Security researchers ERNW identity critical vulnerability affecting the Android Bluetooth subsystem, which it is calling ‘BlueFrag’
News flaw
Citrix Flaw Opens Networks To Ransomware Risk
Hackers attempt to exploit critical flaw in Citrix ADC and Citrix Gateway to install ‘Ragnarok’ ransomware on vulnerable networks
TikTok Fixes ‘Serious’ Security Flaws
Video-sharing firm TikTok says it has fixed serious vulnerabilities identified by security specialist Check Point, that were present for most of 2019
Twitter Fixes Serious Security Glitch In Android App
Company urges Android users to update to latest version of app after finding bug that could allow account takeovers and information leaks
Apple iPhone 5 Users Warned To Update iOS Now, Or Lose Functionality
Users of older Apple devices warned to immediately update the iOS due to ‘GPS time rollover issue’
Samsung Patches Fingerprint Flaw With Galaxy S10
Update to fix problems with Samsung’s fingerprint recognition feature as phone giant urges users to apply patch
Intelligence Agencies Warn Of Flaw With VPN Products
Both the US NSA and UK NCSC warn hackers are actively exploiting vulnerabilities in VPN products
Microsoft Patch Tuesday Fixes 59 Flaws
Nine critical flaws patched, and the good news is there no-zero-day flaws requiring system admin attention
Amazon Promoted Webcams Vulnerable To Hackers, Warns Which?
Cheap home security cameras, webcams and baby monitors, promoted by Amazon, are riddled with security flaws
US Revives Airplane Cybersecurity Bug Hunt
Department of Homeland Security revives program to identify cybersecurity flaws in modern aircraft
Cisco Patches Critical Flaw That Allowed Root Access To Guest OS
Critical flaw in Cisco IOS software could allow hackers to access the Guest Operating System as root user
Microsoft Issues Emergency Patch For IE
Emergency patch for Internet Explorer to stop attackers hijacking the web browser
Multiple Vulnerabilities in D-Link, Comba Routers, Warns Trustwave
D-Link and Comba slated for poor response to discovery of multiple vulnerabilities found on their routers
Google Warns Of ‘Sustained Effort’ To Hack Apple iPhones
Google’s Project Zero warns of a ‘sustained effort’ to hack iPhones over past two years, via poisoned websites
Researcher Releases Steam Vulnerability After Valve Ban
Researcher who clashed with Valve over Steam vulnerability, which then banned him, makes public the flaws
Biometrics Database Breach Not So Big, Says Suprema
‘Errr yes it was’ security researchers insist, estimating that ‘large amounts of biometrics data’ has been exposed
Biometrics Database Used By Banks, Police Contains Major Flaw
Data risks highlighted after researchers uncover major breach in biometric database used by police, banks
DSLR Cameras Vulnerable To Ransomware – Check Point
Not such a pretty picture. Security researchers manage to hack Canon DSLR camera with ransomware
WhatsApp Flaw Unpatched For Over A Year, Says Check Point
Facebook was told about WhatsApp flaw over a year ago, but the vulnerability remain exploitable today
Apple Offers Up To $1m For iPhone Bug Bounty
Opens up bug bounty scheme to all researchers, and increases top financial rewards to $1m for most serious vulnerabilities
Apple Disables Watch Walkie-Talkie App
Vulnerability could have allowed people to listen in, so Apple takes decision to disable app
Zoom App Flaw Allows Mac Camera To Be Turned On Remotely
Zoom video conferencing app on Apple Macs contain zero-day vulnerability that allows for camera exploit
Firefox Users Urged To Update Browser
Mozilla advisory urges update after discovery of zero-day vulnerability being exploited in the wild
All Docker Versions Vulnerable To Unpatched Flaw – Report
All versions of Docker are vulnerable to serious flaw, but a patch is being reviewed
Apple Offers Free MacBook Repairs For Keyboard Flaw
Butterfly mechanism for nearly all modern MacBooks contains design flaw, as Apple redesigns keyboards for new models
Intel ‘Zombieload’ Fix Prompts Processor Slowdown Fears
Meltdown and Spectre flashback? Researchers warn of data centre processor slowdown from Zombieload fix
SAP Flaw Leaves 50,000 Companies Vulnerable
New exploits targeting SAP business applications released in a public forum, warn security researchers
Warning About Chrome Flaw In Address Bar
Researcher finds simple exploit in Chrome for mobile that could be used to launch phishing attacks
Windows 7 Users At Risk From ‘Serious Bug’, Google Warns
Millions of PCs still at risk from vulnerability that is being actively exploited by criminals
Intel ‘Spoiler’ Chip Flaw Uncovered By Researchers
Return of the Spectre scare? Spoiler flaw could allow attacker to exploit how a PC’s memory works