November 20, 2024 at 03:38PM A new threat actor, Liminal Panda, has been spying on mobile phones in Asia and Africa for over four years, targeting telecommunications networks to gather sensitive data for potential use by the Chinese state. The group’s tactics involve network-based attacks and exploiting telecommunications infrastructure for economic and political espionage. ### … Read more
November 19, 2024 at 03:38AM Apple’s iOS 18 introduces a security feature that reboots devices after 72 hours of inactivity, enhancing data protection by keeping files encrypted in Before First Unlock (BFU) mode. This reduces access risks for stolen devices, impacting both criminals and forensic analysts, while emphasizing the urgency for law enforcement data extraction. … Read more
November 13, 2024 at 01:07PM Google introduces two new features for Pixel devices: an AI-powered scam detection system that identifies potential scammers during calls and a real-time threat detection in Google Play Protect to alert users about unsafe apps. These features enhance Android security by analyzing conversations and scanning for harmful applications. ### Meeting Takeaways … Read more
November 12, 2024 at 05:07AM The latest iOS release includes a security feature that reboots locked devices that remain unlocked for extended periods, enhancing user data protection. Here are the key takeaways from the meeting notes: – A new feature in the latest iOS release is designed to enhance security. – This feature automatically reboots … Read more
November 8, 2024 at 01:17PM The CFPB has advised employees to avoid conducting work-related activities via mobile voice calls or text messages following concerns over cybersecurity, linked to the recent China ‘Salt Typhoon’ hack. This directive aims to enhance data security within the agency. **Meeting Takeaways:** 1. The US government’s Consumer Financial Protection Bureau (CFPB) … Read more
November 5, 2024 at 09:34AM Google’s November security updates fixed two actively exploited Android zero-day vulnerabilities, CVE-2024-43047 and CVE-2024-43093, among 51 flaws. The high-severity issues affect Qualcomm components and Android Framework, potentially linked to spyware attacks. Users are urged to update their devices for improved security, especially those running outdated versions. ### Meeting Takeaways: November … Read more
November 5, 2024 at 07:57AM A new Android banking malware, ToxicPanda, has infected over 1,500 devices, primarily in Italy. It conducts fraudulent transactions via account takeover and bypasses identity verification. The malware is believed to be linked to a Chinese threat actor and shares similarities with an earlier malware, TgToxic. It targets users through counterfeit … Read more
November 4, 2024 at 01:45AM Researchers have identified a new version of the Android malware FakeCall, which employs voice phishing to deceive users into sharing personal information. It gains control of devices, intercepts calls, and manipulates users into contacting fraudulent numbers. Enhanced security measures and Google’s initiatives aim to combat this sophisticated threat. ### Meeting … Read more
October 31, 2024 at 11:21AM Researchers have identified an advanced iOS spyware, LightSpy, which enhances its capabilities and includes destructive functions that can render infected devices unbootable. First discovered in 2020, it captures sensitive data and utilizes various plugins. Suspected to be operated by Chinese attackers, it exploits known security vulnerabilities in Apple’s systems. ### … Read more
October 28, 2024 at 12:06PM Apple will release iOS 18.1 on October 28, 2024, addressing multiple vulnerabilities affecting devices such as iPhone XS and later. Key issues include improved authentication for physical access vulnerabilities, better handling of symlinks, and enhanced input validation to prevent memory corruption and unauthorized access to sensitive data. ### Meeting Takeaways … Read more