Identity & Access
Weak security measures in place at several major wireless carriers in the United States make it easy for attackers to perform SIM swap attacks...
Hi, what are you looking for?
SecurityWeek
Mobile & Wireless
A simple development setting bypassed protections designed to prevent unauthorized Android apps from accessing Microsoft account tokens, exposing billions of installations.
Mobile & Wireless
Google says the Android vulnerability CVE-2025-48595 has been exploited in limited, targeted attacks.
Malware & Threats
Delivered via phishing lures, the malware combines financial theft with data exfiltration and remote access.
Mobile & Wireless
The tech giant has also ported the patch for a recent deleted chats recovery issue to older versions of iOS.
Management & Strategy
A bill introduced this week by Senator Tom Cotton (R-Arkansas) would ban the sharing of intelligence with countries that use Huawei technologies in their...
Mobile & Wireless
[Update] Pre-installed malware on Android phones is a growing menace -- so much that on Wednesday this week, Privacy International and around 50 other...
Data Protection
The FBI asked Apple this week to help extract data from iPhones that belonged to the Saudi aviation student who investigators say fatally shot...
Mobile & Wireless
Google on Monday published the first Android security bulletin for 2020, with patches for 40 vulnerabilities, including a critical flaw in the Media framework.
Malware & Threats
A malicious application in the Google Play store targeted a recently patched zero-day vulnerability that affects multiple Android devices, including Google’s Pixel phones.
Compliance
The popular UAE-developed mobile application ToTok has returned to the Google Play Store after it was removed on claims it was being used for...
Compliance
Apple has filed an amended complaint in the lawsuit against Corellium and the virtualization company has responded by claiming that the tech giant is...
Mobile & Wireless
Multiple critical vulnerabilities in Ruckus Wi-Fi routers used throughout the world were disclosed at the 36th Chaos Communication Congress (CCC) in Leipzig, Germany, held...
Mobile & Wireless
A vulnerability in the Twitter application for Android could have been exploited by hackers to obtain sensitive information or take control of accounts.
Management & Strategy
Messaging platform WhatsApp this week announced plans to take legal action against individuals and companies that abuse the platform for bulk messaging.
Mobile & Wireless
One of the vulnerabilities addressed this week by Apple can be exploited to make iPhones and iPads unusable by getting them to continuously display...
Data Protection
Chinese tech giant Huawei is asking a U.S. federal court to throw out a rule that bars rural phone carriers from using government money...
Mobile & Wireless
One of the vulnerabilities Google addressed in Android with the December 2019 set of monthly patches is a critical vulnerability that could result in...
Application Security
Google has shared some data on the adoption of Transport Layer Security (TLS) by Android applications and it seems that significant progress has been...
Cybercrime
Norwegian app security company Promon on Monday disclosed the existence of a vulnerability that has been exploited by tens of malicious Android apps, and...
Data Protection
Twitter and Facebook this week took action against malicious mobile software development kits (SDKs) that were used to improperly access user data.
Malware & Threats
A recently discovered Android banking Trojan that features a narrow target list and two-step overlays is capable of stealing both login credentials and credit...
Mobile & Wireless
Trend Micro security researchers have discovered thousands of Android applications impacted by the GIF processing vulnerability that was patched recently in WhatsApp.
Compliance
U.S. communications regulators have cut off government funding for equipment from two Chinese companies, citing security threats.
Today’s attackers are no longer breaking in — they’re logging in. Join this live webinar as we break down the modern identity attack chain and examine how recent breaches exploited weaknesses in authentication, identity verification, and access management processes.
RegisterAI has accelerated both sides of the fight. Adversaries are weaponizing vulnerabilities faster, while defenders are racing to ship detections and configurations. Join this live webinar as we explore how to prove your controls actually hold against new threats, map your security maturity, and unite breach simulation with automated pentesting into a single, coordinated program.
RegisterExpert Insights
Security teams need more than visibility into AI applications, they need a repeatable framework for monitoring, investigating, and defending them in production.
(Joshua Goldfarb)
AI-driven development is not something organizations can or should block. But it must be governed.
(Danelle Au)
AI can help attackers generate malware, create malicious payloads, bypass simple security checks, and convert vague malicious intent into functional code.
(Etay Maor)
CISOs are now facing machine-speed attacks and asking, “How do I agent?” The industry must provide remediation at scale.
(Nadir Izrael)
As enterprises rush AI projects into production, security teams are increasingly being forced into reactive mode.
(Joshua Goldfarb)