Anthlas Security

11/08/2024

Attention Android users! A new malware called ToxicPanda is targeting Android devices to steal sensitive banking information. This sophisticated malware disguises itself as trusted apps like Chrome and WhatsApp, making it hard to detect. It primarily affects older Android versions, bypassing security measures to log keystrokes and intercept one-time passcodes (OTPs). Stay safe by downloading apps only from trusted sources, keeping your device updated, and enabling multi-factor authentication (MFA) on your accounts. Spread the word and help protect your friends and family from this threat!

For more details, check out the full article

AI is evolving at a rapid pace, and the uptake of Generative AI (GenAI) is revolutionising the way humans interact and leverage this technology. GenAI is

09/16/2024

Attention Parents!

Do your kids play Roblox? An alleged leak has been reported that contains sensitive information. It is recommended that passwords are changed and information that is associated with your Roblox account be closely monitored.

Stay updated with us for the latest news and tips to safeguard your family and community from online threats.

09/11/2024

Did you know that social engineering attacks are one of the most effective forms of cybercrime? These attacks trick individuals into sharing sensitive information, leading to significant financial losses and business disruptions.

Key Points:
Psychological Manipulation: Attackers use tactics that prey on human psychology to gain access to systems, data, or physical spaces.
High Financial Impact: In 2020 alone, social engineering attacks cost U.S. businesses over $4.2 billion.
Business Disruption: Beyond financial loss, these attacks can lead to productivity loss, downtime, and reputational damage.

Cyber-attacks can hit any industry and company size does not matter. In fact, small and medium sized businesses are targets due to the fact that many lack proper cybersecurity measures. Invest in cybersecurity awareness training today to protect your organization and empower your employees!

09/11/2024

Just a quick reminder to regularly update all of your devices and tools. Updates are essential patches that fix security vulnerabilities, preventing exploitation by cybercriminals.

Browsers are prime targets for cybercriminals and keeping them updated is crucial for your online safety. Google just released a new Chrome update that fixes several high-severity vulnerabilities. These vulnerabilities can lead to system takeover, data corruption, code ex*****on, or DoS attacks.

Don’t wait, protect your data and stay secure by updating now!

We’re dedicated to keeping local families and businesses informed about online threats. Follow us for the latest security updates and tips to help protect our community.

Google has released a Chrome 128 security update to resolve high-severity memory safety vulnerabilities.

05/24/2024

Fake websites pretending to be Avast, Bitdefender, and Malwarebytes are spreading malware to Android and Windows devices.

Keep your family informed of all the dangers that we all face on a daily basis. Learn more by visiting us at Anthlas Security.

Fake antivirus websites are stealing your data. Cybercriminals are using sites that mimic Avast, Bitdefender, and Malwarebytes to spread malware.

05/24/2024

Fake websites pretending to be Avast, Bitdefender, and Malwarebytes are spreading malware to Android and Windows devices.

Inform your entire business of the threats that we all face on a daily basis. Learn more about how by checking us out at Anthlas Security!

Fake antivirus websites are stealing your data. Cybercriminals are using sites that mimic Avast, Bitdefender, and Malwarebytes to spread malware.

10/16/2023

A recent report from cybersecurity experts at Human Security has uncovered some alarming findings about popular Android TV boxes. Here are the key takeaways:

-Two backdoors, named Badbox and Peachpit, have been discovered in widely used Android TV boxes.
-Malware on these devices can conduct ad fraud, create fake accounts, and even sell access to your home networks.
-Badbox is tricky to detect and challenging to remove, making prevention the best defense.
-Always install apps from reliable sources and keep your Android TV box up to date.
-Law enforcement agencies have been alerted to these findings.

Researchers have identified 200 different Android TV box models that may be infected, suggesting a large-scale ad fraud network. Several popular models, including Q9, T95, and X88, were found to have backdoors.

Beware the T95 TV Box, known for pre-installed malware, is still being sold on Amazon despite previous warnings.

Follow us on Twitter - Facebook @ /Hackread

09/08/2023

Attention iPhone users:

Citizen Lab has identified a discreet vulnerability named BLASTPASS, which has the potential to compromise devices running iOS 16.6. Apple has released an update to mitigate this vulnerability and it is recommended to update all iPhones and iPads to receive this new update.

