News flaw | Silicon UK

apple exploding security danger © Mila Supinskaya Shutterstock

Mac

Apple Update Undoes MacOS Root Password Fix

Apple security update means root password flaw can return for some users

CyberCrime

Apple Fixes Serious MacOS Password Bug

UPDATED: MacOS High Sierra has a serious flaw with admin privileges, as researcher criticised for public disclosure

Security

Facebook Bug Allowed User To Delete Any Image

A flaw in a new polling feature could have been manipulated by a malicious user to delete images of their choice across the site

CyberCrime

Bug Found In Google Bug Tracker Database

Discovery of bug in Google's bug tracking database lands researcher $15,600 in bug bounties

security vulnerability Shutterstock - © Andy Dean Photography

CyberCrime

Patch Tuesday: Microsoft Fixes Exploit Found In Wild

No rest for system admins as Patch Tuesday tackles 62 vulnerabilities; 28 of which are rated as critical

CyberCrime

‘BlueBorne’ Flaw Poses Serious Risk To Bluetooth Devices

BlueBorne attack vector requires no user interaction, and is spread via the air to make it even more contagious

CyberCrime

Alexa AI Hack Allows For Remote Eavesdropping

Who is listening? Older Amazon Echo devices can be rooted and turned into wiretapping machines

CyberCrime

July’s Patch Tuesday Fixes 19 Critical Flaws

Normal size security update for July as Microsoft delivers first fix for its HoloLen product

Chromebooks

Major Hyper-Threading Flaw in Intel Kay Lake And Skylake CPUs Could Wipe Data And Crash Systems

The major flaw, discovered by Debian developers, can be stopped by disabling Hyper-Threading

CyberCrime

Windows 10 Kernel Vulnerable To GhostHook Attack

CyberArk Labs finds GhostHook attack can bypass Microsoft's protection of Windows 10 kernel

CyberCrime

Pacemaker Code ‘Contains 8,000 Vulnerabilities’

Researcher warns of troubling security vulnerabilities with pacemaker devices

CyberCrime

Synopsys Questions Cyber Safety Of Medical Devices

Question marks over the safety of medical kit has been raised again as study finds widespread medical complacency

CyberCrime

Hackers Can Target Aga Ovens, Heating Up IoT Security Concerns

Have hackers ruined your casserole? Aga ovens are vulnerable to hackers who can turn your oven on and off

CyberCrime

WhatsApp & Telegram Patch ‘Severe’ Vulnerabilities

'Severe vulnerability' found with encrypted chat apps that could allow attackers to take complete control of user accounts

Authentification

Security Flaws Found In Android Password Managers

The security credentials of Password Managers on Android called into question after discovery of multiple flaws

Security

Google Discloses Another Unpatched Windows Bug

Microsoft's decision to delay its monthly Windows security update until March leaves users unprotected

Authentification

Valve Rushes To Patch XSS Flaw In Steam

The flaw could allow hackers to conduct phishing attacks and spread malware

A Facebook data centre. Image credit: Facebook

Cloud

Researchers Uncover Schneider Electric Data Centre System Flaw

Schneider Electric flaw could have allowed attackers to gain remote access to unencrypted passwords

Light Microsoft Patch Tuesday Update For January

Small beer for system admins this month with only four bulletins to worry about, two of which are critical

Authentification

Firmware Flaw Leaves Netgear Routers Vulnerable To Hacker Takover

Hackers can exploit a command injection flaw to execute malicious code on Netgear routers

mobile OS

Apple Launches £146 Service To Fix iPhone 6 Plus ‘Touch Disease’ Flaw

An issue in the installation of a touchscreen controller chip has been identified as the core of the flaw

Russian internet © Pavel Ignatov Shutterstock 2012

CyberCrime

Microsoft Blames Russia For Exploiting Google-Exposed Windows Flaw

Microsoft says Russian hackers behind exploit of unpatched Windows flaw, revealed by Google

CyberCrime

Adobe Rushes Out Emergency Patch For Flash

A vulnerability in Flash is being actively exploited, prompting Adobe to issue an emergency patch

CyberCrime

Dirty COW Linux Flaw Can Root Android Devices

Long standing Linux vulnerability also impacts Android and can be used to root devices, researcher warns

Authentification

Red Hat Discovers Dirty COW Archaic Linux Kernel Flaw Exploited In The Wild

The bug affects most versions of Linux potentially exposing huge numbers of machines to hackers

mobile OS

Android Security Bulletin Patches 78 Vulnerabilities

Busy month for Google as it patches multiple vulnerabilities with the Android operating system

CyberCrime

Apple iOS 10 Flaw Makes It Easier To Hack iPhone Backups

Researchers uncover “major security flaw” in Apple's iOS 10 backup protection for iTunes as iOS 10.0.2 fixes unrelated headphone issue

Security

BT Issues Patch For Wi-Fi Extender Security Vulnerability

Patch that firmware now BT urges, after researchers uncover security issues with Wi-Fi extender device

Mobility

Linux Bug ‘Lets Attackers Target Billions Of Android Devices’

About 80 percent of all Android gadgets are vulnerable, say experts

CyberCrime

Researchers Discover Major HTTP/2 Flaws

Protocol problems...the new version of the HTTP (HTTP/2) has four “high profile” flaws, researchers caution