💥 SimJacker#Vulnerability  (0-day under active attack) A new SIM card-based flaw could allow remote attackers to hijack and spy on any phone just by sending an SMS – regardless of which handset the victim is using. Read details — #infosec  #technews 

What’s more worrisome? According to researchers, a specific private company that works with Governments is actively exploiting #SimJacker  vulnerability for at least 2 years to conduct targeted surveillance on mobile phone users across several countries.

SimJacker flaw lets remote attackers to: ➡️Retrieve targeted device' location ➡️Send SMS on behalf of victims ➡️Spying on victims' surroundings by dialing call to attacker's number ➡️Spread malware by forcing phone browser to open malicious pages More ➤

Here's a write-up and proof-of-concept (PoC) for the latest system command execution #vulnerability  (CVE-2019-10392) that #Jenkins  patched just yesterday in the Git Client Plugin. via @phraaaaaaa 

😬 Yikes! #iOS13  will be released to the public next week—but with an #iPhone  lockscreen bypass #vulnerability  that Apple left unpatched even after the bug was reported privately 2 months ago. Learn how it works ➤ —by @Swati_THN  #privacy  #technews 

Mozilla Firefox launches free browser-based private VPN service under its "Firefox Test Pilot" program.

United States Treasury Department announces sanctions against 3 state-sponsored #NorthKorean  hacking groups accused for conducting several destructive cyber attacks on US critical infrastructure. —by @Swati_THN