1. Jason

    How to turn off FaceTime and avoid Apple's eavesdropping bug

    A newly discovered privacy bug in Apple's FaceTime software allows users to hear and see the person they are calling, without the recipient even picking up. The glitch impacts iPhones and iPads running iOS 12.1, and Apple PCs running macOS Mojave with the newly added Group FaceTime feature...
  2. Jason

    DailyMotion discloses credential stuffing attack

    Video sharing platform DailyMotion announced on Friday that it was the victim of a credential stuffing attack, ZDNet has learned. Credentials stuffing is a security term that describes a type of cyber-attack where hackers take combinations of usernames and passwords leaked from other sites and...
  3. Jason

    Collection 1 Data Security Breach

    Another bad one, change those e-mails and enable two-factor authentication folks...
  4. ib4

    Headlines Thousands of Applications Vulnerable to RCE via jQuery File Upload

    The flaw has existed for eight years thanks to a security change in Apache. A widely used plugin by Blueimp called jQuery File Upload contains a years-old vulnerability that potentially places 7,800 different software applications at risk for compromise and remote code-execution (RCE). jQuery...
  5. ib4

    Headlines UEFI UH OH - First UEFI malware discovered in wild is laptop security software hijacked by Russians

    "ESET Research has published a paper detailing the discovery of a malware campaign that used repurposed commercial software to create a backdoor in computers’ firmware—a “rootkit," active since at least early 2017 and capable of surviving the re-installation of the Windows operating system or...
  6. Jason

    Anti-Malware / Rootkit / Exploits / Etc.

    Hey, So I just built a new PC for myself, and I'm updating some software I use... What security/privacy tools do you guys use for everything other than anti-virus?
  7. ThisIsBananas

    Headlines Pizza Hut website hacked, and fraudulent orders made under people's accounts.

    Apparently was hacked, and fraudulent orders are being made in people's accounts. If you have a account, be sure to remove your financial information and address, because hackers will charge you and send you weird pizza, along with weird messages to the staff...
  8. Jason

    Receiving an Indian (Telugu) letter on your iPhone will crash multiple apps

    Recent concerns about the security and stability of its software have reportedly caused Apple to delay the addition of some features to the next major update to iOS as it works on further optimising the code, perhaps to stave off a repeat of the early difficulties following the release of iOS...
  9. Jason

    Headlines Hackers bring ATM 'jackpotting' to the U.S.

    The Secret Service is warning banks about a hacking scheme called "jackpotting" that lets someone steal money from ATMs. It's the first time this type of scheme has made its way to the United States. To execute the cyberattack, a thief needs physical access to an ATM and will use malware...
  10. Jason

    Fitness app Strava exposes the location of military bases

    Strava, the popular app for tracking running, cycling and swimming, is not the most obvious go-to for exposing national secrets, but a heatmap of activity from users has been found to unearth the locations of U.S. military bases worldwide. The company’s review of 2017 showed all routes taken by...
  11. Jason

    'All wifi networks' are vulnerable to hacking, security expert discovers

    The security protocol used to protect the vast majority of wifi connections has been broken, potentially exposing wireless internet traffic to malicious eavesdroppers and attacks, according to the researcher who discovered the weakness. Mathy Vanhoef, a security expert at Belgian university KU...
  12. Jason

    U.S. Senate votes to overturn Obama broadband privacy protections

    The U.S. Senate on Thursday voted narrowly to repeal regulations requiring internet service providers to do more to protect customers' privacy than websites like Alphabet Inc's Google (GOOGL.O) or Facebook Inc (FB.O). The vote was along party lines, with 50 Republicans approving the measure and...
  13. Jason

    Your Hot Hands Can Give Away Your Smartphone PIN

    If you were protecting your smartphone passcode from someone lurking over your shoulder, or from unseen security cameras, you might cover the screen as you tap in the PIN’s four or six digits. But once you’ve unlocked the phone, perhaps you’d let down your guard, and leave the screen in full...
  14. Jason

    Notice now supports SSL!

    Hey guys, Just a quick note that we're now testing an SSL connection for enhanced security while visiting our site... Please let me know if you do not receive the "lock" symbol (or the equivalent in your particular browser), or are forwarded anywhere other than:
  15. RebelBuddha

    Discuss What is Vault 7?

    From the Pentagon Papers to Watergate, the Iraq War Logs to Snowden, we now have Wikileaks' Vault 7. After a series of cryptic messages by Wikileaks, we now have the answer to 'What is Vault 7?'. The first part in a series of the Vault 7 documents, named "Year Zero", consists of...
  16. Jason

    Security researcher accuses Microsoft of 'sneaky data mining' in Win 10

    Ah, you can never get enough paranoia nowadays, can you? Security researcher Mike Patterson -- founder and CEO of security analytics organization Plixer -- says Microsoft's Windows 10 sends encrypted data from your machine every five minutes, and there’s basically very little you can do to stop...
  17. Jason

    Microsoft Account Credentials Leak vulnerability

    What would you say if I told you that an almost two decade old vulnerability in Windows may leak your Microsoft Account credentials when you visit a website, read an email, or use VPN over IPSec? A bug, that goes all the way back to Windows 95 is causing major issues on Windows 8 and Windows...
  18. TooSmartGuile

    Who's Tired of Passwords?

    I really hate the password systems that tell us how "strong" or "weak" out passwords are. But the absolute worst thing about passwords are those websites that tell you to have at least one capital letter, one number, and one special character. Fuck that shat! I wanna create whatever password I...
  19. MaxPower

    Ignoring WiFi security

    People talk about how insecure Wireless networking is. The technology is not the insecure part though, it's the methods of deployment. There is enough progress now in means of deployment, authentication, and encryption, to allow any small, medium, or enterprise entity to securely deploy a WiFi...