Truffle Security, creators of the new XSS Hunter tool that detects bugs and security vulnerabilities, elicited concern by allegedly inspecting sensitive user data. The company tweeted statistics about vulnerabilities it found, leading to accusations of infringing user privacy. Truffle swiftly deleted the tweet and defended its practice, claiming the reports viewed by employees were anonymised.

Hackers are selling counterfeit phones with crypto-stealing malware
Kaspersky has identified thousands of low-cost Android smartphones sold online that come with preinstalled malware programmed to steal cryptocurrency details. The devices are infected with