Unofficial WhatsApp Android app caught stealing users’ accounts
A new version of an unofficial WhatsApp Android application named ‘YoWhatsApp’ has been found stealing access keys for users’ accounts. YoWhatsApp
Aruba fixes critical RCE and auth bypass flaws in EdgeConnect
Aruba has released security updates for the EdgeConnect Enterprise Orchestrator, addressing multiple critical severity vulnerabilities that enable remote attackers to
Microsoft Defender adds command and control traffic detection
Microsoft has added command-and-control (C2) traffic detection capabilities to its Microsoft Defender for Endpoint (MDE) enterprise endpoint security platform. Available
Signal will remove support for SMS text messages on Android
Signal says it will start to phase out SMS and MMS message support from its Android app to streamline the
Microsoft: Support for Windows 10 21H1 ending in December
Microsoft reminded customers that all editions of Windows 10, version 21H1, would reach the end of servicing (EOS) on December
New npm timing attack could lead to supply chain attacks
Security researchers have discovered an npm timing attack that reveals the names of private packages so threat actors can release
Google Forms abused in new COVID-19 phishing wave in the U.S.
COVID-19-themed phishing messages are once again spiking in the U.S. following a prolonged summer hiatus that appears to be over.
Google simplifies sign-ins with Chrome, Android passkey support
Google announced today that it’s introducing passkey support to its Chrome web browser and the Android operating system to simplify
Android leaks some traffic even when ‘Always-on VPN’ is enabled
Mullvad VPN has discovered that Android leaks traffic every time the device connects to a WiFi network, even if the
All Windows versions can now block admin brute-force attacks
Microsoft announced today that IT admins can now configure any Windows system still receiving security updates to automatically block brute