Posts filtered by tags: Vulnerability[x]


Flight Booking System Flaw Affected Customers of 141 Airlines Worldwide

Almost half of the fight travelers around the world were found exposed to a critical security vulnerability discovered in online flight ticket booking system that allowed remote hackers to access and modify their travel details and even claim their frequent flyer miles. Israeli network security researcher Noam Rotem discovered the vulnerability when he booked a flight on the Israeli airline [Author: [email protected] (Swati Khandelwal)]
Tags: Tech, Hacking News, Vulnerability, Website Hacking, Airline Hacking, Flight Tickets, Swati Khandelwal, Flight Booking, Flight hacking, Noam Rotem

Fortnite Flaws Allowed Hackers to Takeover Gamers' Accounts

Check Point researchers have discovered multiple security vulnerabilities in Fortnite, a massively popular online battle game, one of which could have allowed remote attackers to completely takeover player accounts just by tricking users into clicking an unsuspectable link. The reported Fortnite flaws include a SQL injection, cross-site scripting (XSS) bug, a web application firewall bypass [Author: [email protected] (Swati Khandelwal)]
Tags: Tech, Hacking News, Vulnerability, Swati Khandelwal, Fortinet, Fortnite, Account Hacking, SQL injection, Fortnite Cheats, Fortnite Android App, Fortnite Game, Fortnite hacks

5 Popular Web Hosting Services Found Vulnerable to Multiple Flaws

A security researcher has discovered multiple one-click client-side vulnerabilities in the some of the world's most popular and widely-used web hosting companies that could have put millions of their customers as well as billions of their sites' visitors at risk of hacking. Independent researcher and bug-hunter Paulos Yibelo, who shared his new research with The Hacker News, discovered roughly [Author: [email protected] (Wang Wei)]
Tags: Tech, Vulnerability, Cross-site Scripting, Web Application Vulnerability, Wang Wei, Hacker News, Cloud Hosting, Hosting Services, Dedicated Hosting, Web hosting service, Paulos Yibelo, Free Web Hosting, Best Web Hosting, Cheap Web Hosting

Child abuse cases quadruple when report cards are sent home on Fridays

Researchers discovered a four-fold increase in verified cases of child abuse when report cards were sent home on Friday as compared to other days. Corporal punishment is legal throughout America, including in many public and most private schools. A child is hit, on average, every 30 seconds in American public schools. None I certainly remember that feeling when I was young: The dreaded Friday that report cards went home. My grades were mostly good, though there would inevitably be that class I ...
Tags: Europe, Florida, Education, Children, Youth, US, America, Vulnerability, United States, Iowa, New Jersey, Innovation, Paraguay, Finland, Violence, Norway

Unpatched vCard Flaw Could Let Attackers Hack Your Windows PCs

A zero-day vulnerability has been discovered and reported in the Microsoft's Windows operating system that, under a certain scenario, could allow a remote attacker to execute arbitrary code on Windows machine. Discovered by security researcher John Page (@hyp3rlinx), the vulnerability was reported to the Microsoft security team through Trend Micro's Zero Day Initiative (ZDI) Program over 6 [Author: [email protected] (Wang Wei)]
Tags: Microsoft, Tech, Hacking News, Vulnerability, Cyber Security, windows Vulnerability, Zero-Day Vulnerability, Wang Wei, Windows Security, Windows Hacking, vCard exploit, John Page @hyp3rlinx

5 Ways to Let Go of a Friendship

When a marriage dissolves, there is legal process that involves steps of grieving the end of the relationship. Signing papers, although painful, acknowledges the end of years together and also signifies freedom to move on to a new life. Broken friendships, however, have no process in place. Oftentimes the ending is muddled, with confusion over what went wrong and whether or not there is any chance of reconciliation. The broken bond can be just as traumatic as a divorce, especially if you have ye...
Tags: Psychology, Grief, General, Relationships, Friends, Friendship, Vulnerability, Self-help, Betrayal, Loss, Rejection, Abandonment, Journal, Grief And Loss, Coping Skills, Henri Nouwen

