Tag Archives: mobile malware

iOS Bounties, Android Auto-root, and Guy Fawkes Day – WSWiR Episode 168

Nowadays, each week has more information security news that we used to have each month. If you find yourself falling behind, and need a shortcut to stay informed, this is the weekly video for you. Every Monday, I summarize our daily security video from last week.

Today’s episode covers a new Android malware variant, an iOS zero day that’s bad for the industry, a couple hacktivism campaigns, and more. Watch the YouTube video for all the details, and check out the references below to learn more.

(Episode Runtime: 13:13)

Direct YouTube Link: https://www.youtube.com/watch?v=z7Xgnd8CHQ8

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

YiSpecter iOS Malware – Daily Security Byte EP.154

Another piece of iOS malware is affecting Chinese and Taiwanese users. It works against non-jailbroken devices and uses Apple’s private APIs to hide its malicious activities. Watch today’s video to learn more about it, and what users should do to avoid it.

(Episode Runtime: 3:17)

Direct YouTube Link: https://www.youtube.com/watch?v=1lAUaPeiHCo

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

XcodeGhost Pwns App Store – Daily Security Byte EP.147

A booby-trapped version of XcodeApple’s development toolkitis spreading on Chinese forums, and adding a malicious backdoor to any app made with it. Watch today’s video to learn more about XcodeGhost, and what developers and users should do to avoid it.

(Episode Runtime: 2:30)

Direct YouTube Link: https://www.youtube.com/watch?v=BC_oyFg7AnA

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Adult Ransomware and Hacked WhatsApp – WSWiR Episode 164

Do you have little time for security news, but wish you could keep abreast of the latest threats? In that case, our weekly summary video can help. Every Monday, we summarize last week’s infosec news for you, often in under ten minutes.

This week’s show includes Microsoft and Adobe patches, some adult-themed mobile ransomware, and a sneaky new malware command and control technique. Watch the episode below, and don’t forget to glance at the Reference section if you are interested in other news.

(Episode Runtime: 8:44)

Direct YouTube Link: https://www.youtube.com/watch?v=mnJivvR7nRw

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Adult Mobile Ransomware – Daily Security Byte EP.140

Ransomware like Cryptolocker and Cryptowall are already bad enough, costing victims millions in losses. It’s about to get worse… Now there’s ransomware that targets your smartphone and takes embarrassing pictures of you associated with an adult-themed app. The good news is it’s easy to avoid. Watch today’s video to learn more.

(Episode Runtime: 1:46)

Direct YouTube Link: https://www.youtube.com/watch?v=y7CdGQ5yLqI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

iOS KeyRaider – Daily Security Byte EP.135

The bad news is a new iOS malware variant has stolen the iCloud credentials of 225,000 users. The good news is it only affects jailbroken iOS users. Watch today’s video to learn more about this new threat, and how to avoid it.

(Episode Runtime: 2:07)

Direct YouTube Link: https://www.youtube.com/watch?v=WgouWbav3jA

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

StageFright Affects Most Androids – Daily Security Byte EP.119

Stagefright is a new Android vulnerability that’s serious enough to deserve its fancy marketing name. As one security pundit said, “It’s the Heartbleed of mobile vulnerabilities.” Attackers can leverage this dangerous flaw against 95% of Android devices simply by sending you a text message with a specially crafted file. You don’t even have to interact with the message for the attack to succeed. Watch today’s video to learn what you should do about this issue.

(Episode Runtime: 2:22)

Direct YouTube Link: https://www.youtube.com/watch?v=U9hg5Hx3wRI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

PowerOffHijack’s a Dud – Daily Security Byte EP.30

Everyone’s hair is on fire about PowerOffHijack, the Android malware that spies on you when you phone is supposed to be off. Guess what? It’s not nearly as bad as it sounds. Check out the video to learn why.

(Episode Runtime: 2:08)

Direct YouTube Link: https://www.youtube.com/watch?v=LPgNZIs9Iq4

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Forbes Forces Malware – Daily Security Byte EP.22

Did you know the Forbes website was serving up targeted malware last December, by exploiting two zero day vulnerabilities? If not, watch the video to learn more.

(Episode Runtime: 2:14)

Direct YouTube Link: https://www.youtube.com/watch?v=nj-S6ss8-dw

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

%d bloggers like this: