security

Wed
09
Oct
John Lister's picture

Twitter Accused of Data Violation in Ad 'Mix Up'

Twitter has apologized for using customer security contact details for advertising purposes. Its underwhelming announcing has gone down badly with privacy groups and could have legal consequences. The blunder involved Twitter's advertising services, ... specifically tools called "Tailored Audiences" and "Partner Audiences." It works like this: advertisers upload their own marketing lists of email addresses and phone numbers to Twitter, along with an ad. Twitter then compares the marketing list to its own database of customers. It then shows the ad only to people who appear on ... (view more)

Wed
02
Oct
John Lister's picture

Major VOIP Security Flaws Discovered in Android

Researchers say they discovered eight security flaws in the way Android handles voice calls through the Internet. Unlike most such bugs which involve specific apps, these problems were with Android itself. The good news is that the researchers ... reported all of the bugs to Google while carrying out the project and most have now been fixed. However, it does raise concerns about the development and design of the system itself. (Source: github.io ) The researchers looked at the three latest Android versions (7, 8 and 9), specifically addressing the components that allow Voice Over Internet ... (view more)

Mon
16
Sep
John Lister's picture

Password Manager Bug Exposes Last Used Password

Password manager LastPass has suffered an embarrassing security glitch that reveals a user's last used password, though some security experts argue that pulling off the exploit would have been difficult at best. The purpose of LastPass is to solve ... the problem of people having too many passwords to remember, but not wanting to reuse passwords across multiple sites. Once somebody signs up to LastPass, they create a single master password which is completely secret. Even LastPass itself doesn't store this password, so if a user forgets it, they are out of luck. The master password then stores ... (view more)

Thu
12
Sep
John Lister's picture

Win10 Update Breaks Start Menu, Causes Orange Screen

It's becoming something of a pattern that Microsoft issues a Windows 10 Update that causes a problem , then issues a follow-up that fixes it, but then introduces new problems. And it's happened again. Just last week Microsoft issued an update ( ... KB4512941 ) that fixed problems in the Windows 10 May 2019 Update (version 1903), but introduced new bugs with some users finding the Windows search tool didn't work at all, or their processors were under constant strain. Microsoft has since release a new bug fix (KB4515384) for the previous bug fix, but users are reporting new problems. At the time of ... (view more)

Tue
10
Sep
John Lister's picture

Android User? Delete These Apps Now

Nearly half a million users have been infected with "The Joker" malware through the Google Play store. The malware is particularly nasty and works by signing users up to premium services without their knowledge. The malware, spotted by researcher ... Aleksejs Kuprins, was found in 24 apps with a combined 472,000 downloads - though more apps may be found later. As of this writing, the 24 known apps have been removed from the Google Play store. (Source: techradar.com ) Infected Apps Need to be Removed If you have any of the following apps installed on your phone, they should be removed ... (view more)

Wed
04
Sep
John Lister's picture

Use Chrome? Update Now to Fix Major Security Bug

Google has released a security update fixing a major flaw in the Chrome browser. While Chrome normally updates automatically, it's a serious enough problem that it's worth manually checking for updates to the browser in order to be certain. The bug ... was highlighted by the Center for Internet Security, a non-profit organization that crowd sources security problems and fixes. It says the flaw could be exploited simply by the user visiting a compromised web page. It says that: "Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code in the context of the ... (view more)

Thu
15
Aug
John Lister's picture

Over 1 Million Fingerprints Exposed Online

More than one million fingerprints were exposed online for at least a week, according to security researchers. The company responsible for the data says it will take immediate action if there's a security threat. The data is held by Suprema, which ... operates a biometric lock system called Biostar 2. It lets building owners restrict access by fingerprint or facial recognition, rather than relying on measures such as physical keys or pass codes. The Guardian newspaper reports that Biostar 2 is used in a wider system that has 5,700 customers accessing 1.5 million locations across 83 countries. ... (view more)

Tue
30
Jul
John Lister's picture

Mega Hack Exposes Entire Population's Data

Financial records of almost every adult in Bulgaria have been stolen in a cyber attack. It's led to the unlikely situation of the country's leader reportedly exaggerating the attacker's skills. One man has been arrested following the attack, which ... looks to have involved unauthorized access to a database with records for every working adult in the country. That's almost five million people. There's some debate over exactly what was involved in the breach. Press reports suggest it not only included personal information such as date of birth and address, but also tax ... (view more)

Wed
10
Jul
John Lister's picture

Chinese Giant Ditches Android OS

Chinese phone maker Huawei says its making a rival to Android that will be "up to 60 percent faster." The problem is it will be missing many key Google applications. Huawei started work on the new mobile operating system after an executive order ... from the US President that limits American companies supplying the Chinese company, something said to relate to security concerns. Following the order, Google announced it would no longer supply Huawei with new editions of Android or security updates for the existing system. While it could still use Android, which is an open source system, ... (view more)

Wed
19
Jun
John Lister's picture

Firefox Users: Update Now to Patch Remote Execution Flaw

Mozilla has issued an emergency patch for the Firefox browser that is a must-install. It fixes a security gap that hackers are actively exploiting on compromised websites that serve up malicious code. How to Patch Firefox For most users, restarting ... Firefox should be enough to trigger the update. Users can also click the menu icon near the top right of the browser (the three vertical bars), then scroll all the way down near the bottom and click the "(?) Help" sub menu, then click the "About Firefox" option, which will trigger the update. Once the update has been downloaded, Firefox ... (view more)

Pages

Subscribe to RSS - security