The security news this week was dominated by malware after the discovery of YiSpecter and Kemoge, while stolen data from credit monitoring firm Experian was quickly put up for sale on the dark web.
In other news, Jimmy Wales, founder of Wikipedia, branded UK government plans on encryption “moronic” during his keynote at IP Expo.
Read on for the top security news of the week from V3:
FBI director warns encryption and social media helping terrorists flourish
FBI director James Comey warned that increased encryption and social media are being exploited by terrorists such as Islamic State to plan attacks and advertise for new recruits.
Apple removes apps from App Store after root certificate security concerns
Apple removed a number of applications from the App Store after fears that developers could snoop on user traffic by installing their own root certificates.
Kemoge mobile malware allows root access to Android devices
Threat researchers at FireEye uncovered a new variant of malicious adware spreading worldwide that can give hackers root access to Android devices.
Samsung denies Samsung Pay users affected by LoopPay cyber attack
Samsung denied reports that users of Samsung Pay are at risk after a breach at LoopPay, the US-based mobile payment developer that the company acquired in February.
Cisco dismantles $30m Angler exploit hacking operation
Threat researchers at Cisco disrupted hackers who were using the notorious Angler exploit kit, taking down a campaign that generated more than $30m in revenue annually.
Wikipedia founder Jimmy Wales slams government’s ‘moronic’ encryption rhetoric
Wikipedia founder Jimmy Wales criticised the UK government and prime minister David Cameron for comments suggesting that it will try to curb the use of encryption technologies.
Edward Snowden: No smartphone is safe from GCHQ spying
Former NSA contractor Edward Snowden warned that no smartphone is safe from snooping by GCHQ. In an interview with the BBC’s Panorama, Snowden outlined surveillance tools known as Dreamy Smurf, Nosey Smurf, Tracker Smurf and Paranoid Smurf that are used to conduct real-time snooping on smartphones.
Hackers using DDoS attacks as a ‘cyber smoke screen’ to mask wider threats
Hackers and cyber criminals have always used distributed denial-of-service attacks to target organisations across the world, but new research indicated that the attack method is quickly evolving as it becomes cheaper to create and deploy.
Apple YiSpecter malware targets non-jailbroken iOS devices
Security researchers at Palo Alto Networks uncovered a unique form of Apple malware, coined YiSpecter, that can infect non-jailbroken devices by abusing private APIs in iOS to install malicious applications.
Stolen T-Mobile customer data already for sale on the dark web
A cache of 15 million customer records stolen from T-Mobile’s credit monitoring service Experian was reportedly listed for sale on the dark web.
Apple fixes over 100 security vulnerabilities in El Capitan, iOS and Safari
Apple released fixes for over 100 security vulnerabilities across iOS 9, Safari and the recently unveiled OS X El Capitan 10.11.