Techmeme

Results 91 - 100 of about 571:

Dan Goodin / Ars Technica:
iOS cookie theft bug that allowed hackers to impersonate users fixed by Apple after 2.5 years   —  iOS cookie theft bug allowed hackers to impersonate users  —  Apple fixes vulnerability 2.5 years after receiving private report.  —  Apple has squashed a bug in its iOS operating system …
Jan 21, 2016, 10:30 AMIn context
Dan Goodin / Ars Technica:
Researchers disclose an almost three year old privilege escalation bug in the Linux kernel that imperils millions of PCs, servers, and Android phones   —  Linux bug imperils tens of millions of PCs, servers, and Android phones  —  Vulnerability allows restricted users and apps to gain unfettered root access.
Jan 20, 2016, 12:25 AMIn context
Dan Goodin / Ars Technica:
OpenSSH patches critical flaw that allows a malicious server to force clients to leak private keys   —  Bug that can leak crypto keys just fixed in widely used OpenSSH  —  Vulnerability allows malicious servers to read memory on connecting computers.  —  A critical bug that can leak secret …
Jan 15, 2016, 11:50 AMIn context
Dan Goodin / Ars Technica:
Researcher: Apple only blacklisted programs exploiting the Gatekeeper vulnerability instead of fixing the underlying cause   —  How malware developers could bypass Mac's Gatekeeper without really trying  —  New researcher pokes holes in Apple's whack-a-mole approach for fixing Gatekeeper.
Jan 15, 2016, 11:25 AMIn context
Dan Goodin / Ars Technica:
Researchers find older versions of Fortinet's firewall software allow remote access using a hard-coded password; company says issue resolved via patch in 2014   —  Et tu, Fortinet?  Hard-coded password raises new backdoor eavesdropping fears  —  Discovery comes a month after competitor Juniper disclosed unauthorized code.
Jan 12, 2016, 8:15 PMIn context
Dan Goodin / Ars Technica:
Google removes 13 apps from Play Store after researchers found they made unauthorized downloads and tried to gain root privileges   —  Malicious apps in Google Play made unauthorized downloads, sought root  —  Apps with as many as a million downloads removed following their discovery.
Jan 7, 2016, 10:25 PMIn context
Dan Goodin / Ars Technica:
Target's mobile wish-list app exposed sensitive personal data, using an API that lacked authentication   —  Wish list app from Target springs a major personal data leak  —  Database is available over the Internet, no password necessary, researchers say.  —  The next time a friend …
Dec 16, 2015, 4:15 PMIn context
Dan Goodin / Ars Technica:
SHA1 sunset will block millions from encrypted net, Facebook warns   —  Companies unveil controversial fallback plan for tens of millions of browsers.  —  Tens of millions of Internet users will be cut off from encrypted webpages in the coming months unless sites are permitted to continue using SHA1 …
Dec 14, 2015, 10:20 AMIn context
Dan Goodin / Ars Technica:
Dell does a Superfish, ships PCs with easily cloneable root certificates   —  Root certificate debacle that hit Lenovo now visits the House of Dell.  —  In a move eerily similar to the Superfish debacle that visited Lenovo in February, Dell is shipping computers that come preinstalled …
Nov 23, 2015, 1:25 PMIn context
Dan Goodin / Ars Technica:
Malicious Android apps force adware on users by hijacking the Android Accessibility Service and can be extremely difficult to uninstall   —  Android adware can install itself even when users explicitly reject it  —  Hard-to-uninstall apps can also hijack Android Accessibility Service.
Nov 21, 2015, 8:15 PMIn context

Sponsor Posts

Microsoft:
Using intelligence to advance security from the edge to the cloud  —  Microsoft unveils new services to better harden not only our intelligent cloud but also the billions of connected devices that live on its edge.
eero:
eero: your first line of defense against security breaches.  —  Thanks to our automatic and regular software updates as well as a number of other security measures built into our devices and software …
Mozilla:
Facebook Container Extension: Take control of how you're being tracked  —  Our Multi-Account Containers extension has been a game changer for many users, letting them manage various parts of their online life without intermingling their accounts.
Zoho:
Simplify B2B payments and transaction reconciliation with Zoho Books and Standard Chartered Bank integration  —  As your business grows into a corporation, you might start thinking about the challenges of taking your business worldwide.