Items tagged with security
If you're reading this article from home, it’s likely that you're connected to a consumer-grade Wi-Fi router, either wirelessly or via hard wired Ethernet. And if that's the case, you should probably take this time to upgrade your router's firmware ASAP. That is if an update is even available from the...
Read more...
Microsoft has made available a pair of out-of-band security patches for Windows 10, one of which is labeled as "critical" and the other as "important." Under normal circumstances, security patches get doled out on the second Tuesday of every month, otherwise known as Patch Tuesday. But in this case, Microsoft decided...
Read more...
Yesterday, we brought you news that the TikTok app has been doing some shady things behind the scenes with devices running iOS. Following the release of the first iOS 14 beta, it was discovered that TikTok was pinging the system clipboard constantly and pasting that data for its own use.
Without the steady stream...
Read more...
TikTok has taken the world by storm as people of all ages uses the social networking platform to share videos. People use the platform to lip-sync to their favorite songs, perform short skits, or any number of humorous hijinks that the platform has been recognized for over the past year. It’s become a blockbuster app...
Read more...
Sony has announced via an official PlayStation blog post that it has launched a new bug bounty program for the PlayStation 4 game console in collaboration with the security platform HackerOne. Sony says that it started the Bug Bounty program because security is a fundamental part of creating amazing experiences for...
Read more...
A third-party security team uncovered a massive ring of Chrome spyware extensions that were all working together. The nefarious extensions had been downloaded a total of over 32 million times and impacted millions of Chrome browsers.
The researchers at Awake Security are coming forward after they informed Google of...
Read more...
Amazon has earned itself some well-deserved bragging rights for putting a stop to what ranks as the largest distributed denial of service (DDoS) attack ever, and by quite a bit. According to data divulged by Amazon, it halted a DDoS attack that peaked with a "previously unseen volume" of 2.3 terabits per second in...
Read more...
Game consoles like the Xbox One, along with Windows PCs, routers, smart TVs, and more have been found to be vulnerable to a Universal Plug and Play (UPnP) security flaw affecting millions of connected devices (and billions of devices overall), a researcher warns. The exploit is called CallStranger, and if leveraged...
Read more...
The cybersecurity advisory unit of U.S. Department of Homeland Security has issued a warning to Windows computer users about code for a "wormable" bug that was published online last week. The exploit is known as SMBGhost and takes advantage of an issue in Windows' server message block or SMB. SMB is a component of...
Read more...
Towards the end of April, Nintendo issued a notice saying login details for as many as 160,000 Nintendo accounts had been compromised as a result of a data breach. In actuality, the number of affected accounts is nearly twice as high—Nintendo this week provided an update on the matter, saying it has identified an...
Read more...
During the coronavirus pandemic, many people who have been working and learning from home have turned to video chat service Zoom. However, the service has had more than its fair share of issues with security and privacy over the last few months. Two new vulnerabilities have surfaced in the video chat platform that...
Read more...
LG released a security update last month that addresses a vulnerability that impacted a massive number of its smartphones. The security flaw, tracked as CVE-2020-12753, affected every single smartphone that LG made over the last seven years. The vulnerability was in the bootloader component that shipped with the LG...
Read more...
Security researchers have found a new vulnerability that impacts almost every version of the Android operating system. The vulnerability is called Strandhogg 2.0, and it could allow malware to impersonate legitimate apps to steal passwords and other sensitive data from user devices. Strandhogg 2.0 impacts every device...
Read more...
A team of researchers warn that combo chips that implement multiple wireless technologies in PCs and mobile devices are susceptible to a side-channel exploit called Spectra. Not to be confused with Spectre (or Meltdown), this side-channel vulnerability affects chips that combine Wi-Fi and Bluetooth connectivity, and...
Read more...
Facebook has announced that new features are being added to Messenger, which aim to make it a safer place to connect and chat with friends and family. One of the new controls is a safety feature that will help millions of people avoid potentially harmful interactions and possible scams without compromising privacy...
Read more...
Google has announced that it has begun the rollout of new tools and a redesign of the Chrome web browser's privacy and security settings on desktop. The goal is to give users more control over their safety on the web. Among the updated controls are easier to manage cookies allowing users to choose if and how cookies...
Read more...
A number of supercomputers across Europe have been targeted by malware that focuses on mining for cryptocurrency (Monero). The malware has forced supercomputers in the UK, Germany, and Switzerland to be shutdown as operators investigate the security incidents. The high-performance computing center in Spain was also...
Read more...
The security research team at Comparitech has conducted an audit of hundreds of thousands of apps on the Google Play store. The research team found common misconfigurations on Google Firebase databases that allow unauthorized parties to find and access personal data of users. Firebase is one of the most popular...
Read more...
A hacker group called ShinyHunters claims to have breached the databases of ten companies operating around the world, and stolen user data on millions of people. Currently, the databases for the ten companies are being offered for sale on the dark web with a total of 73.2 million user records. The same group of...
Read more...
There's a new hardware exploit that's being brought to light courtesy of security researcher Björn Ruytenberg from the Eindhoven University of Technology. The security vulnerability affects devices equipped with Thunderbolt ports, and it's appropriately named Thunderspy.
Before we get started, we should first let...
Read more...
If you own a Samsung Galaxy handset that was released in the past six years, do yourself a solid and check for an over-the-air (OTA) software update. Left unpatched, every Galaxy phone dating back to 2014 is vulnerable to a so-called 'zero-click' bug related to Android's handling of the custom Qmage image format...
Read more...
A security researcher that goes by GreenTheOnly on Twitter recently shared some information that impacts some of the most popular Tesla vehicles. According to Green, some Tesla hardware currently being sold on eBay retains a significant amount of personal information from previous owners even after a reset. The parts...
Read more...
