Tag archive: flaw

A security flaw concerning Facebook applications that allowed advertisers to access user profiles has now, according to the social networking site, been dealt with. Internet security firm Symantec said in a blog post that third parties “have accidentally had access to Facebook users’ accounts including profiles, photographs, chat, and also had the ability to post messages and mine personal information.” Symantec's Nishant Doshi, who… Read More

Attention all Mac owners who use Skype. A flaw has been identified in Skype 5 that enables an attacker to gain remote control of a Mac computer running the software. Gordon Maddern, a member of a group of ethical hackers based in Australia that goes by the name of Pure Hacking, wrote in a blog post on Friday that he had identified the security flaw last month. “The long and the short of it is that an attacker needs only to send a victim a… Read More

Skype has repaired a major security bug in its app for Android mobile devices that could have been used to expose users' private data. The updated version of the app is currently available for download on the Android Market. Once the new version of the app is installed, the problem is fixed, the company says. “We have had no reported examples of any 3rd party malicious application misusing information from the Skype directory on… Read More

Apple will release its new line of highly-revamped MacBook Pro laptops as early as March 1, according to a variety of rumors currently circulating online. The new laptop models are said to be powered by Intel's second-generation Core i-series processors. A “person familiar with the matter” tells Apple Insider that Apple will introduce the new MacBook Pros within two weeks time. The release is later than expected, however,… Read More

Last week at the Black Hat security conference in Las Vegas, researchers Charlie Miller and Collin Mulliner demonstrated how an iPhone could be taken over with a specially-crafted text message. Once an attacker has done that, he can install malware on the phone, if desired, or use it to perform spam more attacks on others. Unsurprisingly, this received a lot of publicity, especially as the flaw also exists in the Android and Windows Mobile… Read More

Not long ago security research Dan Kaminsky revealed a flaw in the Domain Name System (DNS), although he refused to give details. Those came, somewhat inadvertently, thanks to another researcher, Halvar Flake. Now, inevitably, the first exploit code for that flaw has arrived. Luckily, it’s been created by two other researchers, HD Moore and Druid, who’ve developed an exploit module that runs that Moore’s… Read More

With Patch Tuesday here and no critical updates on the horizon, Microsoft has issued a warning about some attacks on a flaw in the ActiveX control for Snapshot Viewer, a browser plug in for Office 2000, 2002 and 2003. Office Access 2007 doesn’t have the flaw. Since only Internet Explorer uses ActiveX, other browsers are safe. Exploiting the flaw could give a hacker control of the computer. However, IE with the Enhanced… Read More

Firefox 3 set a record, notching up over eight million downloads in the first 24 hours of its release, and giving Mozilla a 6% share of the browser market. But one thing they didn’t need – certainly not so quickly – was for someone to find a flaw in the browser. But Tipping Point’s Zero Day Foundation has done exactly that, according to CNET News. It reported a flaw, that it rates as critical, within five hours of… Read More