Cybercrime
The hacker who recently breached the systems of Israel-based mobile forensics company Cellebrite leaked some tools on Thursday and promised to dump more of...
Hi, what are you looking for?
SecurityWeek
Mobile & Wireless
The vulnerability exploited by the Usbliter8 exploit cannot be patched and a PoC exploit has been released by researchers.
Malware & Threats
The Android malware allows its operators to take control of infected devices and harvest sensitive information.
Mobile & Wireless
A simple development setting bypassed protections designed to prevent unauthorized Android apps from accessing Microsoft account tokens, exposing billions of installations.
Mobile & Wireless
Google says the Android vulnerability CVE-2025-48595 has been exploited in limited, targeted attacks.
Mobile & Wireless
Zimperium Launches Exploit Acquisition Program for Android and iOS N-Days, But No Interest in 0-Days
Compliance
VMware has released updates for some of its AirWatch Android applications to address a couple of important vulnerabilities related to local data encryption and...
Management & Strategy
Google has awarded researchers more than $9 million since the launch of its bug bounty program in 2010, including over $3 million paid out...
Application Security
Researchers have analyzed hundreds of virtual private network (VPN) applications for Android and determined that many of them introduce serious privacy and security risks.
Malware & Threats
A recently spotted fake Netflix app is in fact installing a Remote Access Trojan (RAT) variant onto the victims’ devices, Zscaler security researchers have...
Malware & Threats
A newly discovered piece of Android ransomware embedded in apps available on Google Play threatens to sell a victim's personal data on the black...
Cybercrime
The source code of Android banking Trojan BankBot, along with instructions on how to use it, recently emerged on a hacker forum, Doctor Web...
Mobile & Wireless
A newly discovered variant of the HummingBad Android malware has been downloaded millions of times after infecting 20 applications in Google Play, Check Point security...
Mobile & Wireless
A security vulnerability that allowed a privileged attacker to arbitrary write values within kernel space lurked in Nexus 9’s kernel for two years before...
Application Security
Some third-party applications unnecessarily store keys or secrets that could be abused to leak a variety of user credentials and other type of sensitive...
Mobile & Wireless
Less than two weeks after the Marcher Trojan was found masquerading as the unreleased Super Mario Run game for Android, the infamous DroidJack RAT...
Audits
St. Jude Medical has released security updates to patch some of the flaws discovered by MedSec in its cardiac devices, but the manufacturer insists...
Mobile & Wireless
A vulnerability recently addressed in Google’s January 2017 Android security bulletin was a denial of service (DoS) flaw in the bootloader, which could be...
Malware & Threats
The Android Marcher Trojan was recently observed masquerading as the recently released Super Mario Run mobile game for Apple’s iOS, Zscaler security researchers warn.
Compliance
The U.S. Federal Trade Commission (FTC) has filed a lawsuit against Taiwan-based networking equipment provider D-Link, accusing the company of making deceptive claims about...
Management & Strategy
Networking equipment provider Netgear announced on Thursday the launch of a bug bounty program focusing on the company’s products, particularly routers, security cameras and...
Mobile & Wireless
Released on Tuesday, Google’s first Android Security Bulletin for 2017 patches a total of 95 vulnerabilities in the operating system, 22 of which were...
Malware & Threats
Researchers at Kaspersky Lab have come across a new Android Trojan that hacks routers and changes their DNS settings in an effort to redirect...
Today’s attackers are no longer breaking in — they’re logging in. Join this live webinar as we break down the modern identity attack chain and examine how recent breaches exploited weaknesses in authentication, identity verification, and access management processes.
RegisterAI has accelerated both sides of the fight. Adversaries are weaponizing vulnerabilities faster, while defenders are racing to ship detections and configurations. Join this live webinar as we explore how to prove your controls actually hold against new threats, map your security maturity, and unite breach simulation with automated pentesting into a single, coordinated program.
RegisterExpert Insights
Groups like ShinyHunters are demonstrating that attackers do not necessarily need malware or zero-day exploits to cause massive damage.
(Torsten George)
Four decades of incident response experience suggest that exploits are often the symptom, not the root cause, of today’s cybersecurity failures.
(Tod Beardsley)
Security teams need more than visibility into AI applications, they need a repeatable framework for monitoring, investigating, and defending them in production.
(Joshua Goldfarb)
AI-driven development is not something organizations can or should block. But it must be governed.
(Danelle Au)
AI can help attackers generate malware, create malicious payloads, bypass simple security checks, and convert vague malicious intent into functional code.
(Etay Maor)