Flaw in popular VPN service may have exposed customer data

NordVPN praised its bug bounty program and said that a fix had been shipped within two days. NordVPN, one of the most popular virtual private network (VPN) services, has fixed a security flaw that is said to have exposed customers’ email addresses and other information. The security hole was linked to three payment platforms used by NordVPN … More Flaw in popular VPN service may have exposed customer data

Google disables Xiaomi smart home integration after camera bug

A Xiaomi security camera owner reports receiving random images from strangers’ homes. Smart-home security appliances are not always what they are made out to be and recently some have been running into more problems than is healthy. Some smart doorbells have been caught recording more data than thought, while Wyze Labs, which makes connected home gadgets, has been … More Google disables Xiaomi smart home integration after camera bug

Facebook bug turns on iPhone camera in the background

A recent update to the Facebook’s iOS app introduced a bug that had some users worried. Earlier in November, several iPhone users started experiencing a mysterious glitch while using the Facebook app. The issue got wider traction once some of them, including Joshua Maddux, went to Twitter to share their experience, CNET reports. The glitch is triggered when … More Facebook bug turns on iPhone camera in the background

Critical bug found in popular mail server software

If exploited, the security hole in Exim could allow attackers to run arbitrary commands on vulnerable mail servers. Exim, the popular mail transfer agent (MTA) software, contains a critical-rated vulnerability that can, in some scenarios, enable remote attackers to run commands of their choice on unpatched mail servers, researchers from Qualys have found. Tracked under CVE-2019-10149, the remote … More Critical bug found in popular mail server software

Bug in EA’s Origin client left gamers open to attacks

The gaming company has rolled out a fix for the remote code execution vulnerability, so make sure you run the platform’s latest version. Electronic Arts (EA) has fixed a security flaw in the Windows version of its gaming client Origin that allowed attackers to remotely execute code on an affected computer. The vulnerability was discovered by … More Bug in EA’s Origin client left gamers open to attacks

Two white hats hack a Tesla, get to keep it

The electric automaker is working to release a fix for the underlying vulnerability in a matter of days. A duo of white-hat hackers have earned themselves a brand new Tesla Model 3 after exposing a vulnerability in the car’s integrated browser. Richard Zhu and Amat Cam, aka team ‘Fluoroacetate’, managed to break into the electric … More Two white hats hack a Tesla, get to keep it