Malloc Privacy Weekly

In this week's Malloc Privacy, we cover the latest events in the world of cybersecurity that affect the privacy and security of individuals and businesses.

In a significant legal victory for WhatsApp, the NSO Group has been ordered to pay over $167 million in damages for a 2019 spyware campaign that targeted more than 1,400 users, including dissidents, human rights activists, and journalists. The jury's ruling includes punitive and compensatory damages, marking the first major legal action against illegal spyware that threatens privacy and security. WhatsApp described the outcome as a critical deterrent to the spyware industry and a crucial step forward for privacy rights.

A recent study from researchers at King's College London and the University of London has exposed vulnerabilities in WhatsApp's multi-device group messaging, revealing both strong security features and significant weaknesses. The research, which involved reverse-engineering WhatsApp's system, highlighted five key contributions including a formal protocol description, insights on implementation, and an improved model for device revocation. A critical finding indicates that WhatsApp lacks cryptographic authentication for group membership, allowing potential exploitation by malicious actors. Despite its robust encryption and recovery mechanisms, users must remain vigilant and manage linked devices effectively to maintain their privacy and security.

To learn more about these developments and other news, read the article below.

NSO Group Hit with $168m Fine for WhatsApp Pegasus Spyware Abuse

NSO Group has been ordered to pay $168 million in damages for abusing its Pegasus spyware to hack approximately 1,400 WhatsApp users, including politicians, activists, and journalists. The California federal jury's decision marks a significant victory for privacy rights, following a six-year legal battle initiated by Meta after discovering an attempt by NSO to utilize zero-click spyware. This ruling has broader implications for tech companies and civil rights, as it exposes the secretive operations of such surveillance technology and encourages other affected entities to pursue similar legal actions. Meta plans to donate to digital rights organizations and aims to secure a court order preventing NSO from targeting WhatsApp in the future. NSO Group has stated its intention to appeal the ruling, maintaining that its technology is essential in combating serious crime and is used responsibly by authorized agencies.

Source: Infosecurity Magazine

How Malloc can help? 👉 Malloc keeps you safe and private online by detecting and blocking spyware, malware, and other malicious domains in real time. It does this using advanced spyware indicators, monitoring your app behavior and data transmission in real time. Stay connected to Malloc VPN at all times for maximum security and set the Android auto-scan feature to perform Malloc's security scans daily.

Signal clone used by Trump official stops operations after report it was hacked

A messaging service used by former National Security Advisor Mike Waltz has temporarily shut down due to an apparent hack. The service, developed by TeleMessage, which offers modified versions of Signal and other apps for government use, was breached resulting in the theft of sensitive data, including contents from direct messages and group chats. The hack revealed vulnerabilities in the archiving system, indicating that it lacks proper end-to-end encryption. Following the incident, TeleMessage's operations were paused for a thorough security investigation, while Waltz faces scrutiny over his handling of sensitive communications. The situation raises significant concerns about the security of modified messaging applications used by government officials.

Source: arsTechnica

How Malloc can help? 👉 Malloc's extensive features help reduce risks like phishing and spyware infections to devices that come with using messaging apps like Signal etc. Malloc VPN is a great supplement to existing end-to-end encryption (E2EE) in secure messaging apps and RCS messaging. It hides users' IP addresses, which are unique and accessible to hackers, ISPs, and governments, and encrypts internet traffic, offering an additional layer of protection.

WhatsApp provides no cryptographic management for group messages

WhatsApp's lack of cryptographic management for group messages presents significant vulnerabilities, allowing the potential for insiders or hackers to add unauthorized members to chats. Recent research revealed that while WhatsApp is fundamentally secure, it does not provide cryptographic measures to prevent new member additions, meaning the server can insert participants without verification. This flaw poses a serious threat for sensitive communications, as unauthorized individuals could access confidential discussions. In contrast, Signal offers cryptographic group management, requiring admin signatures for member additions, emphasizing the importance of security in messaging apps. Researchers stress that this security gap in WhatsApp has been overlooked, urging users engaged in sensitive conversations to consider alternative platforms.

