{"id":64473,"date":"2022-07-16T09:32:18","date_gmt":"2022-07-16T06:32:18","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=64473"},"modified":"2025-09-06T14:39:23","modified_gmt":"2025-09-06T11:39:23","slug":"tor-updates-fake-whatsapp-apps-and-other-cybersecurity-events","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/tor-updates-fake-whatsapp-apps-and-other-cybersecurity-events\/","title":{"rendered":"Tor updates, fake WhatsApp apps and other cybersecurity events"},"content":{"rendered":"<p>We round up the week\u2019s most important cybersecurity news.<\/p>\n<div class=\"wp-block-text-wrappers-keypoints article_keypoints\">\n<ul class=\"wp-block-list\">\n<li>Tor has rolled out updates to its browser aimed at bypassing blocks and enhancing security.<\/li>\n<li>Twitter suffered a global outage due to &#8220;issues with internal systems&#8221;.<\/li>\n<li>WhatsApp chief warns about apps masquerading as the messenger that steal user data.<\/li>\n<\/ul>\n<\/div>\n<h2 class=\"wp-block-heading\"><strong>Tor Browser updates to help bypass blocks<\/strong><\/h2>\n<p>The Tor Project team unveiled Tor Browser 11.5 with updates designed to help users evade censorship.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">\ud83c\udf89 Big news: Tor Browser 11.5 is here! In this release, we&#8217;re bringing you automatic censorship detection and circumvention, redesigned Tor Network settings, Firefox&#8217;s HTTPS-Only Mode enabled by default, and improved font support.<\/p>\n<p>Take a look at what&#8217;s new in Tor Browser 11.5: <a href=\"https:\/\/t.co\/Tq5ldrhJcd\">pic.twitter.com\/Tq5ldrhJcd<\/a><\/p>\n<p>\u2014 The Tor Project (@torproject) <a href=\"https:\/\/twitter.com\/torproject\/status\/1547707648849588227?ref_src=twsrc%5Etfw\">July 14, 2022<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Among the new features is Connection Assist, which automatically bypasses access restrictions to the Tor network, taking into account the blocking characteristics in different jurisdictions. The developers also simplified and expanded the network connection settings section for manual configuration.<\/p>\n<p>Moreover, HTTPS-Only mode is now enabled by default. The HTTPS-Everywhere extension remains only in the Android version.<\/p>\n<p>For an explanation of what the Tor Browser is, why you might need it, and how to use it, see ForkLog\u2019s explainer cards.<\/p>\n<h2 class=\"wp-block-heading\"><strong>Britain delays passage of controversial online safety bill<\/strong><\/h2>\n<p>In Britain, voting on the online safety bill, which has sparked much debate among rights groups, has been postponed, the Financial Times reports.<\/p>\n<p>The document would require major tech platforms to tighten content regulation to combat illegal, potentially harmful and abusive materials. Non-compliance could attract fines of up to 10% of annual turnover.<\/p>\n<p>Many companies, including Google, Meta, and Twitter, as well as rights advocates, have warned that the bill threatens free speech and end-to-end encryption.<\/p>\n<h2 class=\"wp-block-heading\"><strong>A new Android malware has spread in Google Play<\/strong><\/h2>\n<p>Evina security researchers have discovered a new Android malware in the Google Play store that silently subscribes users to premium services.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Found new family of malware that subscribe to premium services \ud83d\udc40<\/p>\n<p>8 applications since June 2021, 2 apps always in Play Store, +3M installs \ud83d\udc80\ud83d\udc80<\/p>\n<p>No webview like <a href=\"https:\/\/twitter.com\/hashtag\/Joker?src=hash&#038;ref_src=twsrc%5Etfw\">#Joker<\/a> but only http requests<\/p>\n<p>Let\u2019s call it <a href=\"https:\/\/twitter.com\/hashtag\/Autolycos?src=hash&#038;ref_src=twsrc%5Etfw\">#Autolycos<\/a> \ud83d\udc7e<a href=\"https:\/\/twitter.com\/hashtag\/Android?src=hash&#038;ref_src=twsrc%5Etfw\">#Android<\/a> <a href=\"https:\/\/twitter.com\/hashtag\/Malware?src=hash&#038;ref_src=twsrc%5Etfw\">#Malware<\/a> <a href=\"https:\/\/twitter.com\/hashtag\/Evina?src=hash&#038;ref_src=twsrc%5Etfw\">#Evina<\/a> <a href=\"https:\/\/t.co\/SgTfrAOn6H\">pic.twitter.com\/SgTfrAOn6H<\/a><\/p>\n<p>\u2014 Maxime Ingrao (@IngraoMaxime) <a href=\"https:\/\/twitter.com\/IngraoMaxime\/status\/1547164768401858560?ref_src=twsrc%5Etfw\">July 13, 2022<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>The malware Autolycos has been identified in at least eight Android apps, two of which were available in Google Play at the time of researchers&#8217; publication. The infected apps had been installed more than three million times.