Towards Cybersecurity

Indian security researcher, Ehraz Ahmed found a critical flaw in the Truecaller app that may expose user data as well as device and location information. Truecaller provides various useful features to its users like call-recording, call-blocking, call-identification, chat & video, etc.   Truecaller is one of the most popular smartphone app in India and it has over 500 Million downloads worldwide including iOS and Android . Also, it has over 150 Million daily active users, and 1 Million premium users worldwide. According to a security researcher Ehraz Ahmed, the vulnerability existed in one of the APIs of the Truecaller app which allows hackers to insert a malicious link as the profile pic URL. Also, the user wouldn't differentiate this change as the profile pic URL is not shown publicly. So, whenever a user (victim) visits the malicious link added profile which the attacker created on the Truecaller app, the malicious script gets executed and the user's

Links are everywhere while you browse on the internet . Also, links are nowadays spreading at greater speed due to sharing through social media. There is no escaping from links and it is also not easy to predict all the time about its legitimacy and the sources to which it is redirecting. Out of curiosity, we often just click the link without actually being aware . So, it becomes very important to know which links are safe and which are not. So, whenever faced with a " to click or not to click " decision, stop, take a step back, and do some investigating. Tools, techniques, and common sense can help you figure out what's real and what's dangerous. If you want to learn about how to check if a link is safe to click or not then Click here . Hovering over the link and see the target address in the status bar is a good idea but it can not catch all the aspects of a malicious link. Luckily, there are several Link scanner websites available to check if a

The biggest smartphone maker, OnePlus has suffered a new data breach exposing personal and order information of its customers likely, as a result of a vulnerability in its online store website . The breach came to light after OnePlus started informing affected customers via email and published a brief FAQ page on the official forum to reveal information about the security incident. OnePlus found the breach just last week after an unauthorized user accessed the database of order information of its customers including their names, contact numbers, emails, and shipping addresses. OnePlus ensured that not all customers were affected and that the attackers were not able to access any passwords, payment information, and associated accounts . OnePlus took immediate steps to stop the intrusion and informs impacted users via email . If you are an impacted user then you will be getting an email. Though OnePlus did not provide any detail of the vulnerability that a

iPhones are widely believed to be the most secure devices one can get . Because Apple ensures that all apps execute in sandboxes to prevent them from accessing the data of other apps or interfering with iOS files. Also, Apple only allows apps from the App Store to be installed unless you have an enterprise developer account or jailbreak your iPhone. And keeping your iPhone updated with the latest version of iOS can protect you from hackers. But what about the software vulnerabilities, Apple doesn't know about that and thus can't patch . The danger was uncovered earlier this year when Google discovered that hackers had been using previously unknown iOS vulnerabilities to spy on users. So, It is an important thing that how users can protect their iOS devices more effectively because Apple bans antivirus products on the App Store due to its strict guidelines. But, it looks possible now for iOS users to protect their devices from hackers. Because, a cybersecuri

Many times, we share links among our friends on social media platforms like WhatsApp, Facebook, Instagram or Twitter. But do we know how safe they are? What can happen if you click on any malicious link? We never think of the following things : Links can drop various harmful programs, viruses on your device Links can steal your personal data by dropping spyware or keyloggers Use your browser for crypto mining which will affect your device's performance Even if your device is secured with antivirus, not all of them warn you before clicking such malicious links . And the moment you click on these, they will become big trouble for you. This can sometimes even be dangerous with regard to data security and identity theft. So, Be careful about what you click on. These days one of the quickest growing security issues is ransomware , which is often spread by the user unintentionally clicking dangerous links in emails, social media platforms, messengers, and other tool

Privacy and security research firm VPNpro has discovered six dangerous Android antivirus apps that have a total of 1.66 billion downloads available in the Google Play Store. These six free Android antivirus apps ask users to explicitly agree for dangerous permissions that they are not required to operate . And there is simply no legitimate reason for them to do so. Downloading these antivirus apps has resulted in putting users themselves as well as all of their precious data at risk. So, my advice here is pretty straightforward. Even if you are installing an antivirus app from Google Play Store, make sure it is a well-known brand and you are familiar with the permission is required to operate on. Downloading free apps onto Android devices is always a risk, especially if they are from unknown developers. Free Antivirus apps  –  Dangerous Permissions These six Android antivirus apps asking for dangerous permissions such as access to the microphone, camera, making call