Source: arsTechnica

How Malloc can help? 👉 Malloc's extensive features help reduce risks like phishing and spyware infections to devices that come with using messaging apps like WhatsApp. Malloc VPN is a great supplement to existing end-to-end encryption (E2EE) in secure messaging apps and RCS messaging. It hides users' IP addresses, which are unique and accessible to hackers, ISPs, and governments, and encrypts internet traffic, offering an additional layer of protection.

Google’s New Update Scans Your Screenshots For Locations

Google's latest update introduces a feature that scans screenshots for location information, using AI capabilities to help users keep track of places mentioned in their images without accessing tracking data. This optional addition to Google Maps aims to assist those planning trips by identifying place names in their screenshots, which can then be saved and viewed on a map or in a list. While presenting a potentially useful tool, the feature raises privacy concerns as it requires users to grant access to their photos. Although the application operates in the background and is off by default, users must carefully consider the balance between the benefits and privacy risks before enabling it.

Source: Forbes

How Malloc can help? 👉 Malloc VPN hides user location through its fast and secure WireGuard-based VPN. It also uses local, on-device filter lists to block trackers and malicious domains system-wide across all apps and browsers. Stay connected to Malloc VPN all the time for maximum security.

iOS 18—Here’s Why There’s A New Black Dot On Your iPhone

With the iOS 18.4 update, many iPhone users have noticed a new black dot on their devices, which is a privacy indicator indicating when the camera or microphone is in use. This feature, intended to enhance user awareness about active app permissions, was initially perceived as a bug but is confirmed to be a deliberate addition. The dot appears alongside existing orange and green indicators that signal camera and microphone usage, respectively. Users are advised to monitor app access to their devices' camera and microphone through Settings > Privacy & Security. The upcoming iOS 18.5 update promises additional privacy features, including an AI training system that maintains user confidentiality through techniques like differential privacy. Thus, the black dot serves not just as a visual cue but as part of a broader commitment to enhancing privacy on Apple devices.

Source: Forbes

How Malloc can help? 👉 While Apple has included certain privacy-enhancing features in the latest iOS update, iOS has a unique mobile advertising ID that needs to be disabled for maximum privacy, and users also need to turn off 1st party data collection in the privacy settings. Malloc VPN hides user location through its fast and secure WireGuard-based VPN. It also uses local, on-device filter lists to block trackers and malicious domains and thus blocks advertising system-wide across most apps on iOS, helping reduce data collection and spying on users by third parties, thereby helping users stay secure and private on their mobile devices.

Google fixes actively exploited FreeType flaw on Android

Google has released its May 2025 security updates for Android, addressing 45 security flaws, including a high-severity zero-click FreeType 2 vulnerability, tracked as CVE-2025-27363, which can lead to arbitrary code execution. Discovered by Facebook security researchers, this flaw impacts all FreeType versions up to 2.13, allowing exploitation through malicious TrueType files that lead to out-of-bounds writes in vulnerable code. The update addresses various security gaps in Android Framework, System, and Google Play, primarily affecting versions 13, 14, and 15, while users on older versions are advised to upgrade or consider third-party distributions for security fixes.

Source: Bleeping Computer

How Malloc can help? 👉 An up-to-date Android or iOS device is essential for safety from all kinds of threats. An additional security app like Malloc further complements security and is especially crucial for devices that are not actively updated. This includes a large number of old and even new Android devices, as well as older iOS devices still in use, posing a significant threat to their users' digital security and privacy.

