Latest news with #GooglePlayProtect
Yahoo
4 days ago
- Business
- Yahoo
S'pore vulnerabilities are no different from those of other nations: Commissioner of Cybersecurity
SINGAPORE – Cyber-threat levels have heightened amid geopolitical rivalries, with some states trying to coerce countries such as Singapore into taking or refraining from certain actions. Singapore's Cyber Security Agency's (CSA) chief executive David Koh warns that in this realm, the Republic's vulnerabilities are no different from those of any other nation. 'Train systems can be disrupted, power plants, water systems. It will move to a new dimension, where you will encounter real-world harms that will affect all of us,' he said. Mr Koh, who is also the country's first Commissioner of Cybersecurity, holds legal authority to investigate cyber threats and incidents, ensuring the continuity of essential services during cyber attacks. 'When we first started, the majority of threats were straightforward – web face defacements, DDoS (distributed denial of service) attacks. They were a bit more like digital graffiti,' said the former defence specialist in the armed forces, who has been CSA's chief executive since its founding 10 years ago. July 18 marks its 10th anniversary. These threats have grown in complexity as the economy has become more interconnected through the use of digital services. That means the agency has had to extend its umbrella, working with the private sector, to cover the man in the street. For instance, in 2024, CSA partnered with Google to launch Google Play Protect, which blocks malicious apps once detected. Google has since introduced the feature to places such as Brazil, India, South Africa, the Philippines, Thailand and Hong Kong. Mr Koh said that such a partnership would have been unimaginable 10 years ago. Today, besides chairing the United Nations' Open-Ended Working Group on cyber security, Singapore is also passing on its knowledge to its Asean neighbours and countries such as Japan, which is in the process of passing cyber-security laws. 'It is in Singapore's interest to support the international rules-based system; not just physical trade, but goods and services are increasingly also being transacted digitally,' Mr Koh said. Countries justifiably want control of their national security and have different tolerance levels for personal data sharing, he said, noting that interoperability can still be achieved. Singapore, Britain, Germany and Australia also co-lead the International Counter Ransomware Initiative. Singapore businesses, despite CSA's advice to refuse ransomware demands, routinely cave in, according to surveys. High-profile ransomware cases here in 2024 included those of law firm Shook Lin & Bok, the Jumbo Group and Mustafa. Recent polls by global security services firms Bitdefender and Sophos found that companies here are more likely than their global peers to keep silent about security breaches and pay up, and are less likely to negotiate the amounts. But there are no plans to legislate ransomware reporting, which is now voluntary. 'Cyber security, ultimately, is a risk management issue. It is not possible for us to mandate a standard of cyber security for everybody. It's not a one-size-fits-all,' Mr Koh said. Instead, the CSA hopes to raise reporting by working with the Singapore Business Federation to offer help to victims. With 70 per cent of companies that support the country's essential services coming from the private sector, the CSA has, over the years, evolved to assist businesses on security issues and work on training and professional standards. From about 70 employees when it started, the outfit has since grown to a headcount of around 500. Singapore was one of the first countries to establish a cyber-security agency and one of the first to have a Cybersecurity Act, which was enacted in 2018. The US, Britain, France and Australia were other leaders in the domain then. CSA's sphere now includes scams, national threats, cyber-security certifications and data security, which it works on with other government agencies, businesses and institutes of education and training. Singapore ranks well in cyber maturity compared with many countries, but the issue is how it compares with a determined attacker, Mr Koh said, urging Singaporeans to play a part. 'The weakest link can be the company that doesn't patch its software, uses weak passwords, or the supplier in the supply chain who makes a mistake, who doesn't take cyber security seriously. It could be the employee who clicks on the phishing e-mail, or the individual customer who comes in and has unsafe practices,' he said. Sometimes, extra security comes with friction. 'You need to recognise that this is a trade-off between convenience and security. Sometimes, it also translates into a little bit more cost. We must be willing to pay this cost,' Mr Koh said. Source: The Straits Times © SPH Media Limited. Permission required for reproduction Discover how to enjoy other premium articles here
Straits Times
6 days ago
- Politics
- Straits Times
S'pore vulnerabilities are no different from those of other nation: Commissioner of Cybersecurity
