What are MFA fatigue attacks and how can they be prevented?
Google, Apple Remove ‘Scylla’ Mobile Ad Fraud Apps After 13 Million Downloads
Cybersecurity firm Human has discovered and disrupted a mobile ad fraud campaign involving 89 mobile applications with a total download count of 13 million.
Senators Push to Reform Police’s Cellphone Tracking Tools
Civil rights lawyers and Democratic senators are pushing for legislation that would limit U.S. law enforcement agencies’ ability to buy cellphone tracking tools to follow people’s whereabouts, including back years in time, and sometimes without a search warrant.
CrowdStrike to Buy Reposify, Invests in Salt Security
Endpoint detection and response pioneer CrowdStrike is elbowing its way into new security markets with a planned acquisition of attack surface management startup Reposify and a strategic investment in API security vendor Salt Security.
Uber Confirms Hacker Accessed Internal Tools, Bug Bounty Dashboard
Ride-hailing giant Uber is moving quickly to downplay the impact from a devastating security breach that included the theft of employee credentials, access to the HackerOne bug bounty dashboard and data from an internal invoicing tool.
US Agencies Publish Security Guidance on Implementing Open RAN Architecture
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have published guidance on implementing an Open Radio Access Network (RAN) architecture.
novoShield Emerges From Stealth With Mobile Phishing Protection App
Mobile phishing protection startup novoShield has emerged from stealth mode with an enterprise-grade iPhone protection application.
The new solution, novoShield says, was designed to protect both end-users and businesses from the increasing number of phishing attacks.
iOS 16 Rolls Out With Passwordless Authentication, Spyware Protection
Apple this week has started rolling out iOS 16 with several security and privacy improvements meant to keep users protected from malware, state-sponsored attackers, and an abusive spouse.
Apple Warns of macOS Kernel Zero-Day Exploitation
Apple’s security response engine revved into high gear Monday with patches for security defects in a wide range of products, including fixes for a pair of critical macOS kernel vulnerabilities already being exploited in the wild.
Google Patches Critical Vulnerabilities in Pixel Phones
Google’s September 2022 security update for Pixel devices addresses two critical vulnerabilities. A total of 46 other security flaws were resolved in the Android platform this month.