devices
-
Blog
encrypted messaging between Android and iOS devices coming, says GSMA – Computerworld
The result is that if you want to send a secure RCS message between Android devices, you need to use Google’s own Messages app at both ends; it implements E2EE using the well-worn Signal protocol. Similarly, Apple adopted RCS in iMessage last year, but with a proprietary implementation of E2EE. In short, it’s a confusing jumble. This is one reason…
Read More » -
Blog
Nearly a million devices were infected in a huge GitHub malvertising campaign
Microsoft has alerted users to a malvertising campaign leveraging GitHub to infect nearly 1 million devices around the world. A new advisory from Microsoft Threat Intelligence stated that in December 2024 it detected a large-scale campaign using the developer platform as the primary vehicle to deliver the initial access payloads used in attacks. The campaign’s initial stage injects adverts into…
Read More » -
Blog
Billions of Devices at Risk of Hacking Due to Hidden Commands
Tarlogic team giving their presentation during RootedCON. Image: Tarlogic Billions of devices worldwide rely on a widely used Bluetooth-Wi-Fi chip that contains undocumented “hidden commands.” Researchers warn these commands could be exploited to manipulate memory, impersonate devices, and bypass security controls. ESP32, manufactured by a Chinese company called Espressif, is a microcontroller that enables Bluetooth and Wi-Fi connections in numerous…
Read More » -
Blog
New Chirp tool uses audio tones to transfer data between devices
A new open-source tool named ‘Chirp’ transmits data, such as text messages, between computers (and smartphones) through different audio tones. The tool, developed by cybersecurity researcher solst/ICE, maps each character into a specific sound frequency and plays it along with real-time visualization. Other microphone-equipped computers running Chirp may capture the sound and translate the message back into text. The project allows…
Read More » -
Blog
Undocumented commands found in Bluetooth chip used by a billion devices
Update 3/9/25: After receiving concerns about the use of the term ‘backdoor’ to refer to these undocumented commands, we have updated our title and story. Our original story can be found here. The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains undocumented commands that could be leveraged for attacks. The…
Read More » -
Blog
Undocumented “backdoor” found in Bluetooth chip used by a billion devices
The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented “backdoor” that could be leveraged for attacks. The undocumented commands allow spoofing of trusted devices, unauthorized data access, pivoting to other devices on the network, and potentially establishing long-term persistence. This was discovered by Spanish researchers Miguel Tarascó…
Read More » -
Blog
BadBox malware disrupted on 500K infected Android devices
The BadBox Android malware botnet has been disrupted again by removing 24 malicious apps from Google Play and sinkholing communications for half a million infected devices. The BadBox botnet is a cyber-fraud operation targeting primarily low-cost Android-based devices like TV streaming boxes, tablets, smart TVs, and smartphones. These devices either come pre-loaded with the BadBox malware from the manufacturer or…
Read More » -
Blog
New Eleven11bot botnet infects 86,000 devices for DDoS attacks
A new botnet malware named ‘Eleven11bot’ has infected over 86,000 IoT devices, primarily security cameras and network video recorders (NVRs), to conduct DDoS attacks. The botnet, which is loosely linked to Iran, has already launched distributed denial of service (DDoS) attacks targeting telecommunication service providers and online gaming servers. Eleven11bot was discovered by Nokia researchers who shared the details with…
Read More » -
Blog
Alexa Plus — here’s the Amazon devices that will and won’t support it
Amazon has finally unveiled its upgraded Alexa Plus virtual assistant which features a more conversational tone, better personalization and AI smarts to help you get even more done. While we initially thought all of this extra functionality might be locked behind yet another subscription service, Alexa Plus will be available for free for everyone with an Amazon Prime membership. Alternatively,…
Read More » -
Blog
ASUS RT-BE92U review: The router for IoT devices
Smart homes are no longer a futuristic concept but a reality for many people worldwide. In a smart home, many devices require wireless connectivity on the 2.4 GHz frequency band: sensors, surveillance cameras, vacuum cleaners, air purifiers, smart bulbs, smart plugs, and so on. Having a router that offers more bandwidth to IoT devices is an excellent idea in this…
Read More »