Infosecurity News

Two Vulnerabilities Found in Galaxy App Store
Both issues reportedly affected only Samsung devices running Android 12 and below

Most Federal Agencies Ignored GAO's Cybersecurity Recommendations
Out of the 335 public recommendations issued since 2010, 190 still needed to be implemented

Ad Fraud Scheme Tops 12 Billion Daily Bid Requests
Vastflux operation injected obfuscated JavaScript into ads

Riot Games Halts Work After Cyber-Attack
Compromise impacts developer's ability to release updates

New Government Cyber Advice for £100bn UK Charity Sector
NCSC report warns of surging threat to the third sector

WhatsApp Hit with €5.5m fine for GDPR Violations
The case raised disagreements between Ireland's DPC and the European Data Protection Board

"Workarounds" Helped Royal Mail Resume Shipping After Ransomware Attack
Thanks to technical “workarounds,” Royal Mail has been able to resume “limited” export services one week after being hit by cyber-attack

Phishers Use Blank Images to Disguise Malicious Attachments
Researchers see another sophisticated attempt to obfuscate links

API Attacker Steals Data on 37 Million T-Mobile Customers
Carrier says attack began in November 2022

Massive Credential Stuffing Campaign Hits 35,000 PayPal Users
Payments giant says attacks happened in early December

Roaming Mantis' Hacking Campaign Adds DNS Changer to Mobile App
The new feature can infiltrate WiFi routers and undertake DNS hijacking

ThreatModeler Makes DevSecOps More Accessible With New Marketplace
The store includes pre-built threat models that can be integrated into a development pipeline