security

‘QuadRooter’ vulnerabilities put 900m Android users at risk researchers say

‘QuadRooter’ vulnerabilities put 900m Android users at risk researchers say

A research team at Check Point has detailed a new set of Android vulnerabilities that could potentially leave as many as 900 million users exposed to security threats. More specifically, the set of four vulnerabilities - dubbed "QuadRooter" by Check Point - is found within Qualcomm chips, which becomes a major problem when you realize that Qualcomm chips are used in 65% of Android devices.

Continue Reading

Samsung Pay MST tech shown to be susceptible to theft, fraud [UPDATE]

Samsung Pay MST tech shown to be susceptible to theft, fraud [UPDATE]

Samsung Pay has surprisingly been enjoying a significant amount of popularity and support in the US, rivaling even Apple Pay. Part of its success can perhaps be attributed to its Magnetic Secure Transmission or MST, a technology it acquired from LoopPay, which allows Samsung Pay to be used with traditional magstrip-based terminals. It seems, however, there might be a very high price to pay for that convenience. In a talk at the Black Hat security conference in Las Vegas, researcher Salvador Mendoza showed how easy it was to steal Samsung Pay's MST data so that hackers and thieves can use credit card data with almost no restrictions.

Continue Reading

iOS 9.3.4 update credits Team Pangu for closing jailbreak hole

iOS 9.3.4 update credits Team Pangu for closing jailbreak hole

The irony of Apple's latest security bulletin is perhaps not lost on the jailbreaking community. A mere days after the said community rejoiced over the release of a jailbreak tool for the current iOS 9.3.3, Apple releases an iOS 9.4.4 update that, though not explicitly saying so, practically plugs up the exploit used to jailbreak the iPhone. As if adding insult to injury, the bulletin specifically names Team Pangu, the popular hacking team devoted to jailbreaking iOS.

Continue Reading

Apple jumps on the bug bounty train. Somewhat.

Apple jumps on the bug bounty train. Somewhat.

Apple is turning a new leaf as far as security it concerned. No, don't worry, it still has a firm stance on encryption. But now it is, for the first time, also looking outward for help in keeping its software and services more secure. At the Black Hat cyber security conference in Las Vegas, which is also unusual for Apple, it announced that, at long last, it will have a bug bounty program. That said, it's not yet open to everyone, which makes the $200,000 prize somewhat of an unreachable dream.

Continue Reading

Galaxy Note 7 iris scanner beans spilled

Galaxy Note 7 iris scanner beans spilled

Certainly, the big news so far this week has been the launch of the new Galaxy Note 7 smartphone from Samsung, which we spent some hands-on time with. This device was long rumored and a slew of those rumors focused on the fact that the Note 7 would have a fancy iris scanner in it for security. We even say a video leak of a guy showing us how the iris scanner would work. Now that the Note 7 is official, Samsung is offering up all the details on its iris scanner.

Continue Reading

Yahoo investigating hacker’s claims of massive data breach

Yahoo investigating hacker’s claims of massive data breach

Those of you with a Yahoo account may want to reset your password, as the hacker behind the recent MySpace and LinkedIn data dumps is claiming that he has the details of 200 million Yahoo accounts. He's ready to sell too, posting the lot on the dark web with an asking price of three bitcoins, which amounts to around $1,800.

Continue Reading

Android now watches user accounts, tattles with notifications

Android now watches user accounts, tattles with notifications

Android devices will soon be working with native notifications that'll tell their user that their account has been used on a new device. When a user signs in on a new device, every other device they have (on Android) will see a notification telling them that they've had a sign-in on a new device. This will be helpful for people that are in danger of having their account stolen, as they'll already be aware of every time they themselves sign in, but will be able to protect themselves at first sign of any unusual activity.

Continue Reading

iOS Pangu Jailbreak accused of unauthorized credit card access

iOS Pangu Jailbreak accused of unauthorized credit card access

Jailbreaking iOS gets a lot harder with every new release, so when a popular jailbreaking tool like Pangu releases one for the current iOS 9.3.3, there is unsurprisingly no small amount of rejoicing and excitement around it. Unfortunately, it seems that the euphoria was premature, as a number of jailbreakers discovered to their shock that there have been unauthorized accesses to critical private information, like credit cards, PayPal, and Facebook after they have jailbroken their iOS devices using the tool released by Pangu.

Continue Reading

WhatsApp still isn’t as secure as you might think

WhatsApp still isn’t as secure as you might think

Facebook's acquisition of WhatsApp in early 2014 raised all sorts of red flags for security and privacy interest groups. Facebook, then and to some extent now, isn't exactly the epitome of those two values. Over time, WhatsApp has tried to assuage fears by implementing features such as end-to-end encryption. Apparently, that may be futile after all. Forensic scientist Jonathan Zdziarski revealed that, while the app does encrypt the messages it stores, it doesn't actually completely delete them and its backups still leave users open to spying or law enforcement.

Continue Reading

August Home teams up with Amazon to offer first Alexa-enabled door lock

August Home teams up with Amazon to offer first Alexa-enabled door lock

As time goes on, Amazon keeps bolstering the smart home capabilities of Alexa. The company announced today that it's adding the first Alexa Skill for door locks, with the August Home Smart Lock getting the distinction of being the first smart lock that's Alexa-enabled. Now owners of Alexa devices like the Echo or Tap can lock their front doors or check if the doors are locked using Alexa voice commands.

Continue Reading

LastPass browser extensions reported to be vulnerable to exploits

LastPass browser extensions reported to be vulnerable to exploits

Passwords are the first and last line of defense against getting hacked, which is why users are strongly advised to use strong and different passwords for each service. Keeping track of those, however, is more than our little brains can handle, which is why password managing services have thrived. But what if those services themselves become vulnerable? That was the situation LastPass found itself in when its web extensions were discovered to be exploitable and can be used to trick users into giving away their passwords. The good news is that LastPass has already addressed those issues, but should still serve as a warning to everyone.

Continue Reading

BlackBerry DTEK50 Android phone aims for greatness through security

BlackBerry DTEK50 Android phone aims for greatness through security

We've not yet put our hands on the BlackBerry DTEK50, but based on our experience with the design it's based on, we can say that it's probably a pretty good Android phone. Have a peek at our most recent report on what BlackBerry has done to use Alcatel's design knowledge to create this new device. This is the DTEK50, a device that BlackBerry leads with suggesting is their thinnest smartphone ever - one with a great camera and top-notch security features.

Continue Reading

Prev 1 2 3 4 5 6 Next