How financial literacy impacts youth prostitution, AIDS, and women’s survival

Around the world, girls are in positions of extreme vulnerability and risk. How can we increase the survival and empowerment of girls and women who have no education, who are married off as children, forced into prostitution, and who live in regions where AIDS/HIV is common?One proven strategy is financial literacy programs, from as early as age six. It is the bedrock of change. When girls understand finance, savings, and how to think assess opportunity and risk, it is proven to impact seemingly...
Tags: Asia, Money, Children, Sex, Finance, Africa, Women, Economics, Poverty, Vulnerability, Innovation, Bruce, Sexual Violence, Judith Bruce Invest

New Systemd Privilege Escalation Flaws Affect Most Linux Distributions

Security researchers have discovered three vulnerabilities in Systemd, a popular init system and service manager for most Linux operating systems, that could allow unprivileged local attackers or malicious programs to gain root access on the targeted systems. The vulnerabilities, assigned as CVE-2018-16864, CVE-2018-16865, and CVE-2018-16866, actually resides in the "systemd-journald" service [Author: [email protected] (Wang Wei)]
Tags: Tech, Vulnerability, Linux security, Privilege Escalation, Linux, Wang Wei, Systemd, How To Hack Linux, Linux distribution

Microsoft Patch Tuesday — January 2019 Security Updates Released

Microsoft has issued its first Patch Tuesday for this year to address 49 CVE-listed security vulnerabilities in its Windows operating systems and other products, 7 of which are rated critical, 40 important and 2 moderate in severity. Just one of the security vulnerabilities patched by the tech giant this month has been reported as being publicly known at the time of release, and none are [Author: [email protected] (Swati Khandelwal)]
Tags: Microsoft, Tech, Hacking News, Vulnerability, Microsoft Patch Tuesday, Windows Updates, Windows 10, Security patch Update, Swati Khandelwal, Windows Security

Adobe Issues Emergency Patches for Two Critical Flaws in Acrobat and Reader

I hope you had biggest, happiest and craziest New Year celebration, but now it’s time to come back at work and immediately update your systems to patch new security flaws that could exploit your computer just by opening a PDF file. Adobe has issued an out-of-band security update to patch two critical vulnerabilities in the company's Acrobat and Reader for both the Windows and macOS operating [Author: [email protected] (Swati Khandelwal)]
Tags: Adobe, Tech, Hacking News, Vulnerability, Remote Code Execution, Patch Update, Windows Updates, Software Update, Security Update, Swati Khandelwal, Adobe Acrobat, Adobe Reader, Pdf Exploit, PDF Reader, Adobe Update

Cybersecurity 101: Five simple security guides for protecting your privacy

With hundreds of millions of people home for the holidays, now is a better time than ever to spread good tidings and cheer, and — well, some much-needed security advice for all the family. Security sounds complicated, but it doesn’t have to be. Privacy is more important than ever. With an ever-changing and evolving landscape of threats and hacks, breaches and vulnerabilities, there’s no better time of the year to help your family navigate some of the most basic but effective security tips. (Let’...
Tags: Security, Privacy, Tech, Vulnerability, Cryptography, Cybercrime, Prevention, Password Manager, Computer Security

Hacker Discloses New Unpatched Windows Zero-Day Exploit On Twitter

A security researcher with Twitter alias SandboxEscaper today released proof-of-concept (PoC) exploit for a new zero-day vulnerability affecting Microsoft's Windows operating system. SandboxEscaper is the same researcher who previously publicly dropped exploits for two Windows zero-day vulnerabilities, leaving all Windows users vulnerable to the hackers until Microsoft patched them. The [Author: [email protected] (Swati Khandelwal)]
Tags: Microsoft, Tech, Hacking News, Vulnerability, Cyber Security, Zero-Day Vulnerability, Swati Khandelwal, Windows Exploit, Windows zero-day vulnerability

