Cybersecurity Weekly: VoLTE encryption attack, Alexa bugs, Android flaws
A new attack lets hackers decrypt VoLTE encryption to spy on phone calls. Amazon Alexa bugs allowed hackers to install malicious apps. Flaws in Samsung phones exposed Android users to remote attacks. All this, and more, in this week’s edition of Cybersecurity Weekly.
Top Security Awareness Posters
1. New attack lets hackers decrypt VoLTE encryption to spy on phone calls
Last week, a team of academic researchers presented a new attack called ReVoLTE, that could let remote attackers break the encryption used by VoLTE voice calls and spy on targeted phone calls. The method allows an attacker to eavesdrop on the encrypted phone calls made by targeted victims.
Read more »
2. Amazon Alexa bugs allowed hackers to install malicious apps
Cybersecurity researchers disclosed severe security vulnerabilities in Amazon's Alexa virtual assistant that could render it vulnerable to a number of malicious attacks. The exploits could have allowed an attacker to remove/install skills on the targeted victim's Alexa account, access their voice history and acquire personal information through skill interaction.
Read more »
3. Flaws in Samsung phones exposed Android users to remote attacks
New research disclosed a string of severe security vulnerabilities in the Find My Mobile app that could have allowed remote attackers to track victims' real-time location, monitor phone calls and messages and delete data stored on the phone. The flaws were addressed by Samsung after flagging the exploit as a high-impact vulnerability.
Read more »
4. Critical flaws affect Citrix Endpoint Management
Citrix released patches last week for multiple new security vulnerabilities affecting its Citrix Endpoint Management, also known as XenMobile. According to Citrix, there are a total of five vulnerabilities that affect on-premise instances of XenMobile servers used in enterprises to manage all apps, devices or platforms from one central location.
Read more »
5. Emotet malware strikes U.S. businesses with COVID-19 spam
The Emotet malware began to spam COVID-19 related emails to U.S. businesses after not being active for most of the pandemic. Before going dark in February 2020, the Emotet malware was commonly spamming COVID-19 themed spam to distribute malware in other countries already affected by the pandemic.
Read more »
6. Hacker leaks data for U.S. gun exchange site on cybercrime forum
On August 10th, a threat actor posted databases that they claim contain 195,000 user records for the utahgunexchange.com, 45,000 records for their video site, 15,000 records from the hunting site muleyfreak.com, and 24,000 user records from the Kratom site deepjunglekratom.com.
Read more »
7. CISA warns of phishing campaign with loan-relief lure
The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency issued a warning about an in-progress phishing campaign using the Small Business Administration COVID-19 loan-relief program as bait. The still-unknown malicious actor spoofed the SBA's loan-relief page and is using the fake site to steal credentials.
Read more »
8. Instagram retained deleted user data despite GDPR rules
For several months following the launch of GDPR, Instagram kept copies of deleted pictures and private direct messages on its servers even after someone removed them from their account. The Facebook-owned service acknowledged the slipup and awarded a security researcher $6,000 for finding the bug.
Read more »
9. Critical flaws in WordPress quiz plugin allow site takeover
A plugin designed to add quizzes and surveys to WordPress websites patched two critical vulnerabilities last week. The flaws can be exploited by remote, unauthenticated attackers to launch varying attacks, including fully taking over vulnerable websites. The plugin, Quiz and Survey Master, is actively installed on over 30,000 websites.
Read more »
Phishing simulations & training
10. Security gap allows eavesdropping on mobile phone calls
Cybersecurity researchers were able to decrypt the contents of telephone calls if they were in the same radio cell as their target, whose mobile phone they then called immediately following the call they wanted to intercept. They exploited a flaw that some manufacturers had made in implementing the base stations.
Read more »
- Reduce security events
- Reinforce cyber secure behaviors
- Strengthen cybersecurity culture at your organization
In this Series
- Cybersecurity Weekly: VoLTE encryption attack, Alexa bugs, Android flaws
- Canada Flipper Zero ban and new RustDoor macOS malware
- AnyDesk hack and iPhone patched kernel flaw
- Tesla Pwn2Own hacks and iOS push alerts abuse
- TeamViewer breach and Atlassian Jira outage
- Moscow ISP revenge hack and Microsoft Sharepoint bug warning
- X verified accounts hack and SpectralBlur macOS malware
- CISA default password alert and SOHO KV-botnet campaign
- New 5G modem flaws and Apple’s data breach report
- Staples cyberattack, Agent Racoon backdoor and other news
- British Library ransomware attack, Windows fingerprint authentication bypass
- Samsung UK data breach and ransomware actor’s SEC complaint
- ICBC ransomware attack and ChatGPT outage
- Boeing Lockbit ransomware attack, Apple’s vulnerability and WhatsApp mods spyware
- Octo Tempest hacking group and new iLeakage attack
- Okta support system breach and Google Ads fake KeePass campaign
- Skype DarkGate malware, Shadow PC breach and AvosLocker ransomware warning
- 23andMe data theft, MGM’s $100M ransomware loss and the Azure VM breach
- Malicious Bing Chat ads and FBI’s dual ransomware warning
- T-Mobile app glitch and fake Booking.com pages
- Airbus data leak, Cisco Webex ad malware and €345 million TikTok fine
- New Apple iMessage exploit and CISA’s Apache RocketMQ warning
- Forever 21 data breach and Android BadBazaar espionage
- Duolingo data leak and the Met Police IT hack
- Discord.io data breach and Ivanti Avalanche vulnerabilities
- UK Electoral Commission hack and Microsoft’s role in China email breach
- Salesforce email zero-day exploit and Microsoft Power Platform criticism
- Airlines disclose pilot data breach and the Microsoft Teams bug
- GravityRAT Android Trojan and new MOVEit Transfer flaw
- University of Manchester hack and Honda API flaws
- MOVEit zero-day exploit and the U.S. iPhone hack accusation
- Daam Android virus and Barracuda zero-day flaw
- TP-Link router exploit and 18-year-old charged with hacking DraftKings accounts
- Discord support hack and Toyota location data leak
- Twitter private tweets bug and Cisco phone router vulnerabilities
- Cisco XSS zero-day flaw and PaperCut vulnerabilities
- 3CX hackers hit critical infrastructure and secondhand routers cause security concerns
- Hyundai data breach and Microsoft’s warning to accountants
- Western Digital cloud breach and the MSI ransomware hack
- TMX loan data breach, Italy bans ChatGPT and WordPress Elementor Pro exploit
- ChatGPT data leak and Gmail message theft by North Korean hackers
- U.S. federal agency hack and the return of FakeCalls Android malware
- Massive AT&T data breach and fake jobs targeting security researchers
- U.S. Marshals service breach and TPM 2.0 security flaws
- Dangerous ChatGPT apps and food giant Dole ransomware attack
- GoDaddy malware installations, record-breaking DDoS attack and the new WhiskerSpy malware
- Reddit’s employees phished, healthcare firms targeted and the new Screenshotter malware
- JD Sports data breached, VMware ESXi servers attacked and the HeadCrab malware
- Yandex source code leaked, 4500+ WordPress sites hacked and the new SwiftSlicer malware
- PayPal accounts breached, Fortinet VPN flaw exploited, and the new Hook malware
- Twitter users’ emails leaked, ChatGPT used to write malware and Slack’s repository breach
We’ll customize our demo to your
- Security awareness goals
- Existing security and employee training tools
- Industry and compliance requirements
