A security researcher going by the handle “axi0mX” has discovered a supposedly unpatchable iOS vulnerability affecting six generations of Apple devices. The anonymous researcher published code demonstrating the flaw on GitHub earlier today, and within a few hours, others in the cybersecurity community appear to have verified that the exploit works. The vulnerability isContinue Reading
A report by Buzzfeed News published today says that Google quietly removed 46 apps by iHandy from the Play Store last week. iHandy is a Chinese mobile app developer, that makes selfie, security, antivirus, keyboard, horoscope, emoji, coin flip, health, and utility apps. Collectively the developers apps have been downloaded tens ofContinue Reading
Microsoft said in an advisory that a remote code execution vulnerability exists in some versions of Internet Explorer. Users could be unknowingly infected. The advisory reads in part “In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability through Internet Explorer andContinue Reading
Google today announced a series of privacy focused changes that will soon come to Google Assistant. The goal is to address recent concerns about how the company was processing data of users of that service. In the past Google used contractors to listen to portions of customers’ conversations with their voiceContinue Reading
Researchers at cybersecurity firm Wandera discovered two apps, Sun Pro Beauty Camera and Funny Sweet Beauty Camera both contained adware. The Sun Pro Beauty Camera app had been available since September 2017, and had over a million downloads. The other, Funny Sweet Beauty Camera app was up since July of thisContinue Reading
Facebook, who recently came under fire for collecting data from period tracking apps, has suspended “tens of thousands” of apps after a privacy investigation into app developers. Facebook says the suspended apps are associated with about 400 developers. Stressing that these apps being suspended wasn’t necessarily a sign the appsContinue Reading
Google this week removed two malicious extensions from the Chrome Web Store. The two extensions were caught stuffing cookies in web browsers of over a million of their users, as an affiliate referral scheme. The ad blockers “AdBlock”and “uBlock Origin” used names misleadingly similar to those of more reputable software.Continue Reading
Twitter says it suspended another batch of state-sponsored actors for disseminating misinformation on the platform. Today the company’s safety team announced the removal of 10,112 accounts across several countries; China / Hong Kong, Ecuador, Egypt, Saudi Arabia, Spain, United Arab Emirates, and Yemen. These accounts were actively encouraging unrest by spreadingContinue Reading
YouTube is overhauling its system for user verification. The company says these policy changes, set to start next month, will stop using subscription numbers to determine verification. YouTube will instead verify “prominent channels that have a clear need for proof of authenticity.” “Through our research, we found that viewers often associatedContinue Reading
A report from security researchers at Sophos, finds that after two years, variants of the WannaCry ransomware are still causing havoc. In 2017 WannaCry’s spread quickly, due to the malware’s use of a Windows vulnerability stolen from an intelligence agency. The malware was stopped when security researchers registered a domainContinue Reading