Critical SQLite Flaw Leaves Millions of Apps Vulnerable to Hackers

Cybersecurity researchers have discovered a critical vulnerability in widely used SQLite database software that exposes billions of deployments to hackers. Dubbed as 'Magellan' by Tencent's Blade security team, the newly discovered SQLite flaw could allow remote attackers to execute arbitrary or malicious code on affected devices, leak program memory or crash applications. SQLite is a [Author: [email protected] (Swati Khandelwal)]
Tags: Tech, Hacking News, Vulnerability, Chinese Hackers, Tencent, Chromium, Magellan, Swati Khandelwal, Tencent China, Chrome vulnerability, SQLite, Chrome Web Browser, Sqlite Database, Sqlite Encryption

Smart dress groped 157 times in under 4 hours

Schweppes commissioned research into how often women are touched by strangers A sensor-equipped dress designed by Ogilvy captured the party experience of three women The experiment confirms for men what women have known all along None Women around the world have long reported that men, strangers included, touch them all the time without permission, much less an invitation. Even when asked not to. It's a particularly invasive form of objectification. Isn't everyone supposed to be entitled to pe...
Tags: Privacy, Sex, Women, Vulnerability, Innovation, Brazil, Gender Equality, Inequality, Ogilvy, Ogilvy Brazil, Sexual Violence, Dress for Respect Hidden, Dress for Respect

Adobe's Year-End Update Patches 87 Flaws in Acrobat Software

Adobe is closing out this year with its December Patch Tuesday update to address a massive number of security vulnerabilities for just its two PDF apps—more than double the number of what Microsoft patched this month for its several products. Adobe today released patches for 87 vulnerabilities affecting its Acrobat and Reader software products for both macOS and Windows operating systems, of [Author: [email protected] (Swati Khandelwal)]
Tags: Adobe, Microsoft, Tech, Hacking News, Vulnerability, Patch Update, Security Update, Swati Khandelwal, Adobe Acrobat, Adobe Reader, Adobe Software Update

Microsoft Issues Patch for Windows Zero-Day Flaw Under Active Attack

Microsoft today, on its year-end December Patch Tuesday, released security updates to patch a total 39 vulnerabilities its Windows operating systems and applications—10 of which are rated as critical and other important in severity. One of the security vulnerabilities patched by the tech giant this month is listed as publicly known at the time of release, and one is a zero-day reported as being [Author: [email protected] (Swati Khandelwal)]
Tags: Microsoft, Tech, Hacking News, Vulnerability, Microsoft Patch Tuesday, Windows Updates, Zero-Day Vulnerability, Security Update, Swati Khandelwal, Download Software Update

phpMyAdmin Releases Critical Software Update — Patch Your Sites Now!

Developers of phpMyAdmin, one of the most popular and widely used MySQL database management systems, today released an updated version 4.8.4 of its software to patch several important vulnerabilities that could eventually allow remote attackers to take control of the affected web servers. The phpMyAdmin project last Sunday gave an early heads-up about the latest security update through its [Author: [email protected] (Mohit Kumar)]
Tags: Tech, Phpmyadmin, Vulnerability, Cyber Security, Website Hacking, Cross site scripting, Mohit Kumar, Php Security, Local file inclusion, MySQL database, MySQL hacked

You Don’t Have an Innovation Problem, You Have a Trust Problem! (Part 2)

Through my 2008-10 doctoral research, I found that the biggest problem that non-innovative companies have is lack of trust. In fact, whenever I was invited to speak to a company about their innovation needs, it didn’t take more than 20 minutes and 16 questions to find that they don’t have an innovation problem, they have ...
Tags: Leadership, Trust, Vulnerability, Creativity, Culture, Innovation, Autonomy, Collaboration, Constructive Disagreement

