When most people think of Zimperium, they may recognize us as the leader in enterprise mobile device and app security. Or, they have seen the recent news on the Defense Information Systems Agency (DISA), a U.S. Department of Defense (DoD) organization, selecting us to deliver comprehensive Mobile Endpoint Protection (MEP) to the unclassified government furn
In general, our computing devices are passive. They perform tasks for us when we click buttons or enter some text, but otherwise they just wait for our commands. With the rise of mobile devices, "push" notifications became a way for our devices to alert us when certain things happen. We can get notified when we get text messages, phone calls, or em
Threat actors could target DNA researchers with malware in an effort to modify synthetic DNA orders and create pathogens or toxins, researchers warn.In a newly published article in Nature, a group of academic researchers from Israel’s Interdisciplinary Center Herzliya and Ben-Gurion University of the Negev detail a cyberattack that exploits gaps within the s
# Exploit Title: Fortinet FortiOS 6.0.4 - Unauthenticated SSL VPN User Password Modification# Google Dork: intitle:"Please Login" "Use FTM Push"# Date: 15/11/2020# Exploit Author: Ricardo Longatto# Details: This exploit allow change users password from SSLVPN web portal# Vendor Homepage: https://www.fortinet.com/# Version: Exploit to Fort
Publish At:
2020-11-22 08:09 |
Read:308 | Comments:0 |
Tags:
IOS
Your use passwords to log into websites and services, and since there are so many of them, it’s hard to remember them. It’s a bad idea to use the same password for different websites, because if one site is compromised, hackers will have an email address and password that they can try on other sites. Because of this, you need to ensure that your
Affected Component: all iOS versions < 14.0 LSDIconCache
Latest Vulnerable Version: iOS 13.7
Vendor: Apple, Inc.
CVE: CVE-2020-9773
Disclosure Timeline
Bug discovered: December 1st, 2019
Vendor notified: December 17th, 2019
First patch attempt: March 24th, 2020
Final patch released: September 15th, 2020
Summary
A sandboxed application can circumvent upd
Publish At:
2020-11-18 09:35 |
Read:267 | Comments:0 |
Tags:
iOS Apple CVE
If you’re like most people, you search the web a lot. Google handles nearly 85,000 searches per second, or 7.3 billion per day, or more than two and a half trillion searches every year. Your share of that may be small: if you’re just an average person, you may search the web 3-5 times a day, but some of us, such as writers, may perform several do
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2020-11-13-3 Additional information forAPPLE-SA-2020-09-16-1 iOS 14.0 and iPadOS 14.0iOS 14.0 and iPadOS 14.0 addresses the following issues. Informationabout the security content is also available athttps://support.apple.com/HT211850.AppleAVDAvailable for: iPhone 6s and later, iPod touch 7th generation,
Publish At:
2020-11-15 17:14 |
Read:373 | Comments:0 |
Tags:
IOS
A link-sharing feature in iOS versions of Apple Safari browser makes it possible for iPhone, iPad, and iPod Touch users to alter headlines when sharing parts of webpages.A researcher has raised concerns this feature can be abused not only for pulling harmless pranks but for sharing "fake news" having a wider impact.What is the feature?When browsing
Many popular OS and applications have been hacked during this year’s edition of the Tianfu Cup hacking competition.
This year’s edition of the Tianfu Cup hacking competition was very prolific, bug bounty hackers have discovered multiple vulnerabilities in multiple software and applications.
The Tianfu Cup is the most important hacking conte
Apple has patched three vulnerabilities in iOS (and iPadOS) that were actively being exploited in targeted attacks. Vulnerabilities that are being exploited in the wild without a patch being available are referred to as zero-days. The vulnerabilities were found and disclosed by Google’s Project Zero team, and patches were issued yesterday.
What has Apple
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2020-11-05-2 iOS 12.4.9iOS 12.4.9 is now available and address the following issues.Information about the security content is also available athttps://support.apple.com/HT211940.FaceTimeAvailable for: iPhone 5s, iPhone 6 and 6 Plus, iPad Air, iPad mini 2and 3, iPod touch (6th generation)Impact: A user ma
Publish At:
2020-11-06 14:50 |
Read:387 | Comments:0 |
Tags:
IOS
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2020-11-05-1 iOS 14.2 and iPadOS 14.2iOS 14.2 and iPadOS 14.2 are now available and address the followingissues. Information about the security content is also available athttps://support.apple.com/HT211929.AudioAvailable for: iPhone 6s and later, iPod touch 7th generation, iPadAir 2 and later, and iPad
Publish At:
2020-11-06 14:50 |
Read:386 | Comments:0 |
Tags:
IOS
Apple released iOS 14.2 that addressed three zero-day vulnerabilities in its mobile OS that have been abused in attacks in the wild.
Apple has addressed three iOS zero-day vulnerabilities actively exploited in attacks the wild and affecting iPhone, iPad, and iPod devices.
The zero-day vulnerabilities have been fixed by the IT giant with the release of
Apple has patched today three iOS zero-day vulnerabilities actively exploited in the wild and affecting iPhone, iPad, and iPod devices."Apple is aware of reports that an exploit for this issue exists in the wild," the company said in a security advisory issued today when describing the three flaws.The list of affected devices includes iPhone 6s and