02 Sep 2021

WhatsApp patches vulnerability related to image filter functionality

Popular messaging platform WhatsApp has announced that it released a patch pertaining to image filter functionality that was first discovered by Check Point Research. The flaw allowed attackers to read sensitive information from WhatsApp’s memory, according to the company. The platform boasts two billion monthly active users, making it one

Read More
27 Jul 2021

Time to update your iPhone as Apple fixes ‘actively exploited’ zero day flaw

Apple released a fix for a previously undisclosed flaw that appears to have been actively exploited. The patch pertains to iPad iOS 14.7.1 and iOS 14.7.1. The company also released macOS Big Sur 11.5.1 to address the same issue, however, this one lies in a common Apple kernel extension called

Read More
16 Apr 2021

Google to Delay Publishing Bug Details for 30 Days

Google has announced that they will not publish vulnerabilities details for 30 days after the initial public disclosure, allowing customers more time to fix the bugs and implement patches before technical details are released that could potentially be used by an attacker to exploit the flaw. Google’s Project Zero team

Read More
28 Dec 2020

Windows Zero-Day Still Circulating After Faulty Fix

A high-severity Windows zero-day allows an attacker to install programs and access admin privileges such as viewing, changing, and deleting data. It can lead to a complete desktop takeover and is located in the Print Spooler API. However, the critical flaw remains dangerous after Microsoft failed to effectively patch the

Read More
17 Nov 2020

Dating Site Bumble Leaves Swipes Unsecured for 100M Users

Popular dating site Bumble has accidentally exposed the personal information of 100 million users due to an API bug. Information disclosed includes political leanings, education, distance, height, weight, and other sensitive data that could be of interest to hackers or foreign adversaries. A researcher at Independent Security Evaluators discovered the

Read More
26 May 2020

70 Percent of Mobile, Desktop Apps Contain Open-Source Bugs

Veracode’s annual State of Software Security report has revealed that researchers found 70 percent of applications available online contain at least one security flaw stemming from the use of an open-source library. This can arguably be attributed to a lack of awareness about where and how open source libraries are

Read More
13 Mar 2020

WordPress Plugin Bug Allows Malicious Code Injection on 100K Sites

WordPress is facing more vulnerabilities, this time in its Popup Builder plugin. The flaw allows unauthenticated attackers to inject malicious JavaScript into popups, which can then affect tens of thousands of websites and allow the attacker to steal information and take over targeted sites in the worst-case scenario. The plugin

Read More
04 Mar 2020

MediaTek Bug Actively Exploited, Affects Millions of Android Devices

This week, Google addressed a high severity flaw that exists in MediaTek’s Command Queue driver. The bug has already been used to build malicious apps that compromise Andriod devices by gaining root access. Developers have claimed this bug affects millions of devices. Google also released its March 2020 Android Security

Read More
21 Nov 2019

Millions of Sites Exposed by Flaw in Jetpack WordPress Plugin

WordPress website admins and owners are encouraged to immediately apply the Jetpack 7.9.1 critical security update. Vulnerabilities in Jetpack that could leave websites subject to attack have existed since Jetpack 5.1. Jetpack is a popular WordPress plugin that features security, performance and site management services including malware scanning and brute-force

Read More
13 Nov 2019

Facebook iOS 13 ‘Bug’ Opens Your Camera While You Scroll Your Feed

Twitter user Joshua Maddux found what seems to be a bug in the iOS 13.2.2 version of the social media app Facebook. Maddux stated that when the app is open, it uses the camera, including a video within the tween that displays the bug. Revoking Facebook’s access to the camera

Read More