Malicious Apps Repeatedly Bypassed Apple App Notarization
Multiple apps containing malware repeatedly bypassed Apple's app notarization security scan in a recent wave. Apple revoked Developer ID. Bryan watch out!
Multiple apps containing malware repeatedly bypassed Apple's app notarization security scan in a recent wave. Apple revoked Developer ID. Bryan watch out!
A security researcher has discovered a vulnerability in Google’s Waze app that can allow hackers to identify people using the popular navigation app and track them by their location.
The Indian COVID-19 surveilance app belonged to the state UP and exposed data of 8 million people including sensitive PII and health records.
Check Point researchers disclosed details about a critical vulnerability in Instagram's Android app that could have allowed remote attackers to take control over a targeted device just by sending victims a specially crafted image.
England and Wales have finally released their COVID-19 contact tracing app for Android and iOS. Scotland and Northern Ireland independently released their own contact tracing apps.
Tracking allows the companies to improve their algorithm and app experience, but this experience comes at the cost of your digital data. In this guide, we're going to focus on the search engines and browsers that you'll want to use if you care about your online privacy.
Popular running and cycling app Strava exposes information on nearby strangers which has sparked privacy concerns among its users. Some fear this functionality can be abused for stalking and "predatory" motives.
Researchers have disclosed four high-severity flaws in the Android version of TikTok that could have easily been exploited by a seemingly benign third-party Android app. If successful, an attacker could fully compromise the target’s TikTok account. Public disclosure of the vulnerabilities was Friday and all bugs have been patched in version 17.4.4 of the app.
Researchers have discovered a new Android spyware campaign pushing a “Pro” version of the TikTok app that is exploiting fears among its young and gullible users that the popular social media app is on the cusp of being banned in the United States. The malware can take over basic device functions—such as capturing photos, reading and sending SMS messages, making calls and launching apps—as well as uses a phishing tactic to steal victims’ Facebook credentials.
The end-to-end encrypted messaging app Threema goes open source to strengthen its security. Also announced partering with Afinum AG.
Facebook-owned WhatsApp has fixed six previously undisclosed vulnerabilities in its chat platform, revealing the move on a new dedicated security advisory site aimed at informing its more than 2 million users about bugs and keeping them updated on app security.
A critical vulnerability in the popular Slack collaboration app would allow remote code-execution (RCE). Attackers could gain full remote control over the Slack desktop app with a successful exploit — and thus access to private channels, conversations, passwords, tokens and keys, and various functions.
Chrome 85 is a massive release with numerous features, including a QR code generator, AVIF image support, better protection from mixed content downloads, further securing of same-site cookies, and app shortcuts for PWAs.
IBM, the owner of the Weather Channel mobile app, has reached a settlement with the Los Angeles city attorney’s office after a 2019 lawsuit alleged that the app was deceiving its users in how it was using their geolocation data.
Hackers could hijack user accounts in dozens of fitness and gym mobile applications, even where the two-factor authentication (2FA) mechanism was active.
New research disclosed severe security vulnerabilities in 'Find My Mobile' (an Android app that comes pre-installed on most Samsung smartphones) that could have allowed remote attackers to track victims' real-time location, monitor phone calls, and messages, and even delete data stored on the phone.
Millions of Twitter users will be asked to update their Android app after the company found a security flaw. Twitter said the vulnerability could let other malicious apps access private information such as direct messages.
Attackers could have exploited various flaws in OkCupid's mobile app and webpage to steal victims' sensitive data and even send messages out from their profiles.
Microsoft's Family Safety app announced earlier this year has exited preview and is now live for Android and iOS users. The Android app is available today, and the iOS version should be live soon.
Facebook has begun rolling out additional security features for its dedicated chat application, Messenger, that will make it essentially impossible for anyone to read your conversations in the app -- even if you give someone your phone. Facebook describes this feature, called App Lock, as giving users "the confidence to know that if a friend or family member needs to borrow your phone, they won't be able to access your chats."
