“New malware with extensive spyware capabilities steals data from infected Android devices and is designed to automatically trigger whenever new info is read to be exfiltrated.”
Apple releases iPhone, iPad, Watch security patch for zero-day bug under active attack
“Apple has released an update for iPhones, iPads and Watches to patch a security vulnerability under active attack by hackers. The security update lands as iOS 14.4.2 and iPadOS 14.4.2, which also covers a patch to older devices as iOS 12.5.2. watchOS also updates to 7.3.3.”
WARNING: A New Android Zero-Day Vulnerability Is Under Active Attack
“Google has disclosed that a now-patched vulnerability affecting Android devices that use Qualcomm chipsets is being weaponized by attackers to launch targeted attacks. Tracked as CVE-2020-11261 (CVSS score 8.”
Nasty malware stealing Amazon, Facebook and Google passwords — protect yourself now
“We at Tom’s Guide have tried to stress over the years that if you want software, you should just buy it. It’s a lot cheaper than having all of your online credentials stolen. This information comes courtesy of Proofpoint, a security firm based in Sunnyvale, California.”
Nearly 40,000 Macs infected by mysterious malware, researchers say
“Mysterious malware — that has not yet engaged in malicious activity — has infected nearly 40,000 Mac devices, according to the cybersecurity firm Red Canary, which first detected the threat.”
LinkedIn phishing scam tries to fool you with fake document — what you need to know
“The scheme tries to trick unsuspecting users into opening up a “LinkedIn Private Shared Document,” after which they’re asked to enter their login credentials on a fake LinkedIn page.”
Google warns of ‘novel social engineering method’ used to hack security researchers
“Government-backed hackers based in North Korea are targeting individual security researchers through a number of means including a “novel social engineering method,” Google’s Threat Analysis Group is reporting.”
Signal CEO Moxie Marlinspike explains his vision for the app — and what he sees as the biggest threats to privacy
“Signal cofounder and CEO Moxie Marlinspike couldn’t have predicted the events of the past year — but they’ve nevertheless contributed to the app’s massive growth in popularity. The encrypted messaging app is best-known for its commitment to privacy.”
How Law Enforcement Gets Around Your Smartphone’s Encryption
“Lawmakers and law enforcement agencies around the world, including in the United States, have increasingly called for backdoors in the encryption schemes that protect your data, arguing that national security is at stake.”
For IT professionals: Privacy and security in Microsoft Teams
“Over the past week, there has been a lot written about video conferencing, privacy, and security. As an IT professional, you may be getting a lot of questions. We want to help.”