How do you sign into services? Because a newly disclosed Facebook exploit might change how you go about it in future… In an eye-opening blog post, security researcher Youssef Sammouda has revealed that chaining Gmail’s OAuth authentication code with vulnerabilities in Facebook enabled him to hijack Facebook accounts when users logged in with their Gmail credentials. Gmail has been SOPA Images/LightRocket via Getty Images Speaking to The Daily Swing,… Source link
Read More »Putin promises to bolster Russia’s IT security in face of cyber attacks
Russian President Vladimir Putin watches a military parade on Victory Day, which marks the 77th anniversary of the victory over Nazi Germany in World War Two, in Red Square in central Moscow, Russia May 9, 2022. Sputnik/Mikhail Metzel/Pool via REUTERS Register now for FREE unlimited access to Reuters.com Register May 20 (Reuters) – President Vladimir Putin said on Friday that the number of cyber attacks on Russia by foreign “state structures” had increased several times over and that Russia… Source link
Read More »Google Chrome 101 security warning for 3.2 billion users–update now
May 11 Update: This post was originally published on May 10 I spoke too soon when I reported yesterday that Google had confirmed a relatively rare update just for Android users of the Chrome browser. Windows, Linux, and Mac users can no longer breathe easy and instead should now also be checking that their Chrome browsers are updated as soon as possible. Why the change? Because Google has now confirmed that billions of users of the most popular web browser on the planet are affected by the… Source link
Read More »Google Chrome 101 security warning for all Android smartphone users
Windows, Linux and Mac users of the Google Chrome browser can breathe easy for the moment. This latest security warning is directed solely at smartphone users for a change. In a Chrome update confirmation published 9 May, Google has revealed no less than 13 security fixes. Of these, eight have been assigned Common Vulnerabilities and Exposures (CVE) severity ratings of high, with one getting a medium scoring. The remainder, four in all, are wrapped up with a ‘various fixes’ from ongoing… Source link
Read More »Video shows workers at an Apple and Tesla plant in Shanghai clashing with security guards over fears of an onsite COVID lockdown
Workers at an Apple supplier in Shanghai are operating under a “closed loop” system where they work, live, eat, and sleep onsite.Qilai Shen/In Pictures via Getty Images Images Videos show workers at an Apple and Tesla plant in Shanghai clashing with quarantine officials. The workers were said to be frustrated with onsite COVID-19 measures. The clash underscores the frailty of Shanghai’s plans to reopen its factories amid strict lockdowns. More than a hundred workers at a major Apple and Tesla… Source link
Read More »Apple’s Stunning 2022 Security Pact With Google, Microsoft Revealed
Truth be told, I’m not the greatest fan of World Password Day. Such whimsical labels for one day of the year tend not to make much difference to the overall awareness of important security issues for most users, it seems to me. However, I’ll make an exception for 2022 as three technology behemoths used the focus of password day to announce a stunning security pact. Ironically, a pact that could see passwords phased out in day-to-day use for millions of people. Here’s what Apple, Google and… Source link
Read More »Urgent Google Android Security Patch, Attacks Underway, Samsung, Pixel
If you are an Android user, regardless of your hardware vendor of choice, then pay particular attention to getting the 36 vulnerability-fixing May security update installed as soon as possible. Why the concern? A high-severity vulnerability that was disclosed way back in January and perhaps unsurprisingly is being exploited in the wild, has now been fixed. It’s a Linux kernel vulnerability given the name ‘Dirty Pipe‘ by the researcher who uncovered it. Actually, us boring and nerdy security… Source link
Read More »How to update Chrome after Google identifies security problems
FILE – This March 19, 2018 file photo shows the Google app on an iPad in Baltimore. (AP Photo/Patrick Semansky, File) Editor’s note: This story has been updated to correct the nature of the security issues identified. (NEXSTAR) – Google warned billions of users last week that the security of its internet browser, Chrome, may have been compromised. As a result, Google said it would be released a new version of Chrome with 29… Source link
Read More »You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results – Krebs on Security
Google said this week it is expanding the types of data people can ask to have removed from search results, to include personal contact information like your phone number, email address or physical address. The move comes just months after Google rolled out a new policy enabling people under the age of 18 (or a parent/guardian) to request removal of their images from Google search results. Google has for years accepted requests to remove certain sensitive data such as bank… Source link
Read More »Massive New Security Update For 3.2 Billion Google Chrome Users
It’s been a breathtakingly busy few weeks in the world of Google Chrome security and the pace doesn’t appear to be slowing down. Hot on the heels of two emergency fixes for in-the-wild exploits, and confirmation of a record number of Chromium zero-days across 2021, comes another truly massive security update for billions of Chrome users. How massive would that be? Well, newly confirmed stable channel update for desktop which takes Google Chrome to version 101.0.4951.41 for Windows, Mac and… Source link
Read More »