vulnerability

vulnerability

Netherlands offers guidelines to work with hactivists

www.pcworld.com
The Dutch government's cyber security center has published guidelines that it hopes will encourage ethical hackers to disclose security vulnerabilities in a responsible way. "Persons who report an IT vulnerability have an important social responsibility," the Dutch ministry of Security and Justice said on Thursday, announcing guidelines for ethical...
Netherlands offers guidelines to work with hactivists

Researchers find smishing vulnerability in all recent versions of Android, Google working on a fix

thenextweb.com
NC State University researchers have discovered an SMS phishing (smishing) vulnerability in the Android Open Source Project (AOSP) and thus is present in almost all Android versions, including Donut (1.6), Éclair (2.1), Froyo (2.2), Gingerbread (2.3), Ice Cream Sandwich (4.0), and Jelly Bean (4.1). They have tested the flaw on...
Researchers find smishing vulnerability in all recent versions of Android, Google working on a fix

Update: Hackers exploit new IE zero-day vulnerability

www.computerworld.com
Attackers are exploiting a "zero-day" vulnerability in Microsoft's Internet Explorer and hijacking Windows PCs that cruise to malicious or compromised websites, security experts said today....
Update: Hackers exploit new IE zero-day vulnerability
App developer calls critic "f*cken little know it all"; site goes down

Why are the LulzSec hackers being locked up? | James Ball

www.guardian.co.uk
A chance to put these young hackers' skills to better use goes wasted, while gangs who rob for personal gain go unpunishedFor lawmakers, illicit downloaders and hackers alike, the internet is one of the few bits of frontier territory left in the world: for the "rogues" there's lots more scope...
Why are the LulzSec hackers being locked up? | James Ball

Researchers devise new attack techniques against SSL

www.computerworld.com
The developers of many SSL libraries are releasing patches for a vulnerability that could potentially be exploited to recover plaintext information, such as browser authentication cookies, from encrypted communications....
Researchers devise new attack techniques against SSL

Flame Malware Illustrates Vulnerability of USB Drives

www.pcworld.com
The virus used USB ports found on every PC as a pathway to avoid detection by network-guarding security systems....
Flame Malware Illustrates Vulnerability of USB Drives

'Pinkie Pie' trips up Chrome, close to $60K at Hack in the Box

www.computerworld.com
It appears the hacker known as "Pinkie Pie" produced the first Chrome vulnerability at the Hack In the Box conference on Wednesday, just ahead of the deadline for the competition this afternoon....
'Pinkie Pie' trips up Chrome, close to $60K at Hack in the Box

iOS vulnerability allows apps to grab photo, video libraries

www.ipodnn.com
An iOS vulnerability may be allowing some apps to access a person's entire photo/video library, say developers in touch with the New York Times. The flaw emerges only once a person authorizes an app to use location information, but at that point photo/video access opens up without any extra prompting....
iOS vulnerability allows apps to grab photo, video libraries

Researcher: Face.com iOS flaw could have allowed Facebook, Twitter account hijacking

www.computerworld.com
Facial recognition start-up Face.com patched a vulnerability in its KLINK iOS app that could have allowed attackers to hijack the Facebook and Twitter accounts of its users, according to Ashkan Soltani, the independent security researcher who claims to have found the flaw....
Researcher: Face.com iOS flaw could have allowed Facebook, Twitter account hijacking
Serious vulnerability reportedly leaves Samsung Galaxy S III and other devices wide open to malware

Exotic XSS bug in Adobe Flash controlled users' Web accounts

arstechnica.com
Adobe has plugged a hole in its ubiquitous Flash media player that attackers were exploiting to control services such as webmail accessed by end users. The universal XSS, or cross-site scripting, vulnerability is present in all versions of Flash, but was only being actively exploited in versions that worked...
Exotic XSS bug in Adobe Flash controlled users' Web accounts
6Scan releases WordPress plugin that hacks your site on purpose (exclusive)

Researcher Says Face.com iOS Flaw Left Facebook, Twitter Vulnerable

www.pcworld.com
UPDATE: Facial recognition start-up Face.com patched a vulnerability in its KLINK iOS app that could have allowed hijacking of Facebook and Twitter accounts....
Researcher Says Face.com iOS Flaw Left Facebook, Twitter Vulnerable

Skype And Dropbox Fix Redirect Security Hole That Could've Hacked Your Facebook

techcrunch.com
Nir Goldschlager just saved your identity. One of the world’s top white hat security researchers, Goldschlager this week helped Skype and Dropbox fix a critical security flaw that could have let hackers take control of their users’ Facebook accounts. Tomorrow Goldschlager will detail how found the exploit, but he gave...
Skype And Dropbox Fix Redirect Security Hole That Could've Hacked Your Facebook
Samsung Galaxy S III security fix reportedly rolling out to UK users
White House admits systems in Military Office were hacked

