bugs

Google’s Project Zero targets OS X with three new exploits

Google’s Project Zero targets OS X with three new exploits

Google’s Project Zero has released more 0day vulnerabilities, and is this time aiming for Apple. Over the past few days, Project Zero has slowly released some exploits found in OS X Yosemite. The vulnerability exposure team at Google first provides their findings to the company in charge of the software. After that time, they’ve got 90 days to fix it before Google’s Project Zero team publishes it to the world. While Microsoft was responsive to Google’s release, Apple is much more tight-lipped.

Continue Reading

Impossibly difficult Super Mario cheat glitch pulled off

Impossibly difficult Super Mario cheat glitch pulled off

The classics are making a comeback, and in more ways than one. Super Mario, one of the most beloved gaming franchises in the world, is back in the press, not because of a hot new game or a retro old game, but because of how people are stretching the game beyond what the developers intended. Like giving it a brain to play itself. Now a high-profile YouTuber is earning views because of how he managed to hit a very intricate glitch that let him finish Super Mario World in just 6 minute, without facing the final boss.

Continue Reading

Steam on Linux bug can delete all user’s files

Steam on Linux bug can delete all user’s files

No software bug is more egregious than one that can potentially wipe out users' precious files without warning or indication. Some Linux users are finding this out the hard way when they discovered that their Steam client was silently deleting files starting from the very root directory all the way into the deepest folders. While the system's files might remain intact because of how Linux security policies work, user data are left unprotected, making this serious flaw even more personal and frightening.

Continue Reading

Microsoft knocks Google’s vulnerability disclosure attitude

Microsoft knocks Google’s vulnerability disclosure attitude

We're used to rival companies trading blows, subtly or otherwise, to gain an upper hand, but there are times when the criticism becomes real and serious. Like the case of Microsoft Security Response Center senior director Chris Betz, who has taken to the company blog to slam Google's Project Zero vulnerability management. The heart of the issue is that Google publicly disclosed a serious security exploit two days before Microsoft could roll out its fix, even when Redmond explicitly asked Google to temporarily suspend its 90-day policy.

Continue Reading

Apple delivers first ever automatic software update to Macs

Apple delivers first ever automatic software update to Macs

There are bug fixes and there are bug fixes. And then there are bug fixes so severe that they need to be plugged up immediately. But no matter how fast software providers try to patch up things on their end, bad users habits sometimes mean that these patches don't get downloaded or applied immediately, if at all. That is why Apple is making use of a feature it already had launched two years ago to deliver a critical bug fix to Mac users without them having to lift a finger.

Continue Reading

AT&T pulls Nexus 6 from stores due to software bug

AT&T pulls Nexus 6 from stores due to software bug

The Nexus 6 is pretty difficult to come by. Google only releases stock in stages, and carriers are just now getting the device. On top of all that, some can’t even figure out pricing, which recently caused last-place Sprint to issue contract credits for over-charging customers. Now, AT&T has run dead into the Nexus wall, and have chosen to return all Nexus 6 inventory to Motorola. The reason? Software! Motorola evidently shipped the wrong software to AT&T, though it’s not clear what the issue was.

 

Continue Reading

Windows Schannel bug as bad as Heartbleed, patch available

Windows Schannel bug as bad as Heartbleed, patch available

The tech world as a whole is still reeling from the OpenSSL vulnerability that was so bad that it was baptized with its own name. Now Microsoft might have an equally terrible, or perhaps even worse, issue in its hands. A bug in its Schannel (short for "Secure channel") security package could, in theory, allow any hacker to remotely run a program just by sending a specially crafted network packet to a Windows server. To add insult to injury, this security exploit exists in a wide range of Windows version dating back 2003.

Continue Reading

Cyborg cockroach experiment locates disaster survivors through sound

Cyborg cockroach experiment locates disaster survivors through sound

They may be one of the most disgusting insects you've ever seen, and laying eyes on one in your kitchen probably makes you want to scream, but one day cyborg cockroaches could save your life if you're trapped in a disaster. A pair of researchers from North Carolina State University have developed a way to control the bugs through a circuit board connected to their brain, and having them find the sources of sounds, including human voices.

Continue Reading

Samsung clarifies Find My Mobile vulnerability

Samsung clarifies Find My Mobile vulnerability

Samsung has broken its silence regarding a reported security exploit that exists in its Find My Mobile service. That security hole could have potentially let hackers remotely lock, unlock, and ring a targeted device from Samsung's web service. Scary as that may sound, the OEM insists that not only would the hackers be limited to only those three actions, it would require a specific set of circumstances for the exploit to be used, which hopefully leaves majority of users unaffected and out of harm's way.

Continue Reading

Google Glass update doesn’t play nice with Android Wear

Google Glass update doesn’t play nice with Android Wear

Google has just released updates to both its MyGlass companion app and the Google Glass XE22 firmware itself that adds the most requested feature of mirroring your phone's notifications. While it is a welcome change that makes the smart eyepiece a lot more useful for some people, it seems that the implementation hit a little snag. Aside from disabling notifications on an Android Wear smartwatch paired with the same phone, which is an explicit "feature", it apparently, hopefully accidentally, cuts off most, if not all, communication between the smartwatch and the smartphone as well.

Continue Reading

1 2 3 4 5 6