Daily NCSC-FI news followup 2020-09-27

Google removes 17 Android apps doing WAP billing fraud from the Play Store

www.zdnet.com/article/google-removes-17-android-apps-doing-wap-billing-fraud-from-the-play-store/ The 17 apps were infected with the Joker (Bread) malware, which Google described in January 2020 as one of the most persistent threats it dealt with since 2017.

iOS 14: The Surprising Security Risk Of Sharing Your New iPhone Home Screen

www.forbes.com/sites/kateoflahertyuk/2020/09/27/ios-14-the-surprising-security-risk-of-sharing-your-new-iphone-home-screen/ But sharing your customized iPhone home screen far and wide isn’t actually a good ideasurprisingly, it can be a major security risk. This is because that screenshot of your iOS 14 home screen can give away a lot of information about you that could be of use to malicious hackers.

Alexa Gets New Privacy Controls All You Need To Know

www.forbes.com/sites/daveywinder/2020/09/27/amazon-alexa-all-you-need-to-know-about-unexpected-new-privacy-controls/ You can now configure Alexa so that none of your voice recordings are saved.

The Android 11 Privacy and Security Features You Should Know

www.wired.com/story/android-11-privacy-and-security-features/ Many of the updates to Google’s mobile OS are behind the scenesbut they can help you control your app permissions and keep your data safe.

Tyler Technologies warns clients to change remote support passwords

www.bleepingcomputer.com/news/security/tyler-technologies-warns-clients-to-change-remote-support-passwords/ Tyler Technologies is warning clients to change the passwords for the technology provider’s remote access accounts after suspicious logins have been reported.

Singapore urges need for international organisations to ‘reform’ in digital age

www.zdnet.com/article/singapore-urges-need-for-international-organisations-to-reform-in-digital-age/ Singapore’s Foreign Affairs Minister calls for the United Nations and World Trade Organisation to be reformed, so international rules are in line with cybersecurity and other key digital developments.

You might be interested in …

Daily NCSC-FI news followup 2019-08-16

New Bluetooth KNOB Attack Lets Attackers Manipulate Traffic www.bleepingcomputer.com/news/security/new-bluetooth-knob-attack-lets-attackers-manipulate-traffic/ A new Bluetooth vulnerability named “Key Negotiation Of Bluetooth attack” or “KNOB” has been disclosed that allow attackers to more easily brute force the encryption key used during pairing to monitor or manipulate the data transferred between two paired devices.. see also knobattack.com/ Ammottava aukko päästi […]

Read More

Daily NCSC-FI news followup 2021-07-25

Shortcomings With Financial Market Infrastructure Companies Business Continuity And Cybersecurity Plans Need To Be Resolved www.forbes.com/sites/mayrarodriguezvalladares/2021/07/25/shortcomings-with-financial-market-infrastructure-companies-business-continuity-and-cybersecurity-plans-need-to-be-resolved/ [A report released this week] shows that it is doubtful that [financial markets infrastructure companies] business continuity plans (BCPs) are designed to ensure that critical information technology (IT) systems can resume operations within two hours following disruptive events and […]

Read More

Daily NCSC-FI news followup 2019-08-28

Avast and French police take over malware botnet and disinfect 850,000 computers decoded.avast.io/janvojtesek/putting-an-end-to-retadup-a-malicious-worm-that-infected-hundreds-of-thousands/ Cybercrime: Ransomware attacks have more than doubled this year www.zdnet.com/article/cyber-crime-ransomware-attacks-have-more-than-doubled-this-year/ TrickBot Modifications Target U.S. Mobile Users www.secureworks.com/blog/trickbot-modifications-target-us-mobile-users TrickBot added functionality to solicit PIN codes from mobile customers, which could allow threat actors to access victims voice and text communications. WootCloud Discovers ARES […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.