Find out what's new on ST website and app. Singapore's Cyber Security Agency's chief executive David Koh warned that in this realm, Singapore's vulnerabilities are no different from those of any other nation. SINGAPORE – Cyber threat levels have heightened amid geopolitical rivalries, with some states trying to coerce countries such as Singapore into taking or refraining from certain actions. Singapore's Cyber Security Agency's chief executive David Koh warned that in this realm, Singapore's vulnerabilities are no different from those of any other nation. 'Train systems can be disrupted, power plants, water systems. It will move to a new dimension, where you will encounter real world harms that will affect all of us,' he said. Mr Koh, who is also the country's first Commissioner of Cybersecurity, holds legal authority to investigate cyber threats and incidents, ensuring the continuity of essential services during cyber attacks. 'W hen we first started, the majority of threats were straightforward – web face defacements, DDoS (Distributed Denial of Service) attacks. They were a bit more like digital graffiti,' said t he former defence specialist in the armed forces, who has been CSA's chief executive from its founding 10 years ago. July 18 marks its 10th anniversary. These threats have grown in complexities as the economy grew more interconnected through the use of digital services. That meant the agency had to extend its umbrella, working with the private sector, to cover the man on the street. For instance, in 2024, the agency partnered Google to launch Google Play Protect, which blocks malicious apps once detected. Google has since introduced the feature to countries such as Brazil, India, South Africa, Philippines, Thailand and Hong Kong. Top stories Swipe. Select. Stay informed. World Trump diagnosed with vein condition causing leg swelling: White House World Trump was diagnosed with chronic venous insufficiency. What is it? Singapore 5 foreigners charged over scheme to deliberately get arrested in S'pore to sell sex drugs here Asia Appointment of Malaysia's new chief justice eases controversy over vacant top judge seats for now Singapore Driverless bus in Sentosa gets green light to run without safety officer in first for S'pore Singapore SPCA appoints Walter Leong as new executive director World US strikes destroyed only one of three Iranian nuclear sites, says new report Business Granddaughter of late Indonesian tycoon pays $25 million for Singapore bungalow Mr Koh said that such a partnership would have been unimaginable 10 years ago. Today, besides chairing the United Nations' Open-ended Working Group on cybersecurity, Singapore is also passing on its knowledge to Asean neighbors and countries such as Japan , which is in the process of passing cybersecurity laws . 'It is in Singapore's interest to support the international rules-based system, not just physical trade, but goods and services are increasingly also being transacted digitally,' he said. Countries justifiably want control of their national security, and have different tolerance levels for personal data sharing, he said, noting that interoperability can still be achieved. Singapore, Britain, Germany and Australia also co-lead the International Counter Ransomware Initiative. Singapore businesses, despite CSA advice to refuse ransomware demands, routinely cave in, according to surveys. High-profile cases in 2024 included law firm Shook Lin & Bok, the Jumbo Group and Mustafa. Recent polls by global security services firms Bitdefender and Sophos found that firms here are more likely than their global peers to keep silent on security breaches, pay up and less likely to negotiate amounts. But there are no plans to legislate ransomware reporting, which is now voluntary. 'Cybersecurity, ultimately, is a risk management issue. It is not possible for us to mandate a standard of cybersecurity for everybody. It's not a one-size-fits-all,' he said. Instead, the CSA hopes to raise reporting by working with the Singapore Business Federation to offer help to victims. With 70 per cent of companies that support the country's essential services coming from the private sector, the CSA has over the years, evolved to assist businesses on security issues and working on training and professional standards. From about 70 employees when it was started, the outfit has since grown to a headcount of around 500. Singapore was one of the first countries to establish a cybersecurity agency and one of the first to have a Cybersecurity Act, which was enacted in 2018. The US, Britain, France, Australia were other leaders in the domain then. The agency's sphere now includes scams, national threats, cyber security certifications and data security, which it works on with other government agencies, businesses and institutes of education and training. Singapore's cyber maturity ranks well compared with many countries, but the issue is how it compares with a determined attacker, he said, urging Singaporeans to play a part. 'The weakest link can be the company that doesn't patch its software, uses weak passwords, or the supplier in the supply chain who makes a mistake, who doesn't take cybersecurity seriously. It could be the employee who clicks on the phishing email, or the individual customer who comes in and has unsafe practices.' Sometimes, extra security comes with friction. 'You need to recognise that this is a trade-off between convenience and security. Sometimes, it also translates into a little bit more cost. We must be willing to pay this cost.'
