Author: Monique LaPlante

Maze Ransomware Adopts Ragnar Locker Virtual-Machine Approach

Maze continues to adopt tactics from rival cybercrime gangs. The operators of the Maze ransomware have added a fresh trick to their bag of badness: Distributing ransomware payloads via virtual…
Read more

TikTok Fixes Flaws That Opened Android App to Compromise

The flaws are disclosed as Oracle reportedly partners with TikTok as concerns in the U.S. over spying continue. Researchers have disclosed four high-severity flaws in the Android version of TikTok…
Read more

CDRThief Malware Targets VoIP Gear in Carrier Networks

The Linux-targeted code can steal phone-call metadata, likely in spy campaigns or for use in VoIP fraud. A malware dubbed CDRThief is targeting voice over IP (VoIP) softswitches inside the…
Read more

Spyware Labeled ‘TikTok Pro’ Exploits Fears of US Ban

Malware can take over common device functions as well as creates a phishing page to steal Facebook credentials. Researchers have discovered a new Android spyware campaign pushing a “Pro” version…
Read more

Cryptobugs Found in Numerous Google Play Store Apps

A new dynamic tool developed by Columbia University researchers flagged cryptography mistakes made in more than 300 popular Android apps. Researchers have discovered more than 300 apps on the Google…
Read more

CEOs Could Be Held Personally Liable for Cyberattacks that Kill

As IT systems, IoT and operational technology converge, attacks on cyber-physical systems in industrial, healthcare and other scenarios will come with dire consequences, Gartner predicts. A full 75 percent of…
Read more

WhatsApp Discloses 6 Bugs via Dedicated Security Site

The company committed to more transparency about app flaws, with an advisory page aimed at keeping the community better informed of security vulnerabilities. Facebook-owned WhatsApp has fixed six previously undisclosed…
Read more

NSA Mass Surveillance Program Illegal, U.S. Court Rules

The NSA argued its mass surveillance program stopped terrorist attacks – but a new U.S. court ruling found that this is not, and may have even been unconstitutional. A U.S.…
Read more

Joker Spyware Plagues More Google Play Apps

The six malicious apps have been removed from Google Play, but could still threaten 200,000 installs. Google has deleted six apps from its Google Play marketplace that were infecting users…
Read more

Pioneer Kitten APT Sells Corporate Network Access

The Iran-based APT has infiltrated multiple VPNs using open-source tools and known exploits. An APT group known as Pioneer Kitten, linked to Iran, has been spotted selling corporate-network credentials on…
Read more