Google has introduced the Mobile Vulnerability Rewards Program (Mobile VRP), a new bug bounty initiative aimed at incentivizing security researchers to uncover vulnerabilities in the company’s Android applications. The program offers monetary rewards to bughunters who can find and help fix weaknesses in Google-developed or maintained first-party Android apps. In [...]
As we all are aware the major cybersecurity firm FireEye has been hacked, confirmed by the CEO Kevin Mandia in a blog post on Tuesday. One of the largest cybersecurity companies in the US, FireEye is investigating the cyberattacks in collaboration with Microsoft and the FBI is also working on ...
A new variant of the InterPlanetary Storm malware has been discovered, which comes with fresh detection-evasion tactics and now targets Mac and Android devices (in addition to Windows and Linux, which were targeted by previous variants of the malware). Researchers say, the malware is building a botnet with a current ...
A hacking group which was notorious in 2017, has recently been found impersonating legitimate messaging apps such as Telegram and Threema to infect Android devices with a new malware. “Compared to the versions documented in 2017, Android/SpyC23.A has extended spying functionality, including reading notifications from messaging apps, call recording and ...
The cybercriminal group has plagued firms with ransomware that were sent via spear phishing emails with COVID-19 lures, since March. A new cybercriminal group called OldGremlin has been targeting Russian companies – including banks, industrial enterprises and medical firms with ransomware attacks. OldGremlin relies on a group of tools, including ...
According to the report, Check Point researchers disclosed details about a critical vulnerability in Instagram’s Android app that could have allowed remote attackers to take control over a targeted device just by sending victims a specially crafted image. The most worrisome thing about this flaw is that it not only lets attackers ...
Amnesty International today exposed details of a new surveillance campaign that targeted Egyptian civil society organizations with previously undisclosed versions of FinSpy spyware designed to target Linux and macOS systems. Developed by a German company, FinSpy is extremely powerful spying software that is being sold as a legal law enforcement tool ...
Microsoft’s long-lived operating system Windows XP—that still powers over 1% of all laptops and desktop computers worldwide—has had its source code leaked online, allegedly, along with Windows Server 2003. The source code for Microsoft’s 19-year-old operating system was published as a torrent file on notorious bulletin board website 4chan, and ...
Default configurations of Fortinet’s FortiGate VPN appliance could open organizations to man-in-the-middle (MitM) attacks, according to researchers, where threat actors could intercept important data. According to the SAM IoT Security Lab, the FortiGate SSL-VPN client only verifies that the certificate used for client authentication was issued by Fortinet or another ...
Google has introduced the Mobile Vulnerability Rewards Program (Mobile VRP), a new bug bounty initiative aimed at incentivizing security researchers to uncover vulnerabilities in the company’s Android applications. The program offers monetary rewards to bughunters who can find and help fix weaknesses in Google-developed or maintained first-party Android apps. In [...]