Analysis of AI tools: 84% breached, 51% facing credential theft

A recent report highlights alarming cybersecurity risks associated with AI productivity tools, revealing that 84% of analyzed tools have suffered data breaches. The rapid adoption of these tools without employer approval or IT oversight is contributing to severe security vulnerabilities, with 93% of AI users relying on insecure personal accounts for work tasks. Only 14% of workplaces have established AI policies, creating unmonitored environments that open pathways for credential theft and potential data leaks. Significant concerns arise from weak SSL/TLS configurations and poor infrastructure management, making most popular AI tools targets for cyber threats. The report emphasizes the urgent need for businesses to treat every AI integration as a potential entry point for attacks and to implement stronger security measures.

Source: Cybernews

How Malloc can help? 👉 Users must be careful when downloading and using AI and other apps that collect significant amounts of personal data. While app developers are responsible for following standard security practices, Malloc further secures personal data through its VPN by hiding IP locations, blocking trackers and HTTP traffic, and detecting permission misuse by apps that collect sensitive data, subsequently alerting users.

iOS cat game leak exposes 450K users

A significant data leak has emerged from the iOS game "Cats Tower: The Cat Game!", with over 450,000 users potentially compromised. Researchers found that the app, developed by Rhino Games, had a Firebase misconfiguration exposing critical information such as usernames, IP addresses, and Facebook access tokens. This could enable hackers to track users and even hijack their Facebook accounts for scams. The app's code was particularly dangerous, containing hardcoded secrets like API keys and client IDs, which should never be publicly accessible. Alarmingly, the analysis revealed that 71% of iOS apps studied leak at least one sensitive secret, raising concerns about the overall security practices of app developers.

Source: Cybernews

How Malloc can help? 👉 Malloc's Malicious App Scan helps detect malicious and rogue apps, their permission misuse, and trackers, and warns users. Malloc helps remove these apps from the device to protect user privacy. It also comes with a VPN to block trackers and HTTP requests, hide IP locations, and encrypt traffic.

Warning — 19 Billion Compromised Passwords Have Been Published Online

A stunning report reveals that 19 billion compromised passwords are currently available online, a significant increase fueled by rampant infostealer malware attacks. Of these passwords, 94% are reused across different accounts, and 42% are short, making them particularly vulnerable to brute force attacks. Security experts emphasize the need for immediate action to prevent password vulnerabilities, highlighting that default passwords remain a major issue. Additionally, the rise of SMS phishing by groups like the Smishing Triad and Panda Shop underscores the critical security gaps in mobile communication, necessitating urgent reforms within the cybersecurity industry to protect users from widespread credential theft and fraud.

Source: Forbes

How Malloc can help? 👉 Malloc helps minimize data leaks from the device in numerous ways. Its on-device tracker blocker helps block third-party trackers, which collect sensitive user information. Malloc VPN hides IP location and encrypts user traffic. Malloc detects spyware and malware via its security and malicious app scan. These help prevent the leaking of sensitive personal data, like usernames and passwords, to malicious actors. Stay tuned as we continue to innovate and add more features to Malloc to further protect our users.

Study reveals the extent of user data collection by various mobile browsers

Chrome and Safari dominate the mobile browser market, controlling 90% of market share, with Chrome being the most data-hungry, collecting 20 types of data including financial details and contact lists. Bing and other browsers like DuckDuckGo and Firefox follow, with varying levels of data collection. For instance, Bing ranks second but gathers only 12 types of data, while DuckDuckGo and Firefox focus on privacy, limiting data to basic identifiers and usage data. Brave and TOR are noted for their minimal data practices, with TOR collecting no data at all. Additionally, browsers like Opera and Bing utilize data for third-party advertising and tracking purposes, raising concerns about user privacy and the potential sale of tracking data to brokers.

Source: Help Net Security

How Malloc can help? 👉 Malloc helps prevent third-party data collection. It is also a powerful security and privacy companion for mobile browsing. Malloc can block trackers system-wide, including in browsers, and its fast WireGuard-based VPN hides IP locations and encrypts user traffic, playing an invaluable role in protecting your mobile browsing privacy without slowing you down. Malloc also blocks insecure HTTP websites and malicious and phishing domains, helping to secure users.