Tag: Vulnerability

Facebook Messenger Bug Exposed Contacts You Had Conversations With

A cybersecurity firm claims Facebook Messenger had a vulnerability that could reveal who users talked to. The security flaw was eventually fixed by Facebook.

Security March 7, 2019

QuadRooter Android Vulnerability Puts 900 Million Phones At Risk: Run This Scanner Now

Check Point reported a Stagefright level security liability in Android devices running on Qualcomm chipsets. Fortunately, the security firm also offers solutions to a problem that could be plaguing 900 million mobile devices.

Apps/Software August 8, 2016

Lenovo Advises Users To Uninstall Accelerator App Because Of Security Risk

Lenovo has advised users of its laptops and desktop PCs to uninstall the Accelerator App owing to the security risk attached. Even the Yoga lineup of laptops is vulnerable to MitM attacks.

Apps/Software June 4, 2016

Mozilla Wants To Know How FBI Exploited Vulnerability In Firefox Web Browser

Mozilla asks the court to disclose the Tor bug the FBI exploited to catch pedophiles.

Internet May 13, 2016

Feds Want To Know How Mobile Security Patches Are Rolled Out: Here's Why

Federal agencies - FCC and FTC - have requested mobile phone carriers and manufacturers to explain how and when they patch vulnerability issues. The agencies are getting concerned about a recent rise in security attacks.

Security May 10, 2016

Samsung Smart Home Security Red Flags Raised In IoT Security Research

Computer scientists from the University of Michigan have published an extensive report on the vulnerabilities in Samsung's Smart Home automation system. The researchers said such vulnerabilities 'expose a household to significant harm.'

Smart Home May 9, 2016

Millions Of Websites Exposed To Hacking Because Of ImageMagick Vulnerabilities

Many websites have become exposed to hacking because of ImageMagick flaws that were recently uncovered. Researchers say sites that allow their users to upload images are in danger of malicious attacks.

Internet May 6, 2016

Vulnerability In Popular Waze Navigation App Could Let Hackers Stalk You In Real Time

A team of researchers recently discovered a vulnerability in the Waze app that allows hackers to track the user’s driving and location details. Hackers can even go as far as creating fake traffic jams for more surveillance opportunities.

Apps/Software April 27, 2016

Zero-Day Vulnerability Bypasses Apple's Security Features To Compromise OS X And iOS Devices: Update Now

Apple’s OS X and iOS are subject to a zero-day vulnerability exploit that can have horrendous consequences, a SentinelOne researcher has reported. Here's what to do to keep hackers from messing with your Mac and iPhone.

Apps/Software March 28, 2016

API Vulnerability In Nissan Leaf Electric Vehicles Leaves Them Prone To Hacking

A security researcher revealed that a vulnerability in some Nissan Leaf cars can affect the vehicle’s heating and air-conditioning systems. The flaw also revealed how the driver’s recent journeys can be tracked using the vehicle’s accompanying app.

FUTURE TECH February 24, 2016

Emoji Bomb Can Make WhatsApp Crash: Here's How To Do It According To A Security Researcher

A security researcher found a new WhatsApp vulnerability, or emoji bomb, that can crash a target's WhatsApp Messenger. The researcher also reported the vulnerability to WhatsApp.

Apps/Software December 23, 2015

Major Security Flaw Exposes Real IP Addresses Of VPN Users

A recently uncovered vulnerability can expose a VPN user's real IP address. Perfect Privacy, the VPN provider that discovered the security flaw, says that five out of nine VPN providers are susceptible to attacks.

Internet November 27, 2015

Thousands Of Netgear Routers Compromised By Hackers Exploiting Unpatched Security Hole: Is Your Router Affected?

A Netgear router security flaw permits hackers to redirect Web traffic to their servers. The flaw affects nine Netgear models.

Apps/Software October 13, 2015

Certifi-Gate Can Control Your Android Devices Without You Knowing: Are You At Risk?

A flaw in mobile devices called Certifi-gate can give full control on an Android device to hackers. Some smartphone makers are also releasing a patch to fix the vulnerability.

Apps/Software August 8, 2015

Nasty Firefox Security Flaw Can Steal Your Files: Here's How To Fix It

A Firefox user informed Mozilla about the security flaw on the Internet browser, which could search for sensitive files on a user's computer and then upload them.

Apps/Software August 8, 2015

Is Your Android Device Exposed To Stagefright? Find Out Using This App

The company that discovered the Stagefright vulnerability is offering an app to help consumer find out whether or not their devices are protected from exploits related to the media engine. Meanwhile, there's another new threat to the Android OS.

Phones/Tablets/Mobile Tech August 8, 2015

A Flaw In OnePlus 2 Reservation System Lets You Jump Ahead In The Queue

OnePlus fan Jake Cooper used his coding skills and successfully improved his ranking in the company's invite system. From number 335,000, Jake managed to jump to a more desirable number of 1,694.

