Category Archives: Security News
Researcher Finds 200,000 Wi-Fi Cameras Wide Open To Hacking
Vast swathes of Wi-Fi IP cameras suffering from zero-day vulnerabilities, making them easy targets for hackers.
What began as an everyday study of basic security issue in one IP camera quickly turned into seven major vulnerabilities that affects over 1,000 camera models and left nearly 200,000 cameras wide open to attack. Pierre Kim disclosed the vulnerabilities to the larger world wide web last Wednesday and listed all the affected models in a post on his GitHub page.
Firefox 52 Bans Plugins And Is First Browser To Use WebAssembly
Firefox 52 bans plugins except for Flash, warns users about logins on unencrypted websites, and claims to run processor intensive apps at nearly the same speed as native code.
Mozilla have quietly released their latest browser, Firefox 52 into the wilds of the internet this week. In doing so Firefox has officially become the world’s first web browser to fully support the new WebAssembly standard.
WebAssembly is a new browser standard that all the major players in the industry are currently considering using as the next step in web browsing. Google, Apple, and Microsoft have all agreed that WebAssembly could be a potential game changer. The fact that Mozilla have got their first however is hardly a surprise. WebAssembly as a going concern is a direct result of a Mozilla Labs research project that started in 2015.
Did the CIA hack you? Wikileaks leak may allow antivirus vendors to tell
Security researchers are concerned that WikiLeaks may have mislead the public with the CIA document dump.
Thanks to WikiLeaks, antivirus vendors will soon be able to figure out if you have been hacked by the CIA.
On Tuesday, WikiLeaks dumped a trove of 8,700 documents that allegedly detail the CIA’s secret hacking operations, including spying tools designed for mobile phones, PCs and smart TVs.
WikiLeaks has redacted the actual source code from the files to prevent the distribution of cyber weapons, it said. Nevertheless, the document dump—if real—still exposes some of the techniques that the CIA has allegedly been using.
Hackers exploit Apache Struts vulnerability to compromise corporate web servers
The vulnerability allows attackers to execute malicious code on servers without authentication
Attackers are widely exploiting a recently patched vulnerability in Apache Struts that allows them to remotely execute malicious code on web servers.
Apache Struts is an open-source web development framework for Java web applications. It’s widely used to build corporate websites in sectors including education, government, financial services, retail and media.
Windows 10 Privacy Still Cause For Concern
New update changes are welcome say European Union privacy watchdogs, but still do not go far enough
Microsoft has found itself facing an investigation by European privacy regulators over concerns done enough to address issues surrounding the collection and processing of user data, despite a series of changes to Windows 10 last month.
Microsoft has already made substantial changes in the the upcoming “Creators Update” relating to the way users install Windows 10, giving them enhanced options and placing privacy settings front-and-center during setup with easy to understand yes/no sliders giving users the power to turn off such ‘features’ as location data, diagnostic telemetry and data used in ad targeting.