If you needed any more convincing as to just how big a deal the recently discovered Stagefright vulnerability is on Android devices, just take a look at how Google and Samsung are responding.
With every day that passes, more details of the activities of controversial spyware firm Hacking Team come to light, aided by the release of 400 GB of documents, source code and email archives from the hacked firm.
For the past few years, Google has been holding an annual bug-hunting competition – known as Pwnium – to encourage vulnerability researchers to find security holes in Chrome OS and the Chrome browser.
Google took advantage of the fact that many of the world’s leading bug hunters were already meeting at the CanSecWest security conference in Vancouver to compete in Pwn2Own (a separate bug-hunting competition) to run their own,
For the third time in a month, Google has gone public about a security vulnerability in Microsoft’s code – and not been prepared to wait for the software giant to publish a patch.
The security hole, which exists in Microsoft Windows 7 and 8.1 is expected to be patched in Microsoft’s regular monthly security update on Tuesday February 10th.
If I told that you that a bunch of hackers had found a zero-day vulnerability in Microsoft Windows 8.1 you would probably be concerned.
Especially if details of the unpatched security bug had not only been made public, but actual working exploit code had also been released on the internet for anyone else to use.
If you want to watch a video, you go to YouTube. It’s as simple as that.
Although other sites exist which host videos, Google-owned YouTube is the Goliath in the market – and gets the overwhelming bulk of the net’s video-watching traffic.
And, of course, that enormous success and high traffic brings with it unwanted attention –
When news reports broke earlier this week about a massive leak of Google account passwords, there must have been plenty of users who took a big gulp.
Would their email address and password be amongst the alleged five million published on a Russian web forum? Was it possible that Google itself had been hacked,
Google has announced that it is assembling a crack team of researchers, devoted to finding and reporting security holes in widely used software.
According to Google security engineer Chris Evans, the group – which has been dubbed “Project Zero” – aims to uncover unpatched security vulnerabilities before they are exploited in targeted internet attacks.
Security researchers at IBM have gone public about a critical security vulnerability in the Android operating system, that could allow hackers to remotely execute code on users’ devices and steal sensitive information.
The flaw, which was discovered nine months ago by researchers of the Application Security team at IBM but has only now been made public,
Less than three weeks after Google pushed out Android 4.4.3 to users of its Nexus smartphones and tablets, the technology giant has unexpectedly released factory images, binaries and source code for a new version – Android Kitkat 4.4.4 – patching a serious vulnerability in the OpenSSL cryptographic library.
Sascha Prüter, a Google Android program manager,
UPDATE September 16, 2013: Due to installations problems and some re-targeting issues, Microsoft re-issued a few patches last week. Get the new updates on the Microsoft blog.
This is definitely a September to remember – last year at this time Microsoft released only 2 bulletins and both were only rated Important.
How would you feel if a restaurant, hotel or retailer knew your information had been compromised, but you didn’t find out until fraudulent charges started appearing on your credit card? Or if a company you had invested tens of thousands of dollars in didn’t let you know that it had suffered a data breach? Not great I’d imagine,
So, the web is dead. Or so says the latest cover of Wired Magazine. I must admit, seeing this pronouncement (in bright orange!) pop out of my mailbox caused me to stop in my tracks. But the hot Arizona sun soon had me scrambling for the cover of my comfortably AC’d house and I continued my pondering there.
Reflecting on recent headlines that Google was going to drop Windows usage for desktops and move to Linux or OS X (Apple) reminded me of advice I received very early on in my security career – no operating system is the holy grail and you are always better off working with one you are more familiar with,
The analogies comparing Android and iPhone OS to the PC and the Mac back in the ‘80s are everywhere on web. The ground-breaking Mac established an early lead that was soon eclipsed by the comparatively open WinTel platform. Will the iPhone’s early lead in the smart phone market place similarly give way to the comparative openness of Android available on a wide range of hardware options?