Recherche : [#mobile]

I/O 2024 : Android 15 : Sécurité et confidentialité renforcées

#mobile · #android

May 21, 2024 at 3:25:52 PM GMT+2 * · permalien

https://www.blog-nouvelles-technologies.fr/293314/android-15-securite/

New Apple iOS 16 Exploit Enables Stealthy Cellular Access Under Fake Airplane Mode

Cybersecurity experts discovered a sneaky post-exploit trick allowing attackers to secretly stay connected while your device appears offline.

#vulnérabilité · #mobile

August 18, 2023 at 10:24:15 AM GMT+2 * · permalien

https://thehackernews.com/2023/08/new-apple-ios-16-exploit-enables.html?m=1

Apple Rolls Out Urgent Patches for Zero-Day Flaws Impacting iPhones, iPads and Macs

Apple Rolls Out Urgent Patches for Zero-Day Flaws Impacting iOS, iPadOS, macOS, tvOS, watchOS, and Safari

#mobile · #vulnérabilité · #patching

July 25, 2023 at 9:55:32 AM GMT+2 * · permalien

https://thehackernews.com/2023/07/apple-rolls-out-urgent-patches-for-zero.html?m=1

Apple Issues Urgent Patch for Zero-Day Flaw Targeting iOS, iPadOS, macOS, and Safari

#patching · #vulnérabilité · #mobile

July 11, 2023 at 9:26:40 AM GMT+2 * · permalien

https://thehackernews.com/2023/07/apple-issues-urgent-patch-for-zero-day.html

Zero-Day Alert: Apple Releases Patches for Actively Exploited Flaws in iOS, macOS, and Safari

#mobile · #apple · #patching

June 23, 2023 at 8:51:28 AM GMT+2 * · permalien

https://thehackernews.com/2023/06/zero-day-alert-apple-releases-patches.html

“Clickless” iOS exploits infect Kaspersky iPhones with never-before-seen malware | Ars Technica

#mobile · #vulnérabilité · #cyberattaque

June 2, 2023 at 8:30:10 AM GMT+2 * · permalien

https://arstechnica.com/information-technology/2023/06/clickless-ios-exploits-infect-kaspersky-iphones-with-never-before-seen-malware/

Exploring Android Heap allocations in jemalloc 'new'

#pentest · #mobile

May 30, 2023 at 5:13:29 PM GMT+2 * · permalien

https://www.synacktiv.com/publications/exploring-android-heap-allocations-in-jemalloc-new

Update now! Apple issues patches for three actively used zero-days

#vulnérabilité · #mobile

May 24, 2023 at 2:13:01 PM GMT+2 * · permalien

https://www.malwarebytes.com/blog/news/2023/05/update-now-apple-issued-patches-for-three-actively-used-zero-days

Les smartphones Samsung touchés par une importante faille de sécurité

Les pirates exploitent activement une faille de sécurité qui touche de nombreux appareils Samsung sous Android 11, 12 et 13. La marque incite les utilisateurs à mettre à jour leurs appareils le plus rapidement possible.

#cyberattaque · #vulnérabilité · #mobile

May 22, 2023 at 10:02:05 PM GMT+2 * · permalien

https://www-01net-com.cdn.ampproject.org/c/s/www.01net.com/actualites/les-smartphones-samsung-touches-par-une-importante-faille-de-securite.html?amp=1

Le logiciel espion Pegasus découvert sur le téléphone d’une journaliste d’investigation dominicaine

Il s’agit du premier cas documenté d’espionnage d’un membre de la société civile dans le pays des Caraïbes.

#espionnage · #mobile

May 4, 2023 at 8:47:01 AM GMT+2 * · permalien

https://www.lemonde.fr/pixels/article/2023/05/03/le-logiciel-espion-pegasus-decouvert-sur-le-telephone-d-une-journaliste-d-investigation-dominicaine_6171853_4408996.html

Smartphones With Popular Qualcomm Chip Secretly Share Private Information With US Chip-Maker

https://www.nitrokey.com/news/2023/smartphones-popular-qualcomm-chip-secretly-share-private-information-us-chip-maker

#mobile · #android · #vieprivée

May 2, 2023 at 10:08:24 AM GMT+2 * · permalien

https://www.nitrokey.com/news/2023/smartphones-popular-qualcomm-chip-secretly-share-private-information-us-chip-maker

Project Zero: Multiple Internet to Baseband Remote Code Execution Vulnerabilities in Exynos Modems

In late 2022 and early 2023, Project Zero reported eighteen 0-day vulnerabilities in Exynos Modems produced by Samsung Semiconductor.

