β Facebook tricked kids into in-game purchases, say privacy advocates β
π Read
via "Naked Security".
Unsealed court documents show that Facebook referred to big-spending kids as "whales" - a term borrowed from the casino industry.π Read
via "Naked Security".
Naked Security
Facebook tricked kids into in-game purchases, say privacy advocates
Unsealed court documents show that Facebook referred to big-spending kids as βwhalesβ β a term borrowed from the casino industry.
β Missile warning sent from hijacked Tampa mayorβs Twitter account β
π Read
via "Naked Security".
Tampa's mayor was trying to regain control of his Twitter account this week after it was used to post bomb threats and child sex abuse images.π Read
via "Naked Security".
Naked Security
Missile warning sent from hijacked Tampa mayorβs Twitter account
Tampaβs mayor was trying to regain control of his Twitter account this week after it was used to post bomb threats and child sex abuse images.
π How to copy a file between two remote SSH servers π
π Read
via "Security on TechRepublic".
SSH has a lot of tricks up its sleeve, including the ability to copy files between two remote servers.π Read
via "Security on TechRepublic".
TechRepublic
How to copy a file between two remote SSH servers
SSH has a lot of tricks up its sleeve, one of which is the ability to copy files between two remote servers. Jack Wallen shows you how.
β Google Ditches Passwords in Latest Android Devices β
π Read
via "Threatpost | The first stop for security news".
Google has announced FIDO2 certification for devices running on Android 7 and above - meaning that users can use biometrics, fingerprint login or PINs instead of passwords.π Read
via "Threatpost | The first stop for security news".
Threat Post
Google Ditches Passwords in Latest Android Devices
Google has announced FIDO2 certification for devices running on Android 7 and above - meaning that users can use biometrics, fingerprint login or PINs instead of passwords.
π MWC 2019: Your future Android phone, apps will need no password π
π Read
via "Security on TechRepublic".
FIDO2 certification is paving the way for passwordless mobile security.π Read
via "Security on TechRepublic".
TechRepublic
MWC 2019: Your future Android phone, apps will need no password
FIDO2 certification is paving the way for passwordless mobile security.
π 5 ways to avoid top malware threats π
π Read
via "Security on TechRepublic".
Backdoors, cryptomining, fake apps, and banking Trojans increased substantially in the past year, according to McAfee. Here's how to protect your business.π Read
via "Security on TechRepublic".
TechRepublic
5 ways to avoid top malware threats
Backdoors, cryptomining, fake apps, and banking Trojans increased substantially in the past year, according to McAfee. Here's how to protect your business.
π΄ Secure the System, Help the User π΄
π Read
via "Dark Reading: ".
The enterprise must do its part in deploying and maintaining secure systems so that end users stand a chance against attackers.π Read
via "Dark Reading: ".
Dark Reading
Cloud Security recent news | Dark Reading
Explore the latest news and expert commentary on Cloud Security, brought to you by the editors of Dark Reading
β ToRPEDO Privacy Attack on 4G/5G Networks Affects All U.S. Carriers β
π Read
via "Threatpost | The first stop for security news".
The attack threatens users with location-tracking, DoS, fake notifications and more.π Read
via "Threatpost | The first stop for security news".
Threat Post
ToRPEDO Privacy Attack on 4G/5G Networks Affects All U.S. Carriers
The attack threatens the user with location-tracking, DoS, fake notifications and more.
π What is Zero Trust? π
π Read
via "Subscriber Blog RSS Feed ".
Learn why the Zero Trust model may be more secure than traditional networks security in this week's Data Protection 101.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
What is Zero Trust?
Learn why the Zero Trust model may be more secure than traditional networks security in this week's Data Protection 101.
π΄ TurboTax Hit with Cyberattack, Tax Returns Compromised π΄
π Read
via "Dark Reading: ".
Officials report an unauthorized party obtained tax return data by using credentials obtained from an outside source.π Read
via "Dark Reading: ".
Darkreading
TurboTax Hit with Credential Stuffing Attack, Tax Returns Compromised
Officials report an unauthorized party obtained tax return data by using credentials obtained from an outside source.
π΄ Russian Hacker Pleads Guilty to Bank Fraud π΄
π Read
via "Dark Reading: ".
The hacker ran a botnet that spread 'NeverQuest' malware for three years and collected millions of banking credentials.π Read
via "Dark Reading: ".
Dark Reading
Application Security recent news | Dark Reading
Explore the latest news and expert commentary on Application Security, brought to you by the editors of Dark Reading
β Threatpost Data: Password Managers Are Worth the Risk, Readers Say β
π Read
via "Threatpost | The first stop for security news".
A Threatpost reader poll examined risk, vulnerabilities, 2FA, the human element, attitudes on spreadsheets and more when it comes to password managers.π Read
via "Threatpost | The first stop for security news".
Threat Post
Threatpost Data: Password Managers Are Worth the Risk, Readers Say
The Threatpost reader poll examined risk, vulnerabilities, 2FA, the human element, attitudes on spreadsheets and more when it comes to password managers.
ATENTIONβΌ New - CVE-2018-11948
π Read
via "National Vulnerability Database".
Exceeding the limit of usage entries are not tracked and the information will be lost causing the content to lose continuity in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in versions MSM8996AU, QCS605, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11945
π Read
via "National Vulnerability Database".
Improper input validation in wireless service messaging module for data received from broadcast messages can lead to heap overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in versions MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11938
π Read
via "National Vulnerability Database".
Improper input validation for argument received from HLOS can lead to buffer overflows and unexpected behavior in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11935
π Read
via "National Vulnerability Database".
Improper input validation might result in incorrect app id returned to the caller Instead of returning failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9607, MDM9650, MDM9655, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 615/16/SD 415, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM630, SDM660, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11932
π Read
via "National Vulnerability Database".
Improper input validation can lead RW access to secure subsystem from HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9650, MDM9655, MSM8996AU, QCS605, SD 410/12, SD 615/16/SD 415, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11931
π Read
via "National Vulnerability Database".
Improper access to HLOS is possible while transferring memory to CPZ in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in versions MDM9150, MDM9206, MDM9607, MDM9650, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11864
π Read
via "National Vulnerability Database".
Bytes can be written to fuses from Secure region which can be read later by HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11845
π Read
via "National Vulnerability Database".
Usage of non-time-constant comparison functions can lead to information leakage through side channel analysis in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in versions MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11820
π Read
via "National Vulnerability Database".
Use of non-time constant memcmp function creates side channel that leaks information and leads to cryptographic issues in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MDM9655, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 800, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.π Read
via "National Vulnerability Database".