Tag: security
-
Android Users’ Location Information Is Always Being Sent to Google
Quartz’ Keith Collins: Many people realize that smartphones track their locations. But what if you actively turn off location services, haven’t used any apps, and haven’t even inserted a carrier SIM card? Even if you take all of those precautions, phones running Android software gather data about your location and send it back to Google…
-
Valve Games Were Vulnerable to Software Exploits When Your Character Died
The One Up Security firm, who must be very new because this is their only published research article and their domain name appears to have been registered about 8 months ago, has released information on a vulnerability that Valve patched in their Source engine back in June. It’s an amusing vulnerability because the exploitation of…
-
HP’s Built-in Keystroke Logger
Many HP laptops have a built-in keylogger in their audio drivers according to computer security firm Modzero AG (via Ars’ Dan Goodin). Keyloggers record what you type, typically covertly, for the purposes of someone else getting access to that text data later on. In this case the researches did not find any malicious capability in the driver…
-
Typosquatting Package Managers
Fascinating attack on unmoderated package managers for programming libraries (via former TimeDoctor contributor, Vogon) that would work just as well on unmoderated app stores: In the second part of 2015 and the early months of 2016, I worked on my bachelors thesis. In this thesis, I tried to attack programming language package managers such as Pythons PyPi,…
-
Steam Website Leaking User Information
The Steam website was completely broken for several hours today. Attempting to load any page on the site would give you another user’s version of that page including any personal details. This was also happening in the desktop client. Users on several sites produced screenshots that included blacked-out versions of pages that had other users’…