This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-13T22:35:10+00:00 www.secnews.physaphae.fr SecurityWeek - Security News Android \'s May 2024 Security Update Patches 38 Vulnérabilités, y compris un bogue critique dans le composant système.

---

>Android\'s May 2024 security update patches 38 vulnerabilities, including a critical bug in the System component. ]]> 2024-05-08T11:26:15+00:00 https://www.securityweek.com/android-update-patches-critical-vulnerability/ www.secnews.physaphae.fr/article.php?IdArticle=8495906 False Vulnerability,Mobile None 2.0000000000000000 SecurityWeek - Security News Microsoft has uncovered a new type of attack called Dirty Stream that impacted Android apps with billions of installations.  ]]> 2024-05-03T09:48:50+00:00 https://www.securityweek.com/microsoft-warns-of-dirty-stream-vulnerability-in-popular-android-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8492938 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Les chercheurs peuvent gagner jusqu'à 450 000 $ pour un rapport de vulnérabilité unique car Google augmente son programme de récompenses de vulnérabilité mobile.

---

>Researchers can earn as much as $450,000 for a single vulnerability report as Google boosts its mobile vulnerability rewards program. ]]> 2024-05-01T15:06:19+00:00 https://www.securityweek.com/google-boosts-bug-bounty-payouts-tenfold-in-mobile-app-security-push/ www.secnews.physaphae.fr/article.php?IdArticle=8491898 False Vulnerability,Mobile None 2.0000000000000000 SecurityWeek - Security News The new Wpeeper Android trojan ceased operations after a week and has zero detections in VirusTotal. ]]> 2024-05-01T11:57:52+00:00 https://www.securityweek.com/wpeeper-android-trojan-uses-compromised-wordpress-sites-to-shield-command-and-control-server/ www.secnews.physaphae.fr/article.php?IdArticle=8491811 False Mobile None 2.0000000000000000 SecurityWeek - Security News A new Android trojan named Brokewell can steal user\'s sensitive information and allows attackers to take over devices. ]]> 2024-04-26T14:08:40+00:00 https://www.securityweek.com/powerful-brokewell-android-trojan-allows-attackers-to-takeover-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8489108 False Mobile None 3.0000000000000000 SecurityWeek - Security News Crowdfense a annoncé un programme d'acquisition d'exploit de 30 millions de dollars couvrant Android, iOS, Chrome et Safari Zero-Days.

---

>Crowdfense has announced a $30 million exploit acquisition program covering Android, iOS, Chrome, and Safari zero-days. ]]> 2024-04-08T11:30:59+00:00 https://www.securityweek.com/company-offering-30-million-for-android-ios-browser-zero-day-exploits/ www.secnews.physaphae.fr/article.php?IdArticle=8478101 False Vulnerability,Threat,Mobile None 2.0000000000000000 SecurityWeek - Security News Google Patches 28 vulnérabilités dans Android et 25 bogues dans des appareils de pixels, y compris deux défauts exploités dans la nature.

---

>Google patches 28 vulnerabilities in Android and 25 bugs in Pixel devices, including two flaws exploited in the wild. ]]> 2024-04-03T09:43:20+00:00 https://www.securityweek.com/google-patches-exploited-pixel-vulnerabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8475153 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News NCC Group researchers warn that the Android banking malware \'Vultur\' has been updated with device interaction and file tampering capabilities. ]]> 2024-04-01T15:52:06+00:00 https://www.securityweek.com/vultur-android-malware-gets-extensive-device-interaction-capabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8474121 False Malware,Mobile None 3.0000000000000000 SecurityWeek - Security News La sécurité humaine identifie 28 applications VPN pour Android et un SDK qui transforment les appareils en proxys.

---

>Human Security identifies 28 VPN applications for Android and an SDK that turn devices into proxies. ]]> 2024-03-27T13:19:18+00:00 https://www.securityweek.com/vpn-apps-on-google-play-turn-android-devices-into-proxies/ www.secnews.physaphae.fr/article.php?IdArticle=8471417 False Mobile None 3.0000000000000000 SecurityWeek - Security News CISA ajoute un téléphone Android Pixel (CVE-2023-21237) et Sunhillo Sureline (CVE-2021-36380) définitivement à son catalogue de vulnérabilités exploitées connues.

---

>CISA adds Pixel Android phone (CVE-2023-21237) and Sunhillo SureLine (CVE-2021-36380) flaws to its known exploited vulnerabilities catalog.  ]]> 2024-03-06T11:00:00+00:00 https://www.securityweek.com/cisa-warns-of-pixel-phone-vulnerability-exploitation/ www.secnews.physaphae.fr/article.php?IdArticle=8459791 False Vulnerability,Mobile None 2.0000000000000000 SecurityWeek - Security News Les équipes de sécurité doivent combiner les angles de détection côté client et côté serveur afin d'avoir les meilleures chances d'atténuer le risque de malware mobile avancé.

