Security Alerts & News
by Tymoteusz A. Góral

History
#1908 Virulent Android malware returns, gets >2 million downloads on Google Play
A virulent family of malware that infected more than 10 million Android devices last year has made a comeback, this time hiding inside Google Play apps that have been downloaded by as many as 12 million unsuspecting users.

HummingWhale, as the professionally developed malware has been dubbed, is a variant of HummingBad, the name given to a family of malicious apps researchers documented in July invading non-Google app markets. HummingBad attempted to override security protections by exploiting unpatched vulnerabilities that gave the malware root privileges in older versions of Android. Before Google shut it down, it installed more than 50,000 fraudulent apps each day, displayed 20 million malicious advertisements, and generated more than $300,000 per month in revenue. Of the 10 million people who downloaded HummingBad-contaminated apps, an estimated 286,000 of them were located in the US.
Read more
#1913 Firefox 51 arrives with warning for HTTP websites that collect passwords, WebGL 2 and FLAC support
#1912 Don't use Android pattern lock to protect secrets, researchers warn
#1911 Cisco patches critical flaw in WebEx Chrome plugin
#1910 Online security 101: Tips for protecting your privacy from hackers and spies
#1909 Apple patches critical kernel vulnerabilities
#1908 Virulent Android malware returns, gets >2 million downloads on Google Play
#1907 Widely used WebEx plugin for Chrome will execute attack code—patch now!
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12