A week in security (November 4 – November 10)
A roundup of important security news from the week of November 4–10, including the release of Malwarebytes 4.0, vendor email compromise, fake news, robocalls, and more.
A week in security (September 9 – 15)
A roundup of the security news from September 9–15, including locking down AWS, mobile malware, phishing threats, and more.
Cellular networks under fire from Soft Cell attacks
We break down the recently revealed attacks on telco operators around the globe, targeting specific high-value individuals.
Mobile stalkerware: a long history of detection
Does Malwarebytes detect stalkerware? Absolutely, and for good reason. Moreover, we’ve been doing so for a long time—but it’s time to up our efforts.
WhatsApp fix goes live after targeted attack on human rights lawyer
A fix was rolled out for a WhatsApp vulnerability, which was used to inject spyware into mobile devices and target a human rights lawyer.
Fake Instagram assistance apps found on Google Play are stealing passwords
We all want those Instagram likes and followers. But what if the app that’s supposed to be assisting you is also stealing your username and password? As a matter of fact, that’s exactly what we found in three fake Instagram assistance apps found on Google Play.
A week in security (March 25 – 31)
A roundup of news stories from March 25 – 31, including phishing, hacking, Government studies, mobile dangers on official stores and more.
Awakening the beast: BatMobi adware
BatMobi is an Advertisement Software Developer Kit (Ad SDK) that was once clean and safe to use, but suddenly began serving adware in January. Learn more about this elusive threat, including how to clean it off pre-installed apps on mobile devices.
Apple pulls Facebook enterprise certificate
After an app using an internal-only certificate from Facebook made its way into the outside world, Apple has responded by pulling Facebook’s developer certificate with immediate consequences for the social media giant.
The new landscape of pre-installed mobile malware: malicious code within
We are now seeing malware authors target system apps that are required for mobile devices to function properly. By injecting malicious code within these necessary apps, threat actors have reshaped the landscape of pre-installed malware for the worse.