Citizen Lab says that the bugs are serious because they can be exploited just by loading an image or attachment, which happens regularly in Safari, Messages, WhatsApp, and other first- and third-party apps. These bugs are also called "zero-click" or "clickless" vulnerabilities.

Apple has patched two vulnerabilities that formed an exploit chain which has been allegedly abused by spyware company NSO

08/24/2023

Cybersecurity Update

Researchers have identified four vulnerabilities in TP-Link Tapo L530E smart bulb and its accompanying app, TP-Link Tapo. Given the bulb's popularity on platforms like Amazon and the app's 10 million installations on Google Play, many users could be at risk.

Key Findings:
1. Attackers can impersonate the bulb, gaining access to user passwords and manipulating devices.
2️. Hard-coded secrets within the app can be brute-forced or decompiled.
3. Predictable cryptographic schemes due to lack of randomness.
4. Session keys are valid for 24 hours, enabling message replays.

Most concerning: Attackers can impersonate the bulb, retrieve account details, and eventually access the victim’s WiFi credentials. This could lead to breaches on all devices connected to that network.

While TP-Link has been informed and promised fixes, it's unclear which versions have been patched.

To keep your IoT devices safe:
-Isolate them from critical networks.
-Regularly update to the latest firmware and app versions.
-Use strong passwords and multi-factor authentication.

Stay vigilant and prioritize the security of your smart devices. Stay up to date with all the latest cybersecurity news by signing up for our weekly newsletter at anthlassecurity.com!

Researchers from Italy and the UK have discovered four vulnerabilities in the TP-Link Tapo L530E smart bulb and TP-Link's Tapo app, which could allow attackers to steal their target's WiFi password.

08/24/2023

Cybersecurity Alert

Data of 2.6 million DuoLingo users was leaked on a hacking forum, potentially putting them at risk of targeted phishing attacks. While DuoLingo, a popular language learning platform, acknowledged some of the data was scraped from public profiles, email addresses, which aren't public, were also exposed.

This data leak stems from an exposed application programming interface (API) which was reportedly abused to gather user details. Surprisingly, even after its misuse was flagged earlier this year, the API remains accessible. Combining public and private data enhances risks for users and may breach data protection laws. Remember, in the past, Facebook faced hefty fines for similar issues.

If you're a DuoLingo user, be cautious of phishing attempts, and always stay vigilant with your online interactions. Stay safe!

Stay up to date with the latest cyber security news by signing up for our weekly newsletter at anthlassecurity.com!

The scraped data of 2.6 million DuoLingo users was leaked on a hacking forum, allowing threat actors to conduct targeted phishing attacks using the exposed information.

08/15/2023

Attention Ford and Lincoln vehicle owners! A vulnerability has been discovered in the SYNC3 infotainment system. Good news is, while a fix is on its way, vehicle driving safety isn't at risk. In the meantime, if you're concerned, simply disable your in-car WiFi. Stay tuned for the software patch, which you can easily download and install via USB. Drive safe and stay informed!

Check us out at anthlassecurity.com and sign up for our weekly newsletter for all your cybersecurity news and information.

Ford is warning of a buffer overflow vulnerability in its SYNC3 infotainment system used in many Ford and Lincoln vehicles, which could allow remote code ex*****on, but says that vehicle driving safety isn't impacted.

08/10/2023

Important Cybersecurity Update

A new phishing-as-a-service toolkit called EvilProxy is making waves in the cyber world. This toolkit is being used to target prominent companies, including thousands of Microsoft 365 user accounts, and can even bypass multi-factor authentication.

If you're an individual or small business owner, here's what you need to know to protect yourself:
- Be cautious of emails that appear to come from trusted services like Adobe and DocuSign; they might be malicious.
- Implement additional layers of security on your accounts where possible.
- Stay updated on cybersecurity best practices and consider professional guidance if necessary.

EvilProxy shows that cyber threats are becoming more advanced. Staying informed and vigilant is key to keeping your online information safe.

Threat actors are utilizing the 'EvilProxy' Phishing-as-a-Service (PhaaS) toolkit to carry out account takeovers.