Engadget
6 days ago
- Engadget
Google is suing the BadBox 2.0 botnet group
Google has filed a lawsuit against the operators of a what is believed to be the largest smart TV botnet in the world — BadBox 2.0. The company said in its complaint that this China-based botnet had compromised more than 10 million uncertified devices — including TV streaming boxes, tablets and projectors. Google said that cybercriminals pre-installed malware or used malicious apps to download malware on hardware that was running open-source Android software. These compromised devices were then used to conduct "large-scale ad fraud and other digital crimes." In addition to the lawsuit, which is an injunction against the botnet's operators as well as unspecified damages, Google said it has updated Google Play Protect to automatically block known apps associated with BadBox 2.0. The FBI is also working to dismantle BadBox 2.0, with an alert about the operation issued last month. The original BadBox botnet campaign, which also primarily infiltrated Android operating systems, was identified in 2023 and disrupted in 2024. Google has been a target for this type of cybercriminal activity before. In 2021, it disrupted Glupteba, which at the time was one of the largest botnets with about one million Windows PCs impacted. Read the full complaint below: To view this content, you'll need to update your privacy settings. Please click here and view the "Content and social-media partners" setting to do so.
Tom's Guide
03-07-2025
- Tom's Guide
Catwatchful child monitoring app is actually spyware that leaked user data online — how to stay safe
Catwatchful is an app that claims to be a 'child monitoring app' but is, in actuality, a spyware app that acts invisibly on phones to send a victim's data back to a dashboard viewable by the person who downloaded it. Also called 'stalkerware' this app experienced a data breach via a security flaw that exposed both the email addresses and passwords of thousands of customers – and the phone data of thousands of victims. Security researcher Eric Daigle reported in a blog post that a vulnerability revealed the spyware app's full database of email addresses and plaintext passwords for more than 62,000 customers and phone data from 26,000 victims. Additionally, as reported by TechCrunch, the administrator of the Catwatchful operator was also exposed in the breach. The compromised devices were from (in order of victim numbers) Mexico, Colombia, India, Peru and Argentina among others. The Catwatchful app uploads a victim's phone contents to a dashboard, which is viewable by the person who secretly installed the app, which includes a concerning amount of data such as photos, messages, access to front and rear cameras, microphone access and real time location data. This presents an obvious security risk to the victim – stalkerware and spyware apps are non-consensual surveillance apps that are frequently used against domestic and romantic partners in ways that violate laws which is exactly why these types of apps are banned and need to be downloaded by someone who has direct physical access to the phone. Catwatchful is not the first spyware app to suffer a data breach; according to TechCrunch, it's at least the fifth this year – a clear indication that consumer grade spyware offerings are spreading more widely even though what they are offering is 'shoddy codding and security failings that expose both paying customers and unsuspecting victims to data breaches.' Get instant access to breaking news, the hottest reviews, great deals and helpful tips. According to Daigle, the Catwatchful API was unauthenticated which is what allowed anyone on the open internet to interact with the user database without a login; the whole database of email addresses and passwords were exposed. While the API was briefly taken down, it was then back up again. Google is apparently investigating the Firebase involvement but has added protections that enable Google Play Protect to alert users when it detects Catwatchful spyware or its installer on a user's phone. Catwatchful claims it cannot be uninstalled, however, there are still things that can be done. First, as with any spyware or stalkerware, have a safety plan in place. Disabling this type of software can potentially alert the person who installed it in the first place, so always protect yourself first. If you're looking for additional resources, you might want to contact the Coalition Against Stalkerware. Android users who suspect they have Catwatchful installed can dial 543210 on their device's keypad and hit call. If its installed, it should appear on the screen - this code is a backdoor feature to regain access to the settings once the app has been hidden but it also shows if the app is installed, so if you use it you may also ping the person who installed it. Next steps: Make sure Google Play Protect is enabled, and check the permissions sections of your phone. If you don't recognize the apps that have permissions that should be a clear warning sign, particularly accessibility services. Check your Android device's app list and remove anything you didn't approve or don't recognize. Also make sure you have a lock screen enabled and protect your accounts using two-factor authentication whenever possible to prevent anyone from accessing them easily. For added security, the best Android antivirus apps can help provide you with additional protection like a VPN and identity theft protection. Spyware and stalkerware are very real threats that need to be taken extra seriously as they typically aren't installed on your phone by hackers but by someone you know. This breach is certainly concerning for those affected by it but it also serves as a wakeup call and a reminder of the threat posed by these types of apps.
