SoumniBot malware exploits Android bugs to evade detection
Quick Bit: A new Android banking malware named ‘SoumniBot’ is using a less common obfuscation approach by exploiting weaknesses in the Android manifest extraction and parsing procedure.
Cerebral to pay $7 million settlement in Facebook pixel data leak case
Quick Bit: The U.S. Federal Trade Commission has reached a settlement with telehealth firm Cerebral in which the company will pay $7,000,000 over allegations of mishandling people’s sensitive health d
Open Source Leaders Warn of XZ Utils-Like Takeover Attempts
Quick Bit: Two open source organizations have revealed attempts to socially engineer project takeovers
FBI Warns of Massive Toll Services Smishing Scam
Quick Bit: The Feds have received thousands of complaints about phishing texts from fake road toll collection services
OpenTable won’t add first names, photos to old reviews after backlash
Quick Bit: OpenTable has reversed its decision to show members’ first names and profile pictures in past anonymous reviews after receiving backlash from members who felt it was a breach of privacy.
Ex-Security Engineer Jailed 3 Years for $12.3 Million Crypto Exchange Thefts
Quick Bit: Former security engineer sentenced to 3 years for stealing $12.3M from crypto exchanges using insider skills.
Microsoft now testing app ads in Windows 11’s Start menu
Quick Bit: Microsoft has started testing ads in the Windows 11 Start menu, a new experiment the company says will help users find new “great” apps in the Microsoft Store.
Iranian MuddyWater Hackers Adopt New C2 Tool ‘DarkBeatC2’ in Latest Campaign
Quick Bit: MuddyWater, linked to Iran’s MOIS, strikes again with DarkBeatC2. Our latest blog unpacks the latest tactics in cyber warfare.
Threat Actors Game GitHub Search to Spread Malware
Quick Bit: Checkmarx warns of GitHub search result manipulation designed to promote malicious repositories