TaiG 2.2.1 released with setreuid patch and stability improvements

TaiG

After a false start earlier this morning with an update to its iOS 8.4 jailbreak tool, TaiG has officially released version 2.2.1.

This update is security oriented, as it contains the setreuid patch to prevent applications from obtaining to root privileges through setreuid. The update also contains stability improvements. If you’ve yet to jailbreak your iOS 8.4 device, it is recommended that you use this latest version of TaiG’s tool, version 2.2.1. ... Read the rest of this post here


"TaiG 2.2.1 released with setreuid patch and stability improvements" is an article by iDownloadBlog.com.
Make sure to follow us on Twitter, Facebook, and Google+.

How the NSA Spied on Antivirus Companies to Make Undetectable Malware

NSA GCHQ Spying Kaspersky Antivirus

Russian antivirus company Kaspersky revealed recently that it was the target of hackers behind the Stuxnet and Duqu worms last year. The hackers have been attacking the company’s network for months, collecting data on its operations and software. But it turns out that intelligence agencies including the NSA and GCHQ have spied on antivirus companies for years, looking for exploitable vulnerabilities.

Continue reading...

Apple issues Mac App Store patch for XARA exploits as additional fixes are ‘in progress’

white hat hacker 2
A cross application resource attack (XARA) that researchers at Indiana University, Georgia Tech and China’s Peking University publicized last week seems to have been partially addressed as Apple issued a server-side fix on the Mac App Store to block malicious apps and secure app data.

Additional fixes are in the works for the XARA exploits on both iOS and OS X, a company spokesperson told iMore. XARA exploits allow malicious apps to steal iCloud credentials of a user, access private data in apps like 1Password and Evernote, hijack their iCloud Keychain passwords and more.... Read the rest of this post here


"Apple issues Mac App Store patch for XARA exploits as additional fixes are ‘in progress’" is an article by iDownloadBlog.com.
Make sure to follow us on Twitter, Facebook, and Google+.

Samsung Galaxy Keyboard Hack: Samsung Says Fix Is On The Way

Samsung Galaxy Hack

Just a few days after a researcher at the Blackhat Mobile Security Summit in London disclosed a keyboard vulnerability that put upwards of 600 million Samsung Galaxy devices at risk, Samsung announced that it plans to roll-out a security fix to address the issue.

The vulnerability itself stems from the stock Swiftkey keyboard that comes pre-installed on Samsung Galaxy smartphones. Because the Swiftkey keyboard will periodically look for and download additional language packs, security researchers at NowSecure figured out a way to spoof a proxy server and send down malicious code to a device.

Continue reading...

Major security flaws leave iOS and OS X vulnerable to wide ranging password theft

white hat hacker 2

Your confidential information ranging from web passwords in Chrome and other browsers to app passwords to banking credentials stored and synced between devices though Apple’s iCloud Keychain service—even data you thought was stored safely in password managers like 1Password and LastPass—can be easily compromised due to a trio of major vulnerabilities discovered in Apple’s desktop and mobile operating systems.

As discovered by a team of researchers at Indiana University, Georgia Tech and China’s Peking University and reported by The Register, Keychain’s access control lists, URL schemes and OS X’s app containers contain flaws creating serious attack vectors.... Read the rest of this post here


"Major security flaws leave iOS and OS X vulnerable to wide ranging password theft" is an article by iDownloadBlog.com.
Make sure to follow us on Twitter, Facebook, and Google+.

Crime Pays: Malware authors enjoy an average 1,425% return on investment

Malware Profits

A recent report from Trustwave on the state of malware relays that online crime, unfortunately, does pay. The report, originally cited by Net Security, relays that attackers on average enjoy a 1,425% return on investment, with the average return checking in at $84,100 on an average initial investment of $5,900.

Continue reading...

Sex, drugs and rock ’n’ roll: Hackers stole highly sensitive personal data of government spies

U.S. Government Spy Hack

Unknown hackers have recently hit the “PR” department of the U.S. government, stealing data for millions of employees – at least four million, according to an early estimate – including highly sensitive personal details that might be used to uncover spies and to blackmail U.S. officials.

Continue reading...

Iran bans some officials from using smartphones over spying jitters

A cleric uses his smartphone in the Iranian parliament

As you might gather, Iran is more than a little nervous about people bringing the wrong devices into high-security locations -- the last time that happened, its nuclear program went down the tubes. It's no surprise, then, that the country just said it will ban officials from using smartphones for work if they have access to classified info. Brigadier General Gholamreza Jalali claims that these handsets are a perfect cocktail of security risks. They often back up their data to the cloud, he argues, and it's at once easy to access that data yet hard to remove it. The move is bound to be a big hassle for staffers who'll only have basic cellphones while at work, but the Iranian government will likely consider it a worthwhile sacrifice if it prevents other nations from spying on its political maneuvers.

[Image credit: AP Photo/Vahid Salemi]

Filed under: , ,

Comments

Source: AFP (Phys.org)

Hackers reportedly stole Social Security numbers from every federal employee

Federal Employees Social Security Numbers Hack

Yikes. The Associated Press reports that the American Federal of Government Employees union is alleging that hackers actually stole all federal employees' Social Security numbers in a massive hack that the government first disclosed last week. At the time, the government said that roughly 4 million workers had their personal information exposed during the hack, although AFGE president J. David Cox is now claiming the problem is much worse than what the Obama administration has admitted.

Continue reading...

Twitter’s shareable blacklists are a nightmare for the web’s worst trolls

Twitter Block List Sharing

Twitter has plenty of issues, but chief among them is how easy it is for dirtbags with too much free time to berate other users. Twitter has tools to block and mute these users, but that's not quite enough to get the job done, which is why the social media platform is introducing shared block lists today.

Continue reading...