Microsoft releases fix-it for Internet Explorer 8 vulnerability

www.pcworld.com
Microsoft has released a temporary fix for a zero-day vulnerability in Internet Explorer 8, which was used by hackers in a prominent attack against the U.S. Department of Labor's website.The problem is particularly dangerous since it can allow an attacker to install malware merely by visiting a tampered web...
Microsoft releases fix-it for Internet Explorer 8 vulnerability

Facebook And Dropbox's Apps Are Seriously Vulnerable To Hackers Right Now (FB)

www.businessinsider.com
A security researcher named Gareth Wright has uncovered an unpleasant security hole in the Android and iOS Facebook apps, reports The Next Web. A motivated hacker could copy a plain text file off of your mobile device that would grant him access to your entire account. The problem exists...
Facebook And Dropbox's Apps Are Seriously Vulnerable To Hackers Right Now (FB)

Windows RT can be tweaked to run desktop apps, hacker says

www.pcworld.com
Running traditional desktop apps on Windows RT may be one step closer to reality, thanks to a vulnerability that a hacker claims lets you run any desktop app on the ARM version of Windows. A hacker called 'clrokr' recently detailed the Windows RT exploit, which requires manipulating a part...
Windows RT can be tweaked to run desktop apps, hacker says
Apple says iOS 6 to fix in-app-purchase fraud, gives developers a temporary fix

Adobe Launches Sandboxed Flash Player for Firefox, Hopes for Fewer Exploits

www.pcworld.com
Adobe has released a beta version of Flash Player for Firefox, which has better protection against vulnerability exploits because of a new sandboxed......
Adobe Launches Sandboxed Flash Player for Firefox, Hopes for Fewer Exploits

Apple releases Java update for OS X to protect users against vulnerability used in its hacking

thenextweb.com
Apple has today released an update for Mac OS X users that delivers improved security for those that are running Java on their machines. This update repairs a vulnerability used to hack into Apple employees’ systems. The update is available under the Software Update section in the Mac App Store...
Apple releases Java update for OS X to protect users against vulnerability used in its hacking

Adobe releases emergency patch for Windows and OS X systems

www.pcworld.com
Adobe recently released an emergency update for Flash Player on all platforms after two zero-day bugs were discovered in the wild targeting Windows and Mac OS X computers. The vulnerabilities allowed hackers to hijack both Windows PCs and Macs. Adobe recommends all users to update their systems as soon...
Adobe releases emergency patch for Windows and OS X systems

Instagram vulnerability on iPhone allows for account takeover

www.computerworld.com
A security researcher published on Friday another attack on Facebook's Instagram photo-sharing service that could allow a hacker to seize control of a victim's account....
Instagram vulnerability on iPhone allows for account takeover
Virgin Mobile fails web security 101, leaves six million subscriber accounts wide open

Google increases vulnerability reporting reward to $20,000

www.electronista.com
Google has updated the bounties for its Vulnerability Reward Program. Users who report a bug from one of Google's products stand to earn up to $20,000 for each potential vulnerability declared to the search giant.......
Google increases vulnerability reporting reward to $20,000

Rep. Zoe Lofgren Plans To Introduce 'Aaron's Law' To Stop Bogus Prosecutions Under The CFAA

www.techdirt.com
There's been talk for years about fixing the Computer Fraud and Abuse Act (CFAA), which has been widely abused by law enforcement/prosecutors to claim that basically any use of a computer that did not fall under the explicitly allowed uses was a form of "computer hacking" -- and potentially a...
Rep. Zoe Lofgren Plans To Introduce 'Aaron's Law' To Stop Bogus Prosecutions Under The CFAA

Adobe issues security update for Flash player, warns against IE exploit

www.engadget.com
Internet Explorer associated with an exploit? Color us shocked. Facetiousness aside, it's seriously about time you switched over to Chrome or Firefox (as a mitigation tool; not a foolproof solution), and if you're a desktop user relying on Flash Player, well... it's about time you updated that, too. Adobe...
Adobe issues security update for Flash player, warns against IE exploit

Oracle finally releases first Java Developement Kits for Mac OS X

9to5mac.com
When Apple confirmed in 2010 it would no longer be supporting Java for OS X  it announced shortly after an agreement with Oracle to include OS X support in future versions of its OpenJDK Project, providing Java SE 7 implementation on OS X. Over a year later Oracle has now...
Oracle finally releases first Java Developement Kits for Mac OS X
× Just a test of the new info bar. What do you think?