SMS fraud
-
Unpatched OnePlus flaw lets rogue apps access SMS data, Rapid7 says
Rapid7 has disclosed an unpatched vulnerability in OnePlus OxygenOS that could allow rogue apps to access SMS data and metadata without user interaction, due to exposed content providers in the Telephony package. The flaw, CVE-2025-10184, affects OxygenOS 12 through 15 and remains unpatched as OnePlus investigates; a PoC exploit has been published.
-
China’s Smishing Triad Expands Phishing Tactics, Directly Targeting Banks
The Smishing Triad, a group of cybercriminals based in China, has expanded its phishing operations from impersonating toll road operators to directly targeting international banks and financial institutions, raising significant cybersecurity concerns.
-
Surge in Phishing Attacks Imitating E-ZPass and Toll Authorities
A significant increase in phishing scams impersonating toll agencies such as E-ZPass is causing concern among users, with messages aimed at stealing personal information on the rise.
-
Russian Authorities Arrest Suspects Behind Mamont Banking Trojan
Russian authorities have made significant strides in combating cybercrime with the arrest of three suspects involved in the development of the Mamont malware, a banking trojan targeting Android devices. The arrests, part of a broader crackdown on cyber threats, highlight ongoing efforts to address the rising challenges posed by financial fraud.
