App News, Articles and Updates

Fake Android AV app re-emerges

Armor for Android resurfaces as Android's Antivirus. A fake anti-virus app has re-emerged on Android devices, according to security researchers.

Iranians take to the streets to protest Telegram ban

Iran on Monday followed Russia's example by banning the popular messaging app Telegram citing the app's impact on national security and to help quell the protests that have recently swept through that nation.

Ikea's TaskRabbit investigating cyber-security incident

Ikea's freelance labour marketplace Task Rabbit temporarily shut down its app and website amid an investigation of a "cyber-security incident."

Intel urges users to delete remote keyboard app, halts Spectre fixes

Intel is instructing users of its remote keyboard to delete the app after a critical flaw was found and also the firm is halting Spectre fixes on older chips.

Malicious Android adware apps downloaded 500,000 times

Malicious actors managed to foil Google's Play Protect app vetting process and place numerous malicious apps into the store Sophos Labs by having them lay doggo before activating and bombarding the victim with unwanted ads.

Cryptomining 'Calendar 2' app removed from Apple Store

Apple pulled the popular Mac scheduling app "Calendar 2" amid controversy surrounding the apps buggy cryptomining feature.

App zero-day flaw exploited to fool users into malicious downloads

Attackers were found exploiting a zero-day Telegram app vulnerability in order to make the names and extensions of malicious files appear more legitimate, in hopes that users who received these files would more willingly open them.

MacUpdate hacked, cryptocurrency miner apps installed

A cyber-criminal managed to infiltrate the Mac app download site MacUpdate and install maliciously copies of the Firefox, OnyX, and Deeper applications that were in fact cryptocurrency miners.

Twitter spam app plaguing accounts

Cyber-criminals attempting to take advantage of Twitter users' curiosity over who visits their page are using a new form of bait that advertises the ability to track such visits.

GhostTeam adware seeks to steal Facebook credentials

Vietnamese adware dubbed "GhostTeam" was found hiding in 53 Google Play apps disguised as utility apps, device performance boosting apps, and social media downloaders.

AdultSwine malware helps porn ads and scams invade children's apps

Cyber-criminals have been spiking game apps, including several aimed at children, with malware that displays pornographic ads, pushes fake security apps, and registers users for premium services with permission.

Researchers: Security of messaging apps breaks down during group chats

Vulnerabilities in the group communication protocols of three encrypted messaging apps - WhatsApp, Signal, and Threema - could allow attackers to willfully subvert their integrity and confidentiality.

Android banking trojan targets more than 232 apps

Security researchers have found a new strain of malware targeting banking apps on Android devices.

Cloud-based docs the new frontier for phishing attacks

Ever on the lookout for a new avenue of attack, cyber-criminals have figured out a method of using Google App Scripts to automatically download malware hosted in Google drive to any computer.

Mobile credential-stealer uses deep link to mimic Uber app

A credentials-stealing malware program disguised as an Android app was recently found spoofing an Uber user interface, and even leveraging a deep link uniform resource identifier from the ride-sharing app to appear legitimate.

Security flaw puts 10 million banking app users at risk

Vulnerability could enable hackers to carry out MitM attacks on bank apps - 10 million users at risk

Smartphone QR code scanners pose new cyber-threat

Apple iOS 11, Apple has QR scanning functionality enabled by default which Elad Ben-Meir says can effectively make anyone scanning the QR code matrices with Apple devices vulnerable to unknowingly uploading malicious code.

Malian entrepreneurs develop public safety solutions in hackathon

The MotoSecure Hackathon Day, organised by Motorola Solutions and Impact Hub Bamako in Mali's capital city has helped develop several innovative civil protection initiatives.

No encryption in Magic Kinder app causes privacy concerns for kids

A lack of encryption in the Magic Kinder App for children has led to severe security and privacy issues.

13 Play Store apps infected with Brain Test malware

Google's Play Store has had to boot out several apps after they were found to be infected with 'Brain Test' malware.

Millions of smart TVs and remote control apps vulnerable

A new report from Trend Micro has suggested that 6.1 million apps for smart TVs and remote controls could be vulnerable to remote code execution attacks.

ICYMI: Windows deprecating SHA-1; Apps leaking data; Safe Harbour II; Auto-rooting adware; Apple Pay

In Case You Missed It: the most popular articles from the past seven days. Windows accelerates SHA-1 deprecation, Too many apps leaking personal data, Safe Harbour 2 coming soon, Apps auto-rooting Android devices, and Bank warning to Apple Pay users.

Police raid DroidJackers in international takedown

Users of the remote access trojan, DroidJack, have been raided by police in six countries as part of international investigation into Android spyware.

How insecure are app stores?

Google Bouncer beaten, Apple walled-garden breached, Candy Crush compromised

Security team finds additional Android vulnerability

An IBM security research team has uncovered an additional flaw in Android that can give a malicious app the ability to fully control a device.