Warning! Unprivileged Linux Users With UID > INT_MAX Can Execute Any Command

Hold tight, this may blow your mind… A low-privileged user account on most Linux operating systems with UID value anything greater than 2147483647 can execute any systemctl command unauthorizedly—thanks to a newly discovered vulnerability. The reported vulnerability actually resides in PolicyKit (also known as polkit)—an application-level toolkit for Unix-like operating systems that defines [Author: [email protected] (Mohit Kumar)]
Tags: Tech, Vulnerability, Privilege Escalation, Linux, Ubuntu, Red Hat, Debian, Mohit Kumar, Linux Vulnerability, User Privilege

When a Therapist and Journalist Comes Clean About Her Self-Doubt

As a career therapist since 1979 who decided to traverse a professional writing path beginning a bit less than a decade later, I have blended two of my passions; guiding people on their own journeys and communicating the thoughts that insist on being documented for posterity. Lofty pursuits? Perhaps. Fraught with challenges and responsibility for integrity? Absolutely. Thus, this article. A week ago, Psych Central published a piece called, “ How the President’s Communication Style Is Like...
Tags: Psychology, Google, Facebook, Politics, Aging, Vulnerability, Personal, Trauma, Self-doubt, Stigma, Authenticity, Brown, Oval Office, DSM, Brené, Minding the Media

Podcast Ep. 118: Being Yourself – Will The Real You Please Stand Up?

Subscribe on Apple Podcasts | Soundcloud | Android Far too many of us spend our time trying to blend in, fake it and be perfect. We fear that “being yourself” will lead to rejection. In this week’s episode of The Baggage Reclaim Sessions, I tackle the importance of reconciling with the truth of who you are: the real you. I also delve into why pretending to be something we’re not is about self-rejection, and why if the fake version of us is rejected, it’s not the rejection we perceive it to be...
Tags: Vulnerability, Fear Of Intimacy, Dating, Perfectionism, KAT, Podcast: The Baggage Reclaim Sessions, People Pleasing, Future Faking

When It Actually Pays Off to Be Vulnerable at Work

Workplace culture varies widely across fields, but most people would agree that there isn’t a lot of room for human weakness in most offices. For the emotionally intelligent person, however, a little vulnerability can actually give you a surprising amount of power.Read more...
Tags: Workplace, Vulnerability, Lifehacks, Emotional Intelligence

Embracing Vulnerability: The Secret Weapon Every Presenter Must Learn

Dr. Brene Brown, a renowned social psychologist and author of Daring Greatly, a New York Times #1 best seller, defines vulnerability as “uncertainty, risk, and emotional exposure.” She elaborates by noting that “vulnerability is the core of all emotions and feelings.” We know that when it comes to presentations, emotions and feelings are a driving force of information retention and engagement. According to Dr. Brown’s findings coupled with our knowledge of presenting, if you can open yourself up...
Tags: Design, Vulnerability, New York Times, Deliver, Public Speaking, Presentation, Develop, Speaking, Brene Brown, Brown, Presentation Science

How Just Opening A Site In Safari Could Have Hacked Your Apple macOS

Earlier this week Dropbox team unveiled details of three critical vulnerabilities in Apple macOS operating system, which altogether could allow a remote attacker to execute malicious code on a targeted Mac computer just by convincing a victim into visiting a malicious web page. The reported vulnerabilities were originally discovered by Syndis, a cybersecurity firm hired by Dropbox to conduct [Author: [email protected] (Swati Khandelwal)]
Tags: Tech, Vulnerability, Remote Code Execution, Hacking Mac Computer, Dropbox, Apple Safari, Swati Khandelwal, Macos Security, Apple macOS, Macbook hack, Syndis