&w=3840&q=100)
Business Standard
02-07-2025
- Business Standard
Samsung to introduce unified security and privacy hub with One UI 8: Report
Samsung appears to be working on a new privacy and security feature called 'Alert Center', which could debut in its upcoming One UI 8 software update. As reported by Android Authority, this centralised hub is designed to help users manage sensitive app permissions and device safety alerts more effectively, all in one place. Unlike existing tools scattered across Android settings, such as the Privacy Dashboard or Google Play Protect, Samsung's Alert Center will reportedly combine both privacy and security notifications in a streamlined and user-friendly interface. According to Android Authority, the feature was discovered in an internal One UI 8 build that revealed multiple code strings detailing its functionality. Privacy alerts with app-level detail As per Android Authority's analysis, Alert Center will inform users when apps access sensitive information — like location, microphone, camera, contacts, or text messages — especially if those permissions are used excessively or in the background. The system will reportedly name specific apps in its warnings, such as 'XYZ accessed your camera' or 'ABC accessed your text messages in the background.' It will also prompt users to review apps they've previously marked as 'trusted,' in case those apps request additional permissions over time. Security alerts for real-world threats Beyond privacy, Alert Center is also expected to function as an advanced security monitor. Android Authority notes that it may warn users about potential threats like: Detection of malware through Google Play Protect or Samsung's App Protection Outdated security patches or system software Suspicious activity in Google or Samsung accounts Missing biometric protections (e.g., fingerprint or face unlock not set up) Disabled location tracking, which can affect features like Find My Mobile Several alerts may come with actionable buttons, such as 'Go to Software Update' or 'Go to App Protection,' making it easier for users to fix issues immediately without navigating complex settings. Simplifying digital safety According to Android Authority, Samsung's Alert Center could offer a more proactive and consolidated approach than Google's own Android tools. While much of this information is already available across Android settings, Alert Center's goal appears to be about making privacy and security easier to understand and manage for the everyday smartphone user. At the moment, it's unclear when Samsung will officially roll out this feature, or which Galaxy devices will support it first. Since it was discovered in a pre-release build of One UI 8, we can expect more concrete details once Samsung begins beta testing the update publicly. Notably, One UI 7 update was released recently in April. Samsung One UI 7 update: Features The One UI 7 update brought a cleaner home screen design and refreshed One UI widgets, creating a more unified visual experience. The Galaxy AI features introduced in this update include: Now Bar: One UI 7 added live updates to the lock screen. With a quick swipe, users can view essential info—like workout stats or Galaxy Buds playback—without unlocking their device. AI Select: While watching a video, users can access the Edge Panel, tap the 'AI Select' icon, and instantly save a section as a GIF. Writing Assist: This tool makes it easy to summarise or auto-format selected text for better readability and quicker editing. Drawing Assist: According to Samsung, this feature helps turn ideas into visuals using a mix of inputs, such as sketches, images, or written prompts. Audio Eraser: This lets users isolate specific sounds and remove background noise from videos, making professional-style editing easier for everyday users.
