Study: Android App Authentication Bug Affecting 99% of Users

Researchers from ULM University have found a security flaw similar to sidejacking in Google’s Android operating system affecting some 99.7% of the platform’s users. The flaw is in the ClientLogin API, and according to the report, it could allow hackers to steal contact lists, calendar events, and other sensitive data.

Study Finds Popular Sites Guilty of Hi-Jacking History

A recent study launched by the UC San Diego Department of
Computer Science to determine the scope of privacy-violating information flows at
popular websites shows that popular Web 2.0 applications such as mashups,
aggregators, and sophisticated ad targeting are teeming with various kinds of

Sniffing Programmer Gets 2 Years Jail for TJX

Stephen Watt, a 25-year-old former Morgan Stanley software engineer,
pleaded guilty last December to creating a custom sniffing program
dubbed “blabla” that Albert Gonzalez and other hackers used to siphon millions
of credit and debit card numbers from TJX’s network; Watt received a 2 year Federal prison sentence. Read the full article. [Wired]

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.