A vulnerability is discovered in WhatsApp messaging app that exploit and inject spyware onto Android and IOS phones. By just simply calling the target,The spyware (known as NSO Pegasus), can be installed without trace and without the target answering the call.
Once installed, the spyware can turn on a phone’s camera and mic, scan emails and messages, and collect the user’s location data.
WhatsApp is urging its 1.5 billion global users to update the app immediately to close the security hole.
Another rapid growing attack technique among online accounts is through password spraying. Password Spraying targets a large number of accounts/usernames and loops them with a highly common or simple password.
Microsoft has released April 2019 Security Updates to address vulnerabilities in its Windows Operating System and other products in which 13 of it are rated critical and the others are rated important in severity.
- Ubuntu Security Notice USN-3957-2
- Red Hat Security Advisory 2019-1269-01
- Red Hat Security Advisory 2019-1267-01
- Red Hat Security Advisory 2019-1265-01
- Debian Security Advisory 4449-1
- Ubuntu Security Notice USN-3977-2
- Ubuntu Security Notice USN-3566-2
- Red Hat Security Advisory 2019-1259-01
- Darktrace Enterpise Immune System 3.0.9 / 3.0.10 Cross Site Request Forgery
- WebKitGTK+ / WPE WebKit Code Execution
- Snapchat Privacy Blunder Piques Concerns About Insider Threats
- Joomla and WordPress Found Harboring Malicious Redirect Code
- Microsoft Beefs Up Wi-Fi Protection
- News Wrap: Which Companies Are Doing Privacy Right and Which Aren’t?
- Goodbye Passwords: Hello Identity Management
- Shade Ransomware Expands to U.S. Targets
- Calibration Attack Drills Down on iPhone, Pixel Users
- SandboxEscaper Drops Three More Windows Exploits, IE Zero-Day
- Soaring Cryptocurrency Prices Draw Malicious New Onslaught of Apps, Malware
- WannaCry-Infested Laptop Starts at $1.13M in Art Auction