Mobile & Wireless
Spain's government on Tuesday sacked the country's spy chief as part of a widening scandal over the hacking of the mobile phones of the...
Hi, what are you looking for?
SecurityWeek
Malware & Threats
The Android malware allows its operators to take control of infected devices and harvest sensitive information.
Mobile & Wireless
A simple development setting bypassed protections designed to prevent unauthorized Android apps from accessing Microsoft account tokens, exposing billions of installations.
Mobile & Wireless
Google says the Android vulnerability CVE-2025-48595 has been exploited in limited, targeted attacks.
Malware & Threats
Delivered via phishing lures, the malware combines financial theft with data exfiltration and remote access.
Application Security
Code hosting platform GitHub on Wednesday said it would make it mandatory for software developers to use at least one form of two-factor authentication (2FA) by...
Application Security
National security memo warns that quantum computing could jeopardize civilian and military communications, and defeat security protocols for most Internet-based financial transactions
Mobile & Wireless
Google this week announced the release of patches for 36 vulnerabilities as part of its May 2022 security updates for Android, including one that...
Cloud Security
Security researchers at Mandiant are documenting the discovery of a new hacking group focused on cyberespionage targeting employees responsible for corporate development, large corporate...
Mobile & Wireless
Google has taken another step toward enabling new privacy-focused advertising solutions on Android, with the release of Privacy Sandbox in developer preview.
Mobile & Wireless
In an effort to improve the security of its mobile operating system, Google has temporarily increased the bug bounty payouts for vulnerabilities identified in...
Mobile & Wireless
Spanish officials said Monday that the cellphones of the prime minister and the defense minister were infected last year with Pegasus spyware that is...
Application Security
Fleet, an endpoint visibility technology vendor with open-source roots, has attracted $20 million in new funding at a valuation in the range of $100...
Application Security
Google claims that it prevented 1.2 million bad applications from reaching Google Play in 2021, but cybercriminals are still finding ways to deliver malware...
Application Security
Enveil, an early-stage startup tackling the 'holy grail' of data encryption, has banked another $25 million in funding as investors continue to pour money...
Application Security
Source Defense, a provider of web application client-side protection, says it pocketed $27 million in Series B funding, bringing the total investment raised by...
Mobile & Wireless
An open source audio codec developed by Apple is affected by serious vulnerabilities that have been pushed to millions of Android devices by some...
Application Security
Google and Mandiant separately called attention to a dramatic surge in the discovery of in-the-wild zero-day attacks and warned that nation-state APT actors, ransomware...
Application Security
Security researchers have found fresh evidence linking a pair of mercenary Israeli hacking companies to mobile malware attacks on members of Catalan civil society.
Application Security
Cisco's enterprise-facing Webex video conferencing and messaging utility monitors the microphone at all times, even when the user's microphone is muted in the software,...
Mobile & Wireless
Apple head Tim Cook attacked moves to regulate his company's App Store in a rare speech in Washington on Tuesday, arguing that new rules...
Application Security
Adobe's security update engine revved into overdrive this month with the release of patches for at least 78 documented software vulnerabilities, some serious enough...
Application Security
Scope Security has announced the sudden passing of its founder and CEO Mike Murray, a longtime practitioner and executive who was deeply embedded in...
Today’s attackers are no longer breaking in — they’re logging in. Join this live webinar as we break down the modern identity attack chain and examine how recent breaches exploited weaknesses in authentication, identity verification, and access management processes.
RegisterAI has accelerated both sides of the fight. Adversaries are weaponizing vulnerabilities faster, while defenders are racing to ship detections and configurations. Join this live webinar as we explore how to prove your controls actually hold against new threats, map your security maturity, and unite breach simulation with automated pentesting into a single, coordinated program.
RegisterExpert Insights
Four decades of incident response experience suggest that exploits are often the symptom, not the root cause, of today’s cybersecurity failures.
(Tod Beardsley)
Security teams need more than visibility into AI applications, they need a repeatable framework for monitoring, investigating, and defending them in production.
(Joshua Goldfarb)
AI-driven development is not something organizations can or should block. But it must be governed.
(Danelle Au)
AI can help attackers generate malware, create malicious payloads, bypass simple security checks, and convert vague malicious intent into functional code.
(Etay Maor)
CISOs are now facing machine-speed attacks and asking, “How do I agent?” The industry must provide remediation at scale.
(Nadir Izrael)