The social network says that the passwords were never exposed externally and that it found no abuse of the glitch. Facebook has fixed a bug that caused that the passwords of many of its users were stored in plain text and were visible for the social network’s employees. “As part of a routine security review … More Facebook exposed millions of user passwords to employees
The vulnerabilities, which resided in associated smartphone apps, were both easy to find and easy to fix. Two smart alarm systems for cars have plugged critical security holes that put three million vehicles globally at risk of being hijacked, research by Pen Test Partners reveals. If exploited, the vulnerabilities would have enabled anyone to turn the alarm … More Flaws in smart car alarms exposed 3 million cars to hijack
A ‘white hat’ from Argentina has come a long way since winning his first reward of US$50 in 2016. A little over a year ago, we looked at how well bug hunting can pay. The tale of an Argentinian teenager now shows that sleuthing for security holes in code can be a lucrative pursuit. Santiago Lopez, … More Teen earns US$1 million in bug bounties
Worse, attackers have already been spotted targeting the flaw to deliver cryptocurrency miners and other payloads. Days after the team behind Drupal urged website admins to apply an update patching a highly critical vulnerability in the content management system (CMS) platform, threat actors were spotted exploiting the loophole in the wild. The remote code execution … More ‘Highly critical’ bug exposes unpatched Drupal sites to attacks
The company is rushing to fix a glitch that may let other iPhone users hear and see you – before you answer the call. Apple has promised to issue a software update later this week to fix a serious bug in Apple’s video and audio call app FaceTime that can be easily exploited to spy … More Apple takes Group FaceTime offline after discovery of spying bug
ESET Ireland 