<\/p>\n<h2 class=\"wp-block-heading\"><strong>Twitter outage hits users worldwide<\/strong><\/h2>\n<p>On July 14, users worldwide reported being unable to access Twitter.<\/p>\n<p>The company later attributed the outage to &#8220;issues with internal systems&#8221;.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">And we\u2019re back! We had some trouble with our internal systems that impacted many of you globally. Twitter should be up and running as expected \u2014 sorry for the interruption.<\/p>\n<p>\u2014 Twitter Support (@TwitterSupport) <a href=\"https:\/\/twitter.com\/TwitterSupport\/status\/1547621270182699009?ref_src=twsrc%5Etfw\">July 14, 2022<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<h2 class=\"wp-block-heading\"><strong>WhatsApp warns about fake versions of the messenger that steal user data<\/strong><\/h2>\n<p>Will Cathcart said the team found hidden malware in the Hey WhatsApp app and other similar ones that allegedly offer expanded functionality.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Reminder to <a href=\"https:\/\/twitter.com\/WhatsApp?ref_src=twsrc%5Etfw\">@WhatsApp<\/a> users that downloading a fake or modified version of WhatsApp is never a good idea. These apps sound harmless but they may work around WhatsApp privacy and security guarantees. A thread:<\/p>\n<p>\u2014 Will Cathcart (@wcathcart) <a href=\"https:\/\/twitter.com\/wcathcart\/status\/1546567955671961600?ref_src=twsrc%5Etfw\">July 11, 2022<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>In fact, these apps are designed to steal data from victims&#8217; phones. Cathcart said the company is working with Google Play to identify such fake messengers.<\/p>\n<p>ForkLog also covers:<\/p>\n<ul class=\"wp-block-list\">\n<li>Hackers drained about <a href=\"https:\/\/u1f987.com\/en\/news\/hacker-siphons-off-about-1-5-million-from-the-omni-protocol\">$1.5 million<\/a> from the Omni protocol.<\/li>\n<li>Attackers <a href=\"https:\/\/u1f987.com\/en\/news\/hackers-attacked-uniswap-liquidity-providers-through-a-fake-airdrop\">attacked Uniswap liquidity providers<\/a> through a fake airdrop.<\/li>\n<li>Yam Finance <a href=\"https:\/\/u1f987.com\/en\/news\/yam-finance-foils-3-1-million-hack\">fended off an attack<\/a> worth $3.1 million.<\/li>\n<li>In the second quarter, crypto projects <a href=\"https:\/\/u1f987.com\/en\/news\/crypto-projects-lose-over-670-million-to-hacks-in-q2\">lost more than $670 million<\/a> due to hacks, according to Immunefi.<\/li>\n<\/ul>\n<h2 class=\"wp-block-heading\">What to read this weekend?<\/h2>\n<p>We explain why Telegram is not the best service from a privacy standpoint, and what alternatives exist.<\/p>\n<p>Read ForkLog&#8217;s Bitcoin news on our <a href=\"\/\/telegram.me\/forklog\" target=\"\u201c_blank\u201d\" rel=\"\u201cnofollow\u201d noopener\">Telegram<\/a> \u2014 cryptocurrency news, prices and analytics.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We round up the week\u2019s most important cybersecurity news.<\/p>\n","protected":false},"author":1,"featured_media":64474,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1238,1233],"class_list":["post-64473","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybersecurity-digest","tag-industry-digests"],"aioseo_notices":[],"amp_enabled":true,"views":"28","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/64473","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=64473"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/64473\/revisions"}],"predecessor-version":[{"id":64475,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/64473\/revisions\/64475"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/64474"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=64473"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=64473"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=64473"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}