024 at 03:09PM The US government’s consumer protection agency is taking action against Avast for selling customer web browsing data. The Federal Trade Commission accused the company of collecting and selling data without consumer consent. Avast faces a $16.5 million fine and is ordered to stop selling browsing data. The data sold included … Read more
December 29, 2023 at 01:06AM Microsoft has disabled the ms-appinstaller protocol handler by default due to abuse by threat actors distributing malware. Malicious MSIX application packages are used to deliver ransomware via Microsoft Teams or fake advertisements. Multiple financially motivated hacking groups have exploited the App Installer service. This is not the first time Microsoft … Read more
November 9, 2023 at 01:08PM Android, with over 3 billion users, is a target for malware attacks. Anti-malware solutions like antivirus apps, firewalls, VPNs, and security patches are available but not foolproof against evolving threats. Evasion techniques and incremental malicious update attacks pose risks. Users should be cautious of downloads, keep devices and apps updated, … Read more
November 6, 2023 at 07:10AM A new cybercrime operation called ‘SecuriDropper’ is using a technique to bypass Android’s ‘Restricted Settings’ feature and install malware on devices. This allows the malware to access Accessibility Services and obtain sensitive information. The bypass method involves using session-based installation API for malicious APK files. The security issue is still … Read more
November 2, 2023 at 03:16PM The backdoor Trojan Kazuar has been enhanced to be more difficult to detect and can now operate covertly while evading analysis and malware protection tools. It has been used by the Russian-backed APT Pensive Ursa to target Ukraine’s defense sector. Kazuar has sophisticated commands and a command-and-control channel that allows … Read more
November 1, 2023 at 10:54AM LayerX has developed a secure browser extension to address the various risks and vulnerabilities associated with browsers in modern enterprises. The extension offers comprehensive visibility, continuous monitoring, and granular policy enforcement within the browsing session. It can detect and mitigate risks such as data leakage, malicious browser extensions, and unauthorized … Read more
October 12, 2023 at 05:49PM Appdome has released new threat evaluation tools within their ThreatScope Mobile XDR platform. These tools, including Threat-Inspect, Threat-Views, and Threat-Snapshots, enhance monitoring, investigation, and response to mobile app threats and attacks. The platform gathers threat signals and translates them into actionable views for cyber, fraud, and business teams. These evaluation … Read more