A vulnerability in the WhatsApp for Android that was found, disclosed and patched can still affect thousands of additional apps that have not been patched. CVE-2019-11932 allows attackers to use a maliciously coded GIF files to remotely execute code was made public on Oct. 2, 2019 and then patched in WhatsApp version 2.19.244 takes advantage…
An engineering and computer science professor and his team from The Ohio State University discovered a design flaw in low-powered Bluetooth devices that leaves them susceptible to hacking. Zhiqiang Lin, associate professor of computer science and engineering at the university, found the commonly used Bluetooth Low Energy devices, such as fitness trackers and smart speakers,…
A mobile call between President Trump and U.S. EU ambassador, Gordon Sondland, as he sat in a restaurant in Kyiv, Ukraine, over the summer and heard by a member of the State Department’s diplomatic corps, opened the conversation up to the prying eyes and ears of foreign intelligence organizations. The breach of security protocol, referred…
A bug in the latest version of iOS opens iPhone cameras as users peruse their Facebook feeds, letting the social media giant access the cameras. “We have seen no evidence of photos or videos being uploaded due to this bug,” a spokesman told the Guardian, confirming that glitch would let the Facebook app “navigate to…
Researchers recently uncovered 49 adware-laced Android apps that were downloaded from the Google Play store more than 3 million times, collectively, before they were reportedly removed. Many of the apps were disguised as games, video editors and stylized photo and filter programs. Sample titles included Cut Out Studio Pro, Tattoo Maker, Bubble Effect, CLOWN MASK,…
Using AI to create artificial fingerprints that can unlock strangers’ phones… abusing electric vehicle charging stations to overwhelm the power grid… exploiting 3D printer technology to execute an all-new form of supply chain attack… These may have once sounded like far-flung ideas, but top cyber minds at New York University have been actively exploring such…
Google has announced the creation of the App Defense Alliance, a collaboration of the search giant and three cybersecurity firms to vet apps prior to being placed in the Google Play Store. To accomplish this task ESET, Lookout, and Zimperium, gratis, will integrate their scanning engines with the Google Play Protect detection systems. “This will…
Huawei, the subject of a U.S. government ban amid allegations that China might force the company to spy on others, will reveal a bug bounty program for its mobile devices and new HarmonyOS operating system, to top phone hackers in Munich during a secret meetup Nov. 16. The tech company is likely trying to convince…
Google last month patched an Android bug that could allow attackers to transfer a malicious application to a nearby NFC-enabled device via the Android Beam feature, bypassing security mechanisms in the process. The vulnerability was discovered in early 2019 by the research team at Nightwatch Cybersecurity, which late last month published a company blog post…
A pair of Japanese researchers have discovered that laser light can be used to send “voice” commands to a wide variety of smart phones and home voice assistants effectively taking control of the device. Takeshi Sugawara and Kevin Fu told Wired that they stumbled across the fact that a laser light pointed at the mic…