---

>Security teams need to combine the angles of client-side and server-side detection in order to have the best chance of mitigating the risk of advanced mobile malware. ]]> 2024-02-21T12:44:40+00:00 https://www.securityweek.com/diversifying-defenses-fjordphantom-malware-shows-importance-of-a-multi-pronged-approach/ www.secnews.physaphae.fr/article.php?IdArticle=8453231 False Malware,Mobile None 2.0000000000000000 SecurityWeek - Security News Les récentes attaques de chevaux de Troie d'Android Anatsa sont devenues plus ciblées, montrant une évolution des tactiques.

---

>Recent Anatsa Android banking trojan attacks have become more targeted, showing an evolution in tactics. ]]> 2024-02-20T11:34:54+00:00 https://www.securityweek.com/anatsa-android-banking-trojan-continues-to-spread-via-google-play/ www.secnews.physaphae.fr/article.php?IdArticle=8452698 False Mobile None 2.0000000000000000 SecurityWeek - Security News Les pirates chinois utilisent des chevaux de Troie Android et iOS pour obtenir les informations nécessaires pour voler de l'argent aux victimes \\ 'comptes bancaires.

---

>Chinese hackers use Android and iOS trojans to obtain information needed to steal money from victims\' bank accounts. ]]> 2024-02-19T10:10:05+00:00 https://www.securityweek.com/ios-trojan-collects-face-and-other-data-for-bank-account-hacking/ www.secnews.physaphae.fr/article.php?IdArticle=8452248 False Mobile None 2.0000000000000000 SecurityWeek - Security News Google Play Protect bloquera l'installation de demandes de téléchargement de côté demandant des autorisations fréquemment abusées par des fraudeurs.

---

>Google Play Protect will block the installation of sideloaded applications requesting permissions frequently abused by fraudsters. ]]> 2024-02-08T12:39:48+00:00 https://www.securityweek.com/google-announces-enhanced-fraud-protection-for-android/ www.secnews.physaphae.fr/article.php?IdArticle=8448020 False Mobile None 3.0000000000000000 SecurityWeek - Security News Android \'s Février 2024 Patchs de sécurité résoudre 46 vulnérabilités, y compris un bug d'exécution de code distant critique.

---

>Android\'s February 2024 security patches resolve 46 vulnerabilities, including a critical remote code execution bug. ]]> 2024-02-06T12:22:10+00:00 https://www.securityweek.com/critical-remote-code-execution-vulnerability-patched-in-android/ www.secnews.physaphae.fr/article.php?IdArticle=8447259 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Plus de 60 des Adobe, Google, Android, Microsoft, Mozilla et Apple Zero-Days qui ont été révélés depuis 2016 attribués à des fournisseurs de logiciels espions.

---

>More than 60 of the Adobe, Google, Android, Microsoft, Mozilla and Apple zero-days that have come to light since 2016 attributed to spyware vendors.  ]]> 2024-02-06T10:49:32+00:00 https://www.securityweek.com/google-links-over-60-zero-days-to-commercial-spyware-vendors/ www.secnews.physaphae.fr/article.php?IdArticle=8447244 False Studies,Mobile,Commercial None 4.0000000000000000 SecurityWeek - Security News Google announces $1 million investment in improving Rust\'s interoperability with legacy C++ codebases. ]]> 2024-02-05T17:01:00+00:00 https://www.securityweek.com/google-contributes-1-million-to-rust-says-it-prevented-hundreds-of-android-vulnerabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8446994 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui auraient pu glisser sous le radar: Ubisoft enquêtant sur présumé hack, la NASA publie des conseils de sécurité, Tiktok fait peur aux utilisateurs d'iPhone.

---

>Noteworthy stories that might have slipped under the radar: Ubisoft investigating alleged hack, NASA releases security guidance, TikTok scares iPhone users.  ]]> 2023-12-29T13:02:00+00:00 https://www.securityweek.com/in-other-news-ubisoft-hack-nasa-security-guidance-tiktok-requests-iphone-passcode/ www.secnews.physaphae.fr/article.php?IdArticle=8430798 False Hack,Mobile None 3.0000000000000000 SecurityWeek - Security News Une variante de la banque Android Chameleon présente de nouvelles capacités de dérivation et a élargi sa zone de ciblage.

---

>A variant of the Chameleon Android banking trojan features new bypass capabilities and has expanded its targeting area. ]]> 2023-12-22T17:21:51+00:00 https://www.securityweek.com/chameleon-android-malware-can-bypass-biometric-security/ www.secnews.physaphae.fr/article.php?IdArticle=8427491 False Malware,Mobile None 3.0000000000000000 SecurityWeek - Security News Un pontage d'authentification Bluetooth permet aux attaquants de se connecter aux appareils Android, Linux et Apple vulnérables et injecter des touches.

