Sign up for a new account or log in here:
also @ TechSpot: Bill Gates is once again the richest person in the world
TechSpot News
vulnerabilities articles
Android infections tripled in 2012, "Bill Shocker" costliest mobile malware ever
- Android has become an increasingly popular target for malware authors, a recent report (pdf) by NQ Mobile indicates. The security firm claims that it discovered over 65,000 types of malware -- more than double the amount from 2011 -- and bills…
Apple releases iOS 6.1.3, finally fixes lock screen bug
- Apple today released iOS 6.1.3, an update to its mobile OS which contains "improvements and bug fixes". Perhaps the most importantly though, Apple has finally fixed the lock screen (aka. passcode) bug which allowed potential miscreants to bypass lock screens…
Critical Windows USB exploit allows flash drives to grant root access, patch issued
- Microsoft's Patch Tuesday yielded an interesting security fix for a glaring vulnerability in how the Windows kernel handles USB device enumeration. The critical vulnerability allowed potential hackers with physical access to a Windows PC to run arbitrary code with system…
Android malware steals data, records audio via PC microphone
- Two newly-discovered Android apps found on Google Play were designed to spy on their users, claim security experts at Kaspersky. The apps, SuperClean and DroidCleaner, posed as innocuous Android clean-up utilities; however, each app could quietly copy photos, contacts and…
UPnP flaws place millions of networks in danger
- Several security vulnerabilities found within common UPnP implementations have prompted experts at Rapid 7 to recommend the public disable UPnP entirely. Research spanning several months in 2012 revealed that over 2 percent -- or about 50 million -- of all…
IE mouse tracking flaw allows sites to record cursor movements
- Spider.io reported today that Microsoft has no "immediate plans" to fix the potential Internet Explorer vulnerability which allows any website operator (or advertiser, hacker etc...) to track a visitor's mouse cursor movements. Microsoft's security team has acknowledged the issue but…
Microsoft faults developers for cracked Windows Store apps
- Microsoft says a crack which allows hackers to download paid-for Windows Store apps without spending a dime is the fault of insecure app code and not a Windows Store issue. Redmond is essentially placing the onus of protecting apps against…
Trojan bypasses two-factor authentication, steals $46.5 million
- A sophisticated, multi-layered trojan dubbed "Eurograbber" is estimated to be responsible for siphoning over €36 million -- or about $46.5 million -- from the bank accounts of unsuspecting Europeans. In a case study (pdf) performed by Versafe and Check Point Software Technologies, researchers reveal…
Vulgar post lands on prominent blogs, Tumblr patches vulnerability
- Tumblr says it has addressed a vulnerability which allowed hackers to force visitors into unwittingly reposting an offensive, expletive-ridden message condemning the "tasteless" and "bourgeoisie" blog site. More than 8,600 users were affected -- Cnet, USA Today and The Verge were…
Windows Store crack turns trial apps into full versions
- A tool of questionable ethical value has surfaced, allowing Windows 8 users to transform trial apps into their full-fledged, paid-for counterparts. Wsservice_crk has actually been available for at least a month -- most notably at the MyDigitalLife forums -- but only…
Google improves Flash sandbox, Chrome safer than ever
- Google silently rolled out an update to Chrome which featured an unusual change, apparently one worthy of an announcement on the Chrome Blog: improved Adobe Flash plug-in sandboxing. The company claims its new method of fortifying Flash makes Adobe's plug-in…
Windows 8, IE10 suffer multiple critical zero-day vulnerabilities
- Researchers at Vupen, a private security firm based in France, claim to have found multiple, critical vulnerabilities in Windows 8 and Internet Explorer 10. The team's exploits allow hackers to remotely execute code, allowing crafty individuals to potentially gain control…
Solar panel management systems vulnerable to attack, DHS warns
- The U.S. Department of Homeland Security has issued another industrial control warning (pdf) regarding critical vulnerabilities found across a number of solar panel systems. Affected systems can be easily exploited using "proof of concept" code developed by security researchers Roberto Paleari…
Chrome hacked at Pwnium, "Pinkie Pie" does it again
- For the second time this year, hacker "Pinkie Pie" gave Google a run for its money -- and won. The clever hacker exploited yet another vulnerability in Chrome during the second Pwnium conference this year, netting himself (or perhaps herself)…
Most Popular
| Trending | Featured |
Subscribe to TechSpot
Get free exclusive content, learn about new features and breaking tech news.
TechSpot on: