Home / Tag Archives: vulnerability (page 5)

Tag Archives: vulnerability

The scandals around LocationSmart and Securus, dealers of millions of Americans’ real-time cell location data, should be a bigger deal than Cambridge…

Will Oremus / Slate : The scandals around LocationSmart and Securus, dealers of millions of Americans' real-time cell location data, should be a bigger deal than Cambridge Analytica   —  Wireless carriers are sharing your real-time location with shady third parties—and a bug lets anyone use that data to track you.

Read More »

In the murky world of online rehab promotion, marketers find captive audiences in Facebook addiction groups, sometimes by running groups without full…

Cat Ferguson / The Verge : In the murky world of online rehab promotion, marketers find captive audiences in Facebook addiction groups, sometimes by running groups without full disclosure   —  Huge groups of vulnerable people looking for help are a rehab marketer's dream  —  When Laurie Couch first joined the Affected …

Read More »

Microsoft and Google disclose Speculative Store Bypass CPU flaw that exploits speculative execution and is similar to Spectre and Meltdown (Tom…

Tom Warren / The Verge : Microsoft and Google disclose Speculative Store Bypass CPU flaw that exploits speculative execution and is similar to Spectre and Meltdown   —  New firmware updates are on the way  —  Microsoft and Google are jointly disclosing a new CPU security vulnerability that's similar to the Meltdown …

Read More »

Microsoft and Google detail new Spectre and Meltdown flaw, Variant 4, that uses a different method to extract info; Intel says patch coming within…

Alfred Ng / CNET : Microsoft and Google detail new Spectre and Meltdown flaw, Variant 4, that uses a different method to extract info; Intel says patch coming within weeks   —  Intel said it will soon release updates to fix newly revealed vulnerabilities.  —  Intel has disclosed a new variant of its widespread Spectre …

Read More »

It has been a bad week for encrypted messaging and it’s only Wednesday

Enlarge (credit: Elsamuko ) The past three days have highlighted the potential perils that can threaten people who rely on desktop computers to send encrypted messages. The events—which involve encrypted email and the desktop versions of the Signal and Telegram messaging programs—should in no way discourage people from using encryption. They do, however, provide important teaching moments about the often overlooked limitations of these apps. More about that in a moment. First, a review of the vulnerabilities. Monday brought word of decade-old flaws that might reveal the contents of PGP- and S/MIME-encrypted emails . Some of the worst flaws resided in email clients such as Thunderbird and Apple Mail and offer a golden opportunity to attackers who have already intercepted previously sent messages. By embedding the intercepted ciphertext in invisible parts of a new message sent to a sender or receiver of the original email, attackers can force the client to leak the corresponding plaintext. Thunderbird and Mail have yet to be patched, although the Thunderbird flaw has been mitigated by a update published Wednesday in the Enigmail GPG plugin . Also on Monday, a different team of researchers disclosed vulnerability in the desktop version of the Signal messenger .

Read More »

Advertisers on Facebook are re-examining their ad spend commitments to the platform as average price per ad goes up and ad targeting gets harder after…

Seb Joseph / Digiday : Advertisers on Facebook are re-examining their ad spend commitments to the platform as average price per ad goes up and ad targeting gets harder after GDPR   —  Advertisers are more concerned that they are wasting money on Facebook than they are about the platform's privacy lapses.

Read More »

How WhatsApp is being used to spread misinformation, share fake polls, and exacerbate religious divides ahead of national elections in India (Vindu…

Vindu Goel / New York Times : How WhatsApp is being used to spread misinformation, share fake polls, and exacerbate religious divides ahead of national elections in India   —  MANGALORE, India — Waving a giant saffron flag, Pranav Bhat last week joined a political rally for Prime Minister Narendra Modi and India's ruling party …

Read More »

How WhatsApp is being used to spread misinformation, share fake polls, and exacerbate religious divides ahead of national elections in India (Vindu…

Vindu Goel / New York Times : How WhatsApp is being used to spread misinformation, share fake polls, and exacerbate religious divides ahead of national elections in India   —  MANGALORE, India — Waving a giant saffron flag, Pranav Bhat last week joined a political rally for Prime Minister Narendra Modi and India's ruling party …

Read More »

Sensor Tower: Apple’s App Store redesign improved browse-driven app downloads to 15%+ of all downloads, up from ~10%; search still primary app…

Sarah Perez / TechCrunch : Sensor Tower: Apple's App Store redesign improved browse-driven app downloads to 15%+ of all downloads, up from ~10%; search still primary app discovery method   —  When Apple introduced its completely redesigned App Store last fall, one of its goals was to improve app discovery by placing …

Read More »

Snapchat starts showing unskippable six-second ads in the middle of Shows; ads don’t link to longer videos or e-commerce sites like its typical video…

Garett Sloane / Ad Age : Snapchat starts showing unskippable six-second ads in the middle of Shows; ads don't link to longer videos or e-commerce sites like its typical video ad unit   —  Snapchat viewers are seeing a new type of ad—ones they have to watch.  —  On Monday, the first forced-view ads …

Read More »

Amazon says its board has adopted a "Rooney Rule" to increase board diversity, after its initial opposition sparked employee outrage (Jason…

Jason Del Rey / Recode : Amazon says its board has adopted a “Rooney Rule” to increase board diversity, after its initial opposition sparked employee outrage   —  The company says it is merely formalizing a practice that was already in place.  —  Amazon said on Monday that it would adopt a policy whereby women …

Read More »

Tinder’s working on Places, a new location-tracking feature that will highlight where users visited but filter out spots not deemed…

Ashley Carman / The Verge : Tinder's working on Places, a new location-tracking feature that will highlight where users visited but filter out spots not deemed “social”, screenshots show   —  Last week we reported on Tinder's in-the-works location-tracking feature that'll help users connect with one another in the real world.

Read More »