Stagefright returned to haunt the Android platform this week after security researchers at Zimperium Labs discovered two new variants that could leave pretty much every Android user at risk.
Meanwhile, T-Mobile US was forced to admit that up to 15 million customer records, including names, addresses and Social Security numbers, had been stolen after a hacker compromised the encryption of its credit monitoring service, Experian.
Read on for more of the top security news of the week from V3.
Stagefright 2.0 Android flaw leaves a billion users open to attack
Two new Stagefright vulnerabilities were uncovered in Google's Android software which potentially leave up to one billion users at risk, according to security researchers at Zimperium Labs.
T-Mobile admits up to 15 million users affected by Experian data breach
US mobile carrier T-Mobile admitted that up to 15 million customer records had been compromised following a breach of data at its credit monitoring vendor, Experian.
WinRAR critical flaw leaves millions open to compressed file attacks
WinRAR users were being urged to be extra vigilant when handling uninvited compressed self-extracting files after researchers at Full Disclosure published proof-of-concept code exposing a critical flaw in the latest version of the software.
XOR DDoS botnet is using Linux-based computers to flood websites
Security researchers at Akamai uncovered Trojan malware being used to hijack Linux-based computer systems and build botnets to carry out distributed denial-of-service attacks.
Microsoft: We are not violating the privacy of Windows users
Microsoft moved to reassure Windows users that their private data is not at risk, following reports about invasive data collection policies.
Ex-FBI security expert warns Chinese attacks will only get worse despite cyber peace deal
Leo Taddeo, former FBI special agent in charge of the New York cyber division, suggested that the cyber truce between the US and China is a largely ceremonial affair.
"I think that both countries will continue to talk about it, but the fact is that it serves the Chinese interest to target [US] networks," he told V3 in an interview.
650,000 Chinese smartphones used to launch ad network DDoS attack
A massive flood of web traffic originating from smartphones in China was used in an attempt to disrupt an unnamed web server, according to security researchers at CloudFlare.
GCHQ Karma Police mass surveillance programme exposed in Snowden documents
GCHQ was found to be using sophisticated surveillance programmes known as Karma Police and Black Hole to scoop up data from "every visible user on the internet".
NHS apps caught sending unencrypted health data
A number of NHS-accredited medical mobile apps were found to be sending unencrypted sensitive information, leading to fears that personal health data may be at risk from cyber attack.
North Korean hackers reportedly step up their activity as tensions with the US increase
Ice Lake probably won't appear before 2019 at the earliest
Krzanich follows Kevin Plank of Under Armor and Kenneth Frazier of Merck
Release of latest version of Android imminent