---

>A Bluetooth authentication bypass allows attackers to connect to vulnerable Android, Linux, and Apple devices and inject keystrokes. ]]> 2023-12-08T11:28:54+00:00 https://www.securityweek.com/android-linux-apple-devices-exposed-to-bluetooth-keystroke-injection-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8420154 False Mobile None 2.0000000000000000 SecurityWeek - Security News IVERIFY, une startup au stade de graine sorti de la piste de bits, expédie une plate-forme de chasse aux menaces mobiles pour neutraliser iOS et Android Zero-Days.

---

>iVerify, a seed-stage startup spun out of Trail of Bits, ships a mobile threat hunting platform to neutralize iOS and Android zero-days. ]]> 2023-12-06T15:20:30+00:00 https://www.securityweek.com/trail-of-bits-spinout-iverify-tackles-mercenary-spyware-threat/ www.secnews.physaphae.fr/article.php?IdArticle=8419597 False Threat,Mobile None 2.0000000000000000 SecurityWeek - Security News Les mises à jour de sécurité en décembre 2023 d'Android \\ résolvent 94 vulnérabilités, y compris plusieurs bogues de sévérité critique.

---

>Android\'s December 2023 security updates resolve 94 vulnerabilities, including several critical-severity bugs. ]]> 2023-12-05T12:11:09+00:00 https://www.securityweek.com/94-vulnerabilities-patched-in-android-with-december-2023-security-updates/ www.secnews.physaphae.fr/article.php?IdArticle=8419265 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Zimperium a identifié plus de 200 applications Android de vol d'informations ciblant les utilisateurs des banques mobiles en Iran.

---

>Zimperium has identified over 200 information-stealing Android applications targeting mobile banking users in Iran. ]]> 2023-11-30T09:53:00+00:00 https://www.securityweek.com/hundreds-of-malicious-android-apps-target-iranian-mobile-banking-users/ www.secnews.physaphae.fr/article.php?IdArticle=8418029 False Mobile,Mobile None 2.0000000000000000 SecurityWeek - Security News ThreatFabric met en garde contre un service compte-gouttes en contournant les récentes restrictions de sécurité Android pour installer des logiciels espions et des chevaux de Troie bancaires.

---

>ThreatFabric warns of a dropper service bypassing recent Android security restrictions to install spyware and banking trojans. ]]> 2023-11-08T09:55:50+00:00 https://www.securityweek.com/dropper-service-bypassing-android-security-restrictions-to-install-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8407787 False Malware,Mobile None 2.0000000000000000 SecurityWeek - Security News Les mises à jour Android Security publiées cette semaine résolvent 37 vulnérabilités, y compris un bug de divulgation d'informations critiques.

---

>The Android security updates released this week resolve 37 vulnerabilities, including a critical information disclosure bug. ]]> 2023-11-07T12:31:39+00:00 https://www.securityweek.com/37-vulnerabilities-patched-in-android-with-november-2023-security-updates/ www.secnews.physaphae.fr/article.php?IdArticle=8407231 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Russian zero-day acquisition firm Operation Zero is now offering $20 million for full Android and iOS exploit chains. ]]> 2023-09-28T11:25:36+00:00 https://www.securityweek.com/russian-zero-day-acquisition-firm-offers-20-million-for-android-ios-exploits/ www.secnews.physaphae.fr/article.php?IdArticle=8389040 False Threat,Mobile None 4.0000000000000000 SecurityWeek - Security News Promoted as a MaaS, the Nexus Android trojan targets 450 financial applications for account takeover. ]]> 2023-03-23T12:02:12+00:00 https://www.securityweek.com/nexus-android-trojan-targets-450-financial-applications/ www.secnews.physaphae.fr/article.php?IdArticle=8320888 False Mobile None 2.0000000000000000 SecurityWeek - Security News 2022-12-07T09:30:23+00:00 https://www.securityweek.com/over-75-vulnerabilities-patched-android-december-2022-security-updates www.secnews.physaphae.fr/article.php?IdArticle=8288657 False Mobile None 4.0000000000000000 SecurityWeek - Security News SolarWinds supply chain attack and Kazuar, a backdoor that appears to have been used by the Russia-linked cyber-espionage group known as Turla. ]]> 2021-01-11T13:47:16+00:00 http://feedproxy.google.com/~r/Securityweek/~3/9rA7NBHbIlI/malware-used-solarwinds-attack-linked-backdoor-attributed-turla-cyberspies www.secnews.physaphae.fr/article.php?IdArticle=2170297 False Malware,Mobile Solardwinds,Solardwinds None