Browsing Category: Vulnerabilities

Vulnerabilities in Android Apps That Allow Intercept of Messages, Photos Outlined

Privacy Vulnerabilities in Popular Android Apps Disclosed

Researchers from the University of New Haven have taken to Youtube this week to publicize vulnerabilities in a dozen Android apps, including Instagram, Vine and OKCupid.

Read more...

adobe_patch

Adobe Patches Host of Memory Bugs in Flash Player

Adobe announced security updates and a new version of Flash Player for Windows, Mac and Linux; the company also announced it was postponing a scheduled update for Reader and Acrobat.

Read more...

OpenSSL heartbleed

Research Finds No Large Scale Heartbleed Exploit Attempts Before Vulnerability Disclosure

In the days and weeks following the public disclosure of the OpenSSL Heartbleed vulnerability in April, security researchers and others wondered aloud whether there were some organizations–perhaps the NSA–that had known about the bug for some time and had been using it for targeted attacks. A definitive answer to that question may never come, but[...]

Read more...

shutterstock_89905858

Traffic Networks Company Patches Sensor Vulnerabilities

Categories: Hacks, Vulnerabilities

A company in charge of manufacturing sensors used in traffic control systems has patched a series of previously disclosed bugs that could’ve opened the products up to exploits.

Read more...

Google de-anonymize

New Timing Attack Could De-Anonymize Google Users

Categories: Hacks, Vulnerabilities

A new timing attack has been disclosed that could de-anonymize Google users under particular conditions. Google acknowledged the issue but said it would fix it because the risk is low.

Read more...

Jerusalem Center for Public Affairs Serving Malware

Israeli Think-Tank Site Serves Sweet Orange Exploit

Drive-by malware downloads have been spotted on the website of a prominent Israel think-tank, the Jerusalem Center for Public Affairs. The attacks seems to target bank credentials.

Read more...

home depot breach

Feared Home Depot Breach Sparks More Interest in Backoff PoS Malware

Security experts are digging into point-of-sale malware, Backoff in particular, as speculation rages on about how hackers pulled off the Home Depot data breach.

Read more...

Touchstone_CableModemGroup

Some Cable Modems Found to Leak Sensitive Data Via SNMP

Cable modems sold by two manufacturers expose a wide variety of sensitive information over SNMP, including usernames and passwords, WEP keys and SSIDs. Researchers who discovered the vulnerabilities say they’re trivially exploitable and plan to release Metasploit modules for them later this month. The broadband modems, manufactured by Netmaster and ARRIS, leak the sensitive information[...]

Read more...