Security – Page 154 – PossibleThreat Articles

Vulnerability in TikTok Android app could lead to one-click account hijacking

August 31, 2022 0 Comments Android, cybersecurity, Microsoft, Microsoft security intelligence, Security, TikTok, vulnerability

Credit to Author: Katie McCafferty| Date: Wed, 31 Aug 2022 16:00:00 +0000

Microsoft discovered a high-severity vulnerability in the TikTok Android application, now identified as CVE-2022-28799 and fixed by TikTok, which could have allowed attackers to compromise users’ accounts with a single click.

The post Vulnerability in TikTok Android app could lead to one-click account hijacking appeared first on Microsoft Security Blog.

Security Wired

You’re Not Stringer Bell, but You May Still Need a Burner Phone

August 31, 2022 0 Comments gear / how to and advice, Security, Security / Privacy, Security / Security Advice

Credit to Author: Omar L. Gallaga| Date: Wed, 31 Aug 2022 13:00:00 +0000

Prepaid phones are looking good as privacy worries peak.

Security Wired

Apple Fixed a Serious iOS Security Flaw—Have You Updated Yet?

August 31, 2022 0 Comments Security, Security / Cyberattacks and Hacks

Credit to Author: Kate O’Flaherty| Date: Wed, 31 Aug 2022 11:00:00 +0000

Plus: Chrome patches another zero-day flaw, Microsoft closes up 100 vulnerabilities, Android gets a significant patch, and more.

Security Wired

The Telegram-Powered News Outlet Waging Guerrilla War on Russia

August 29, 2022 0 Comments Security, Security / National Security

Credit to Author: Guillaume Ptak| Date: Mon, 29 Aug 2022 11:00:00 +0000

Anti-Putin media network February Morning has become a central player in the underground fight against the Kremlin.

Security Wired

A US Propaganda Operation Hit Russia and China With Memes

August 27, 2022 0 Comments Security, Security / Security News

Credit to Author: Matt Burgess| Date: Sat, 27 Aug 2022 13:00:00 +0000

Plus: An Iranian hacking tool steals inboxes, LastPass gets hacked, and a deepfake scammer targets the crypto world.

Security Wired

Why the Twilio Breach Cuts So Deep

August 27, 2022 0 Comments Security, Security / Cyberattacks and Hacks

Credit to Author: Lily Hay Newman| Date: Fri, 26 Aug 2022 20:05:55 +0000

The phishing attack on the SMS giant exposes the dangers of B2B companies to the entire tech ecosystem.

ComputerWorld Independent

What is Managed Device Attestation on Apple platforms?

August 26, 2022 0 Comments Apple, endpoint protection, iOS, mobile device management, Security

Credit to Author: Jonny Evans| Date: Fri, 26 Aug 2022 09:43:00 -0700

Announced at WWDC 2022, Managed Device Attestation protection shows that Apple is adjusting device security protections to adapt to an increasingly distributed age.

Secure the endpoints, not the end times

This adjustment reflects a reality shift. Work doesn’t happen on specific servers or behind defined firewalls today. VPN access can differ across teams. And yet, in a workplace defined by multiple remote devices (endpoints), the security threat is greater than ever.

Managed Device Attestation works to create a second boundary of trust around which device management solutions can work to protect against attack.

To read this article in full, please click here

Security Wired

Their Photos Were Posted Online. Then They Were Bombed

August 26, 2022 0 Comments Security, Security / National Security

Credit to Author: Matt Burgess| Date: Fri, 26 Aug 2022 11:00:00 +0000

An attack on Russian mercenaries shows how militaries are increasingly using open source data—with sometimes deadly consequences.

ComputerWorld Independent

Planned ‘fixes’ for credit-card interchange fees will actually make fraud easier

August 26, 2022 0 Comments finance and accounting systems, Financial Services Industry, Security

Credit to Author: Evan Schuman| Date: Fri, 26 Aug 2022 03:00:00 -0700

I love it when organizations try and do something good, but don’t think things through and end up delivering unintended negative consequences.

Today’s case in point: the US Senate and the Federal Reserve, both of whom are looking to reduce high interchange costs, but are unintentionally increasing costs for merchants and sharply boosting the undiscovered fraud rate. Not bad for government work.

Let’s start with the Senate, where Sens. Dick Durbin (D-IL) and Roger Marshall (R-KS) have crafted The Credit Card Competition Act of 2022. Its stated goal: reduce the interchange fee that financial institutions and card brands (Visa, MasterCard, Amex, etc.) charge retailers.

To read this article in full, please click here

Security Wired

Scans of Students’ Homes During Tests Are Deemed Unconstitutional

August 25, 2022 0 Comments Security, Security / Privacy

Credit to Author: Ashley Belanger, Ars Technica| Date: Thu, 25 Aug 2022 13:00:00 +0000

An Ohio judge ruled that such surveillance to prevent cheating could form a slippery slope to more illegal searches.