Security Alerts & News
by Tymoteusz A. Góral

#1616 Mobile applications leak device, location data
Both Android and iOS apps leak data, leaving users vulnerable to data theft, denial-of-service attacks, and remote SIM card rooting.

In a report released Thursday “Are mobile apps a leaky tap in the enterprise?” researchers at Zscaler assert that Android and iOS users are equally vulnerable to a wide range of mobile security threats tied to mobile apps.

According to the report, enterprises are challenged by both a growing number of BYOD devices invading the workplace along with users downloading risky apps from third-party sources. In its study of 45 million transactions during a three-month period, Zscaler identified privacy leakage as the most serious problem with too many apps sending metadata, location and personal identifiable information to the developer’s server or an ad server. The report calls on companies to enforce stricter mobile device management programs to protect users and network assets.
Read more
#1617 FruityArmor APT group used recently patched Windows zero-day
#1616 Mobile applications leak device, location data
#1615 This ransomware is now one of the three most common malware threats
#1614 Locky ransomware learns new evasive tricks
#1613 3.2 million debit cards compromised; SBI, HDFC Bank, ICICI, YES Bank and Axis worst hit
#1612 Weebly confirms hack; millions of Foursquare accounts also exposed
#1611 The Reign of Ransomware (PDF)
#1610 Cisco ASA software identity firewall feature buffer overflow vulnerability
#1609 “Most serious” Linux privilege-escalation bug ever is under active exploit
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12