Android scam: Firms fined over $500,000 for malicious apps’ hidden subscriptions

April 9, 2025

Three UK firms have been fined over $500,000 for a scam that involved Android apps signing up to a subscription service, and suppressing notifications informing the victim they were being charged, according to The Guardian.

Source: Read More

Previous ArticleTorrentLocker: Racketeering ransomware disassembled by ESET experts

Next Article Identity theft – six tips to help keep yours safe

Highlights

CVE-2025-4917 – PHPGurukul Auto Taxi Stand Management System SQL Injection Vulnerability

May 19, 2025

CVE ID : CVE-2025-4917

Published : May 19, 2025, 8:15 a.m. | 3 hours, 1 minute ago

Description : A vulnerability classified as critical has been found in PHPGurukul Auto Taxi Stand Management System 1.0. Affected is an unknown function of the file /admin/new-autoortaxi-entry-form.php. The manipulation of the argument drivername leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Building smarter interactions with MCP elicitation: From clunky tool calls to seamless user experiences

From Zero to MCP: Simplifying AI Integrations with xmcp

Distribution Release: Linux Mint 22.2

Coded Smorgasbord: Basically, a Smorgasbord

Drupal 11’s AI Features: What They Actually Mean for Your Team

Drupal 11’s AI Features: What They Actually Mean for Your Team

Why Data Governance Matters More Than Ever in 2025?

Perficient Included in the IDC Market Glance for Digital Business Professional Services, 3Q25

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

Distribution Release: Linux Mint 22.2

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

Android scam: Firms fined over $500,000 for malicious apps’ hidden subscriptions

How to Fine-Tune Large Language Models

Scaling Up Reinforcement Learning for Traffic Smoothing: A 100-AV Highway Deployment

AdvPhishing — Advanced Phishing Toolkit

K4DirStat – small utility program

Exact Match Search with Sitecore Search

CVE-2025-29001 – ZoomIt WooCommerce Shop Page Builder Missing Authorization Vulnerability

CVE-2025-4917 – PHPGurukul Auto Taxi Stand Management System SQL Injection Vulnerability

CVE-2025-5477 – Sony XAV-AX8500 Bluetooth L2CAP Protocol Heap-based Buffer Overflow Remote Code Execution Vulnerability

When Browsers Become the Attack Surface: Rethinking Security for Scattered Spider

CVE-2025-4185 – Wangshen SecGate 3600 File Path Traversal Vulnerability

Android scam: Firms fined over $500,000 for malicious apps’ hidden subscriptions

Related Posts