Feeling Vulnerable? It May Not Be a Bad Thing

Have you ever avoided asking for help because you felt that it might make you look incompetent? Or have you struggled to tell your colleagues that you made a decision that didn’t work out because of a concern that you’d lose their trust or respect. When we talk about being vulnerable, it’s often in the context of personal relationships. Being vulnerable is also integral in other areas of life though, including the workplace. Sometimes, yes, it is easier, and it may be more socially or profes...
Tags: Psychology, Google, General, Relationships, Friends, Stanford, Communication, Research, Empathy, Vulnerability, Self-esteem, University Of Houston, Shame, Courage, Stephen, Personal Growth

Get paid up to $40,000 for finding ways to hack Facebook or Instagram accounts

Here we have great news for all bug bounty hunters. Now you can get paid up to $40,000 for finding and responsibly reporting critical vulnerabilities in the websites and mobile applications owned by Facebook that could allow cyber attackers to take over user accounts. In the latest post published Tuesday on the Facebook page, the social networking giant announced that it has raised the [Author: [email protected] (Mohit Kumar)]
Tags: Facebook, Tech, Cybersecurity, Vulnerability, How to Hack Facebook, Bug Bounty Program, Mohit Kumar, Facebook Hacking Tool, Hack Facebook Account, Facebook Vulnerability, Hacking Facebook Password

3 New Code Execution Flaws Discovered in Atlantis Word Processor

This is why you should always think twice before opening innocent looking email attachments, especially word and pdf files. Cybersecurity researchers at Cisco Talos have once again discovered multiple critical security vulnerabilities in the Atlantis Word Processor that allow remote attackers to execute arbitrary code and take over affected computers. An alternative to Microsoft Word, [Author: [email protected] (Mohit Kumar)]
Tags: Microsoft, Tech, Malware, Vulnerability, Microsoft Word, Mohit Kumar, Cisco Talos, 0day Exploit, Atlantis Word Processor, MS Word, Word Processing Software

0-Days Found in iPhone X, Samsung Galaxy S9, Xiaomi Mi6 Phones

At Pwn2Own 2018 mobile hacking competition held in Tokyo on November 13-14, white hat hackers once again demonstrated that even the fully patched smartphones running the latest version of software from popular smartphone manufacturers can be hacked. Three major flagship smartphones—iPhone X, Samsung Galaxy S9, and Xiaomi Mi6—were among the devices that successfully got hacked at the annual [Author: [email protected] (Swati Khandelwal)]
Tags: Samsung, Tech, Cybersecurity, Hacking News, Vulnerability, Smartphone Hacking, Mobile Hacking, Xiaomi, Tokyo, Zero-Day Vulnerability, Hacking Competition, Swati Khandelwal, iPhone X, Xiaomi Mi 6, Samsung Galaxy S9

7 New Meltdown and Spectre-type CPU Flaws Affect Intel, AMD, ARM CPUs

Disclosed earlier this year, potentially dangerous Meltdown and Spectre vulnerabilities that affected a large family of modern processors proven that speculative execution attacks can be exploited in a trivial way to access highly sensitive information. Since then, several more variants of speculative execution attacks have been discovered, including Spectre-NG, SpectreRSB, Spectre 1.1, [Author: [email protected] (Swati Khandelwal)]
Tags: Tech, Vulnerability, Cyber Attack, Swati Khandelwal, ARM processor, Intel Processor, Speculative Execution, Amd Processor, Meltdown Vulnerability, Spectre Vulnerability, Speculative Execution Attack, Transient Execution Attacks

63 New Flaws (Including 0-Days) Windows Users Need to Patch Now

It's Patch Tuesday once again…time for another round of security updates for the Windows operating system and other Microsoft products. This month Windows users and system administrators need to immediately take care of a total of 63 security vulnerabilities, of which 12 are rated critical, 49 important and one moderate and one low in severity. Two of the vulnerabilities [Author: [email protected] (Swati Khandelwal)]
Tags: Microsoft, Tech, Hacking News, Vulnerability, Microsoft Patch Tuesday, Windows 10, Zero-Day Vulnerability, Security patch Update, Swati Khandelwal, Microsoft update