Phil Evitt’s Post

In a Mobile Device Best Practices report, the National Security Agency (NSA) offers tips to thwart hackers and attackers from assaulting your mobile device. One method is as simple as turning your phone off and on, weekly. This simple action can make it more difficult for hackers to steal information from your phone, though the agency cautions that this will not always prevent an attack.

In today's digital age, protecting your personal information is crucial. Here are five quick tips to enhance your online security: Strong, Unique Passwords: Use long, unique passwords for each account. Aim for 15 characters or more to make them harder to crack. Beware of Phishing Scams: Be cautious of emails, calls, or texts asking for personal info. Always verify the sender before responding to ensure legitimacy. Secure Your Devices: Keep your phone and laptop in sight and locked when not in use to prevent unauthorized access. Enable Multifactor Authentication: Add an extra layer of security by using a password plus a verification code sent to your phone. Avoid Public Wi-Fi and Chargers: Use your personal hotspot and own charger to safeguard your data from potential threats. Stay smart, stay safe, and keep your personal information protected. https://lnkd.in/dZtFf-Eh

30,000 Devices in Germany Discovered with Pre-installed Malware “Badbox” The Federal Office for Information Security (BSI) in Germany has taken decisive action against a wave of malware-infected digital picture frames and media players connected to the Internet. Known as BadBox, this malware was discovered pre-installed on up to 30,000 devices in Germany, primarily due to outdated Android versions. The BSI has now intervened by blocking communication between these devices and the malware’s control servers. Pre-installed Malware and Risks The BadBox malware poses several significant threats to users. It can stealthily create accounts for email and messenger services, facilitating the spread of fake news. Additionally, BadBox can execute ad fraud by secretly accessing websites in the background. Perhaps most concerning is its ability to function as a residential proxy, allowing unknown third parties to use the victim’s internet connection for cyberattacks and illegal activities, thereby risking the user’s IP address being linked to criminal offenses. Stay Connected to Sidharth Sharma, CPA, CISA, CISM, CFE, CDPSE for content related to Cyber Security. #CyberSecurity #JPMC #Technology #InfoSec #DataProtection #DataPrivacy #ThreatIntelligence #CyberThreats #NetworkSecurity #CyberDefense #SecurityAwareness #ITSecurity #SecuritySolutions #CyberResilience #DigitalSecurity #SecurityBestPractices #CyberRisk #SecurityOperations 

📱 Think Your Phone is Safe? Think Again! 🔒 Your mobile device is a goldmine for hackers if left unsecured. Here's how you can stay protected: Keep It Updated: Always update your mobile OS & use a complex password. 💪 Malware Defence : Install antivirus & never click on shady links. Stay alert, don’t store sensitive info! 🚫 Avoid SIM Cloning: Don’t jailbreak your phone! It opens doors for attackers. 🚷 Protect from Theft: Use full-device encryption (FDE), GPS tracking, and remote wipe tools. 🛡️ Secure Apps: Use only trusted apps, avoid public networks for payments, and disable GPS when you don’t need it. 📍 Your phone is your lifeline—keep it secure! What security measures are you taking?👇 #MobileSecurity #PhoneSafety #CyberAwareness #DataProtection #DigitalSafety #StaySecure #TechTips #PrivacyMatters #CyberSecurity

❓The Pegasus spyware resurgence is highlighting a fundamental question about mobile devices: How private can mobile data be? 📱 The Pegasus Project revealed in July 2021 that 50.000 people have been directly hit by the spyware. But stolen information can involve a victims’ network bringing the total to much more.   ⚠ In February 2024 the threat was brought back into focus with the detection of the Pegasus spyware in the smartphones of two European parliamentarians and a staff member.   ⬇ Find an analysis of Pegasus' operating method and the key takeaways from the spyware in this article: https://lnkd.in/gjGyzDdC #pagasus #spyware #malware #cybersecurity

