Cybersecurity Headlines Device code attacks, phone TOAD solution, more telecoms breached
Feb 17, 2025
Hackers are targeting users with device code phishing attacks, raising alarms about email theft. In response, an innovative Anti-TOAD feature is being developed to thwart in-call sideloading attempts. Meanwhile, Chinese hackers continue to breach U.S. telecoms using unpatched Cisco routers, exposing the need for enhanced security measures. The discussion also touches on the IRS's acquisition of an NVIDIA SuperPod AI supercomputer, aiming to bolster fraud detection and highlight the ongoing battles in the cybersecurity landscape.
AI Snips
Chapters
Transcript
Episode notes
Device Code Phishing Attacks
- Hackers are using device code phishing to target organizations in various sectors.
- This technique targets devices requiring login codes but lacking keyboards/browsers, like smart TVs.
Anti-TOAD Feature
- Android 16 Beta 2 includes a feature to prevent in-call sideloading attacks.
- This combats "Telephone-Oriented Attack Delivery" (TOAD), where scammers trick users into installing malware.
Cisco Router Exploits
- Chinese hackers from the Salt Typhoon group are breaching US telecoms via unpatched Cisco routers.
- They exploit vulnerabilities, leading to breaches in the US, South Africa, Italy, and Thailand.