Android Not Secure. Who Knew?

#166 Sunday, December 8, 2024

Links:

• QR codes bypass browser isolation for malicious C2 communication


• Chinese hackers use Visual Studio Code tunnels for remote access


• Security Advisory Ivanti Cloud Services Application (CSA) (CVE-2024-11639, CVE-2024-11772, CVE-2024-11773)


• Spain busts voice phishing ring for defrauding 10,000 bank customers


• Microsoft MFA AuthQuake Flaw Enabled Unlimited Brute-Force Attempts Without Alerts


• Gamaredon Deploys Android Spyware "BoneSpy" and "PlainGnome" in Former Soviet States