🚨 Malware Alert: South Korean Telecom Company Attacks Customers 🚨 This started in 2020 but it feels like a 2024 headline... Recent news has revealed a shocking incident where KT Corporation, one of South Korea's largest telecom providers, deliberately infected over 600,000 users with malware to prevent them from using a file-sharing service. This malicious act has caused widespread issues, including missing files, strange folders, and even disabled PCs for many customers. The issue started in May 2020 when Webhard, a Korean cloud service provider, faced numerous user complaints about unexplained errors. An in-depth investigation uncovered that KT Corporation was behind the malware attack, targeting users of Webhard's Grid Program, which relies on BitTorrent peer-to-peer file sharing. Key Points: Malware Infection: Over 600,000 KT customers were infected with malware that created strange folders, made files invisible, and disabled PCs. Legal Violations: Authorities have identified and charged 13 individuals connected to the malware attack, citing potential violations of South Korean laws, including the Protection of Communications Secrets Act and the Information and Communications Network Act. KT’s Justification: KT claimed it planted the malware to control Webhard’s Grid Service, labeling it as malicious. However, the installation of malware without user consent is a severe breach of trust and legal boundaries. Ongoing Dispute: This incident is part of a long-standing dispute between Webhard and KT over network usage fees and the strain on KT's network caused by the Grid Service. This situation highlights the critical importance of transparent and ethical practices in cybersecurity and telecommunications. The deliberate use of malware by a service provider is unacceptable and undermines the trust customers place in their providers. It's a reminder that protecting users' rights and ensuring ethical standards should always be at the forefront of our industry. https://lnkd.in/gUa2K4U3 #CyberSecurity #MalwareAlert #Telecom #EthicalPractices #UserRights #KTCorporation #Webhard #DigitalTrust #CyberAwareness #Infosec

Zimperium's zLabs team has recently discovered a new and serious mobile threat: SMS Stealer malware. First identified in 2022, this malicious software has been found in over 105,000 samples and affected more than 600 global brands. The SMS Stealer uses deceptive ads and fake Telegram bots to gain access to victims' SMS messages, including those crucial one-time passwords (OTPs). Once access is obtained, the malware connects to one of its 13 Command and Control servers and transmits stolen SMS messages, leading to risks like account takeovers and identity theft. In simple terms, this malware translates to real-life trouble. Imagine someone sneaking into your SMS inbox, stealing your account keys, and then wandering into all your online accounts. Scary, right? And it's happening globally. Here's a question for you: How often do you review app permissions on your mobile? 🤔 It's time to be more vigilant. Regular checks and a skeptical eye towards odd ads or unexpected bots can save a lot of trouble. It's important that we, as a community, stay informed and proactive in protecting our digital lives. Let's work together to keep our information secure and address these emerging threats head-on. #cybersecurity #malware #android #privacy #infosec #technews

There’s a new type of spyware posing a major security risk to thousands of Android devices. TheTruthSpy snoops on your every move without you even knowing. It's part of a group of spyware apps designed to secretly track and monitor people's phones, often without their consent. Scary, right? But more worryingly, TheTruthSpy isn't just invasive, it's also downright dangerous. It leaves your personal data vulnerable to cyber criminals, putting your privacy at serious risk. So, how can your business keep its devices safe? First off, stay vigilant. Keep an eye out for any suspicious activity on your devices, like unexpected slowdowns or strange pop-ups. And make sure to regularly update your security software to stay one step ahead of cyber threats. Remember, when it comes to online safety, it's better to be safe than sorry. If you’d like help from my team checking your devices are secure - and keeping them that way - get in touch. #Spyware #TheTruthSpy #Android https://lnkd.in/e-qKxiTv

🔒 If your account gets hacked, take these immediate steps to secure your information: ✅ Change your password immediately. Create a strong, unique password for the compromised account and for any other accounts that may use similar credentials. ✅ Enable two-factor authentication (2FA). This adds an extra layer of security, requiring verification beyond just your password. ✅ Review your account activity. Check for any unauthorized transactions or changes and report them to the service provider. ✅ Notify your contacts. Let them know that your account was compromised, so they can be cautious of any suspicious messages from you. ✅ Scan your devices for malware. Ensure that the hack wasn't caused by malicious software on your computer or mobile device. Taking action quickly can limit the damage and protect your personal information! #DuoCircle #PhishingEmail #EmailProtection #EmailSecurity #AccountSecurity #CyberAwareness

There’s a new type of spyware posing a major security risk to thousands of Android devices. TheTruthSpy snoops on your every move without you even knowing. It's part of a group of spyware apps designed to secretly track and monitor people's phones, often without their consent. Scary, right? But more worryingly, TheTruthSpy isn't just invasive, it's also downright dangerous. It leaves your personal data vulnerable to cyber criminals, putting your privacy at serious risk. So, how can your business keep its devices safe? First off, stay vigilant. Keep an eye out for any suspicious activity on your devices, like unexpected slowdowns or strange pop-ups. And make sure to regularly update your security software to stay one step ahead of cyber threats. Remember, when it comes to online safety, it's better to be safe than sorry. If you’d like help from my team checking your devices are secure - and keeping them that way - get in touch. #Spyware #TheTruthSpy #Android https://lnkd.in/eAYn9iww