Phones/Tablets/Mobile Tech August 4, 2015

Hacker Group Pawn Storm Uses Java Zero-Day Exploit To Spy On NATO Countries

The hacking group Pawn Storm, also known as APT28/Sednit, is deploying a Java-based zero-day exploit to target media and government organizations, as well as the military.

Society July 16, 2015

Cisco Rolls Out Patches For Virtual Appliances With Default SSH Keys Vulnerabilities

Cisco has made available patches for three virtual products that shipped with default Secure Shell (SSH) encryption key vulnerabilities. The three products are Cisco's ESav, WSav and SMAv.

Apps/Software June 30, 2015

IOActive Reveals Massive Security Risk In Lenovo Computers: What You Should Know

Lenovo's System Update service is found to have major vulnerabilities. This allows hackers to perform malicious attacks, such as running commands at a distance, bypassing validation checks and replacing trusted Lenovo programs with malware.

Internet May 7, 2015

New Vulnerability In Windows Lets Hackers Steal Login Details But Microsoft Thinks 'Fat Chance'

'Redirect to SMB' lets cyber thieves hijack communications between web servers using a man-in-the-middle attack. Microsoft, however, believes the threat is not as severe as some experts claim.

Apps/Software April 14, 2015

Mac Users Should Update To OS X Yosemite 10.10.3 To Plug Serious Security Hole

The serious security issue being patched by the OS X Yosemite 10.10.3 update can be exploited to gain access to system-level privileges on a Mac computer.

Geek April 11, 2015

Google Rewards Russian Hacker For Spotting YouTube Flaw

Google gave 21-year-old Kamil Hismatullin a $5,000 reward for spotting a vulnerability that could have caused a massive number of videos to be deleted from YouTube in a short amount of time.

Apps/Software April 6, 2015

Windows PC Users, Don't FREAK Out: Here's How You Can Protect YourSelf

The 'FREAK' security encryption vulnerability is actually worse than initial reports let on. There are, however, a few things every Internet user can do to shore up protection as patches are being created.

Internet March 9, 2015

Not Just Apple And Android: Microsoft Windows Also Vulnerable To FREAK Security Flaw

Despite earlier claims to the contrary, Windows is not safe from a decade-old security hole exploiting SSL and TLS sites.

Apps/Software March 6, 2015

McAfee: Mobile Developers' Failure To Patch Mobile App Vulnerabilities Puts Millions of Users At Risk

Mobile developers, according to McAfee, are overlooking an important area: mobile app vulnerabilities. Failure to patch SSL vulnerabilities could give hackers access to sensitive user data, such as passwords and usernames of mobile phone owners.

Apps/Software February 26, 2015

WhatsApp’s Big Security Hole Allows WhatsSpy Web-Based App To Track Users

WhatsApp isn't as secure as most users would like to believe. A university student proved that tracking user activity is a pretty easy feat and that the vulnerability even lets an outsider change a privacy setting that is turned to 'nobody.'

Apps/Software February 12, 2015

Ghost Flaw Still Haunting Linux Despite Patching Efforts

A four-year-old vulnerability many thought had been put to rest is haunting Linux once again. Most Linux distributors released patches in 2010 to address the 'Ghost' vulnerability, but a second round of patching is needed to stop the scary exploit.

Apps/Software January 29, 2015

Apple iOS flaw is an open door to hackers

Installing apps outside of the App Store just got a lot more dangerous for iOS users. Masque attacks leverage an iOS flaw to replace legitimate apps with malware that looks identical to the originals.

Apps/Software November 10, 2014

Apple does something rash with SSL 3.0 due to Poodle flaw

Apple moves its Push notifications service away from SSL 3.0 to keep Poodle attacks at bay. Now it's up to developers to do the same.

Internet October 23, 2014

Yahoo shellshocked, claims no data snatched in hack

Yahoo says its sees no evidence user data was compromised in Shellshock intrusion. A software engineer says people aren't taking the Shellshock threat seriously enough.

Internet October 6, 2014

Shellshock solutions, patches coming fast and furious

As Shellshock attacks are hitting, a number of companies are starting to provide solutions for the bug. Not only that, but software companies such as Oracle and Apple are also reportedly creating patches.

Internet September 29, 2014

Secret is not so secret. Promises more protection on next update

Secret is rolling out an update which is now available on the Android platform. The iOS version is scheduled to be released in the next couple of days.

Apps/Software August 24, 2014

Hackers attack U.S. public utility, compromises control of systems: Homeland Security

Homeland Security says a public utility has been breached due to an antiquated password mechanism that hackers can easily break into using simple brute force.

Internet May 21, 2014

NSA claims ignorance about Heartbleed bug: Surprised?

The NSA has denied knowledge about the Heartbleed bug and exploiting it even before reports came out, but critics have doubts to such claims of the agency.

Internet April 13, 2014

Real Time Analytics