Apple Says FBI Gave It First Vulnerability Tip on April 14

The FBI knowledgeable Apple Inc of a vulnerability in its iPhone and Mac software program on April 14, the primary time it had advised the company approximately a flaw in Apple merchandise below a controversial White house procedure for sharing such information, the corporation instructed Reuters on Tuesday. The Federal Bureau of investigation informed the business enterprise that the disclosure resulted from the so-referred to as Vulnerability Equities method for deciding what to do with statistics about safety holes, Apple said. The method, which has been in location considering that…

Read More

iOS MDM Protocol Vulnerability Exposes iPhone, iPad to Attack: Report

Another vulnerability has been found in iOS, Apple’s mobile operating system. The mobile device management (MDM) interface for iOS, according to security researchers, can be exploited to gain complete access to the device. Apple insists that it’s not a vulnerability, but a social-engineering trick. Security researchers at Check Point Software Technologies claim that an approach dubbed “SideStepper” can allow an attacker to hijack enterprise management functions by sending a malicious link to the device. According to the researchers, clicking on that link will give attackers full control of the MDM…

Read More

Google Acknowledges Vulnerability in Millions of Android Devices; Promises Fix

Millions of Android smartphones and tablets are vulnerable to security attacks, Google has warned. The vulnerability, if exploited, gives an app unfettered root access, circumventing various Android security layers. The Mountain View-based company has made available a patch to OEMs, and says it is currently working on a fix for the Nexus lineup. Security researchers spotted an app in the Google Play, Android’s marquee app store, which tries to leverage the vulnerability. Android inherited the flaw from Linux years ago. Interestingly, Linux developers fixed the bug in 2014, and it…

Read More

New Stagefright Vulnerability Found, Millions of Android Devices Affected: Report

New Stagefright Vulnerability Found, Millions of Android Devices Affected: Report Security researchers have once again discovered a flaw in Android’s Stagefright mediaserver component. In a demonstration, the researchers were able to remotely hack a phone with Stagefright-based exploit. Their finding underscores a vulnerability in millions of Android devices that could be triggered when they are made to visit a specially-crafted webpage. Israel-based research firm Northbit published a research paper this week in which it claims to have found a “proper” exploit dubbed Metaphor, using a new vulnerability in the Stagefright.…

Read More