Apple has reportedly issued an ultimatum to companies that rely on “session replay” tools to track the way users interact with their iPhone apps: disclose the practice and seek explicit consent for it, or be removed from the app store. Apple’s mandate comes after a TechCrunch report last Wednesday revealed that Air Canada, Hollister, Expedia,…
Apple yesterday released security updates for iOS and macOS Mojave, repairing four vulnerabilities, including two that a Google researcher says were exploited in the wild as zero days. The two exploited flaws consisted of memory corruption issues caused by insufficient input validation. The first, CVE-2019-7286, is a privilege escalation vulnerability in the Foundation framework that…
Simply viewing an image from any source – the Internet, text and the like – could hack an Android smartphone thanks to a trio of vulnerabilities fixed by Google in its February security updates. “The most severe of these issues is a critical security vulnerability in Framework that could allow a remote attacker using a…
Siri Shortcuts, Apple’s recently introduced native feature for iOS 12, can potentially be abused by threat actors to deliver malware to unsuspecting mobile device users, researchers are warning. The tool allows users to quickly execute and automate multiple-step tasks with just a single tap or voice command. Device owners who download the Siri Shortcuts app…
New York Governor Andrew Cuomo and freshly minted state Attorney General Letitia James Apple was being scrutinized for potentially mishandling notification of a FaceTime bug that allows callers to eavesdropon the audio of a call recipient before they answer the phone. Cuomo and James are probing whether Apple was too slow to warn consumers of…
Some beauty camera app users may end up seeing a bit more than they were hoping for as some of these are pushing unwanted ads and even pornographic material while others may steal your photos. Trend Micro researchers found several of these apps, identified as AndroidOS_BadCamera.HRX, available. The number of downloads from Google Play range…
A FaceTime bug that lets a caller listen to the audio of the recipient before he or she answers the phone will be addressed in an update later in the week, Apple said Monday night. “We’re aware of this issue and we have identified a fix that will be released in a software update later…
A fake currency converter and a phony battery utility program are among the latest fraudulent apps to be expunged from Google Play, according to researchers who discovered they were infecting users with a version of the Anubis banking malware family. Both fraudulent apps employ a crafty technique to determine whether it is safe for them…
A French cybersecurity researcher is reporting that Android ES File Explorer app can allow others on your local network to remotely access a file on your phone. The app, which has more than 100 million Android installs and is designed to allow for the management of all varieties of file types, has a major open…
Enforcing a previously announced new policy, Google Play this week began monitoring and potentially rejecting apps that request phone call logs and SMS permissions if they don’t abide by a set of rules in an effort to protect user privacy. Only an app that has been selected as a user’s default app for making calls…