#vulnérabilité · #mobile

March 20, 2023 at 10:30:06 PM GMT+1 * · permalien

https://googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html?m=1

Shein's Android App Caught Transmitting Clipboard Data to Remote Servers

The Microsoft 365 Defender Research Team said it discovered the problem in version 7.9.2 of the app that was released on December 16, 2021. The issue has since been addressed as of May 2022.

#mobile · #voldedonnees · #vieprivée

March 7, 2023 at 9:11:09 AM GMT+1 * · permalien

https://thehackernews.com/2023/03/sheins-android-app-caught-transmitting.html

Comment les voleurs d'iPhone dépouillent leurs victimes grâce au code d'accès

Une nouvelle menace plane sur les utilisateurs d'iPhone. D'après une enquête du Wall Street Journal, certains voleurs se servent du code d'accès pour ruiner leurs victimes…

#voldedonnees · #mobile

February 28, 2023 at 9:30:34 AM GMT+1 · permalien

https://www-01net-com.cdn.ampproject.org/c/s/www.01net.com/actualites/voleurs-iphone-depouillent-victimes-code-acces.html?amp=1

Android mobile devices from top vendors in China have pre-installed malware

Researchers reported that the top-of-the-line Android mobile devices sold in China are shipped with malware.

#mobile · #vieprivée

February 21, 2023 at 8:45:19 AM GMT+1 · permalien

https://securityaffairs-com.cdn.ampproject.org/c/s/securityaffairs.com/141989/malware/android-mobile-devices-china-malware.html?amp=1

Compromised Android keys used to sign info-stealing malware • The Register

OEMs including Samsung, LG and Mediatek named and shamed

#mobile · #android

December 6, 2022 at 11:38:46 AM GMT+1 * · permalien

https://www.theregister.com/2022/12/05/compromised_android_keys/

Accidental $70k Google Pixel Lock Screen Bypass - bugs.xdavidhu.me

#mobile · #vulnérabilité

November 15, 2022 at 10:25:51 AM GMT+1 * · permalien

https://bugs.xdavidhu.me/google/2022/11/10/accidental-70k-google-pixel-lock-screen-bypass/

A simple Android lock screen bypass bug landed a researcher $70,000 | TechCrunch

Google has paid out $70,000 to a security researcher for privately reporting an “accidental” security bug that allowed anyone to unlock Google Pixel phones without knowing its passcode.

#mobile · #cve · #android

November 15, 2022 at 8:53:38 AM GMT+1 * · permalien

https://techcrunch.com/2022/11/14/android-lock-screen-bypass-google-pixel/?guccounter=1&guce_referrer=aHR0cHM6Ly93d3cubGlua2VkaW4uY29tLw&guce_referrer_sig=AQAAABuvIX9F7xyud5ZB3q8xvnK1WEjrMJRkGrnQuK0-SYsjWNcJLDiJwQRI17LRIayZzcMMk_dS5CYQs08vk5xxk1PRwzf4aiPaw6EeSlFjnAju-9r_EeZ0Whzk9Qn0bcpKoq8x1iOAxMQfUXkMfsvuUNziZDuQlQiwJzylZbCOZB3A

Apple Quietly Releases Another Patch for Zero-Day RCE Bug

Vulnérabilité et PAtch dans Appel IOS

#mobile · #apple · #vulnérabilité

September 2, 2022 at 8:37:59 AM GMT+2 * · permalien

https://www.darkreading.com/vulnerabilities-threats/apple-patch-zero-day-rce-bug

Microsoft found TikTok Android flaw that let hackers hijack accounts

Vulnérabilité dnas l'application TikTok Android avec possibilité d'account takeover

#mobile · #vulnérabilité

September 1, 2022 at 9:47:51 AM GMT+2 * · permalien

https://www.bleepingcomputer.com/news/security/microsoft-found-tiktok-android-flaw-that-let-hackers-hijack-accounts/