This year, we decided to continue our tradition of small-scale experiments with security of connected devices but focused on the automotive-related topic. We randomly took several different automotive connected devices (a couple of auto scanners, a dashboard camera, a GPS tracker, a smart alarm system, a pressure and temperature monitoring system) and reviewed their security setup.
BlackBerry Cylance has prepared an update for its CylancePROTECT product to address a recently disclosed bypass method, but the company has downplayed the impact of the issue. Australia-based cybersecurity firm Skylight reported last week that its researchers had found a way to trick Cylance’s AI-based antivirus engine into classifying malicious files as benign. They discovered what they described as a universal bypass method that involved taking strings from a certain…
Researchers have spotted another malicious attempt by bad actors to breach iOS users’ privacy. This time, they have discovered an
Misusing iOS URL Scheme Could Allow Attackers Hijack User Accounts on Latest Hacking News.
It hasn’t been long since we studied how Android apps evade app permissions to exfiltrate user data. Once again, researchers
Spearphone Attack Allows Android Apps to Listen To Your Loudspeaker Conversations on Latest Hacking News.
Once again a serious iOS vulnerability that could risk the security of iPhone and iPad population has surfaced. Fortunately, the
Apple iOS 13 Vulnerability Could Allow Unauthenticated Access To Saved Passwords And Emails on Latest Hacking News.
Researcher creates ‘Selfblow’ proof-of-concept attack for exploiting a vulnerability that exists in “every single Tegra device released so far”.
Microsoft this week announced the launch of a new bug bounty program for its Dynamics 365 enterprise resource planning (ERP) and customer relationship management (CRM) applications. The company has invited both independent researchers and organizations to find vulnerabilities in Dynamics 365 online applications and on-premises products. Rewards range between $500 and $20,000, but Microsoft says higher amounts may also be awarded depending on impact, severity and quality of the vulnerability…
Google on Thursday informed security researchers that they can now earn significantly higher rewards if they submit vulnerability reports through the company’s bug bounty programs. According to the tech giant, over 8,500 security bug reports have been received since the launch of its Chrome Vulnerability Rewards Program in 2010, and more than $5 million have been paid out to researchers. The company has now decided to increase rewards across the…
A researcher has found a way to break into Instagram accounts within minutes. As discovered, an Instagram login vulnerability could
Instagram Login Vulnerability Could Allow Account Takeover in Minutes on Latest Hacking News.
Researchers at Australia-based cybersecurity firm Skylight claim to have found a way to trick Cylance’s AI-based antivirus engine into classifying malicious files as benign. Cylance, which last year was acquired by BlackBerry and is now called BlackBerry Cylance, told SecurityWeek it has launched an investigation to determine if the researchers’ findings are valid or if their method works as a result of a misconfiguration of the product. Artificial intelligence and…