Security researchers have discovered a dangerous Android vulnerability dubbed “StrandHogg” under active attack by dozens of malicious apps. To add, 500 of the most popular apps may also be vulnerable to the StrandHogg vulnerability.
Apple has released security updates for iOS, macOS, watchOS, Safari, iCloud, tvOS and iTunes.
Samsung confirmed a security issue in its Galaxy S10 and Galaxy Note 10 devices. Users have been reporting they can bypass the fingerprint reader by using a silicon screen protector.
A group of hackers have been using compromised websites to launch watering hole attacks against iPhone users who visit the websites. The attacks also use five different exploit chains and exploit 0-day vulnerabilities that don’t require any user interaction.
Apple released security updates and emergency patch for iOS and macOS (CVE-2019-8605). In all, the company released iOS 12.4.1, macOS Mohave 10.14.6, watchOS 5.3.1 and tvOS 12.4.1.
Apple released security updates that address vulnerabilities in multiple products, to include iOS, macOS, Safari, watchOS, tvOS and Apple TV Software. Additional mitigations for speculative execution vulnerabilities in Intel CPUs or “Spectre” were also included in the latest macOS update.
The Director of the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) issued a warning about recent Iranian cybersecurity threats. The statement also included suggested tips and best practices to stay safe online.
Attackers are targeting open Android Debug Bridge (ADB) ports running on Android devices to install cryptocurrency-mining botnet malware.
Apple has released AirPort Base Station Firmware Update 7.91 to address multiple vulnerabilities in AirPort Extreme and AirPort Time Capsule base station routers.