Anyone with a knowledge of just your mobile number can initiate a DoS attack and overwhelm your Pebble to undergo a factory reset and wipe all the data.
Category: Security
51 UPS stores in 24 US states hit by data breach; critical consumer data at risk
UPS Store president Tim Davis: I understand this type of incident can be disruptive and cause frustration. I apologize for any anxiety this may have caused our customers.
UK Met Police seeks mandatory PIN for all mobile phones
If Met has its way, next time you buy a smartphone or mobile phone in UK, you will be greeting with enter PIN message right out of the box!
Disqus plugin v2.77 for WordPress vulnerable to CSRF
Disqus did patch the XSS and CSRF vulnerabilities reported earlier, but it seems that the company has actually missed out on completely patching the CSRF flaw.
Taiwan accuses China of frequent cyber attacks
Taiwan: The Chinese cyberwar units have been engaging with Taiwan units almost every day, with some severe attacks every few months.
NCA: Almost half UK adults take security software lightly
Organised crime minister Karen Bradley: The internet has radically changed the way we work and socialise, but cyber crime now poses a serious threat to the UK, and the Government has taken action to transform the way we respond.
Blackphone isn’t insurmountable, hackers prove at Defcon in less than 5 mins
Blackphone was rooted and cracked in under five minutes at the Defcon hacker conference.
Xiaomi smartphones sending user data to remote servers; company issues patch after privacy concerns
The news came on the heels of other reports of smartphones being pre-installed with suspect apps.
DecryptCryptolocker tool decrypts Cryptolocker encrypted files for free
Security experts have reverse-engineered the Cryptolocker attack to help victims unlock the encrypted files!
Migrate to HTTPS or face search ranking penalty, Google implies
Google is rewarding websites, which use secure connections (HTTPS) for customers’ usage and other activities, with better search ranking. In a way Google would push down websites in its search engines that…
Commands to RAT distributed through Yahoo mail, researcher finds
The RAT can easily switch to a different webmail provider in case one of the services is down or explicitly blocked by network administrators of a company.
PayPal’s two-factor authentication can be bypassed easily, researcher says via full disclosure
You will need a PayPal user’s username and password to circumvent this, but those can be obtained from a compromised system or can be bought online for a few $$ easily.
Mozilla: Failure of data-sanitisation process led to disclosure of MDN email address, passwords
The issue went unnoticed for about a month before being picked up by a web developer in July.
US-CERT: Retailers – beware of virtually undetectable Backoff PoS malware
Backoff and its variants with detection rate of law-to-zero, have infected in nearly 600 businesses in the past month.
9% Android apps are malware, new research claims
Dodgy third-party Asian app stores are to blame.