Blog Archives

Android StageFright Exploit Code Available

Turn off auto download of MMS messages on your Android device unless you’re patched.  There is a StageFright detector in the Play Store.

It’s September Patch Tuesday

Microsoft has released 5 critical patches for their browsers, Windows, and Office.  There are also important patches.   Adobe has released a patch for Shockwave Player.  Shockwave isn’t Flash but if you have Shockwave you’ve also got Flash (Adobe bundles them like that.)

Mozilla Bugtracker Bugzilla compromised

Bad guy was able to use info to create an exploit for a vulnerability in Firefox that has been patched.  Now admin users have to use two factor authentication.

OPM spends $133M on credit monitoring

22 million people to have their info monitored for 3 years.

Many victims of OPM Fed Govt Breach still don’t know they’re victims.

Up to 21.5 million notifications to be sent this month.

Google to “downrank” sites that prompt for App installs

Have you visited a site and had “Tapatalk” offered for install on your mobile device?  Google is now automatically lowering the search rank of such sites.

Windows 7 & 8 get Windows 10 User Tracking Features

With the latest set of patches Microsoft has included some of the tracking features of Windows 10 into earlier version.

IOS malware targets jailbroken iPhones, 225k accounts compromised.

Most of the victims were in China.

Android applications using “exploits” to get “root”

At least one case of “malware” using these “certificate-based” exploits made it into the Google Play store.

0Day in Mercury and Dolphin Android Browsers

If you use the Mercury or Dolphin Browser, time to use something else until this vulnerability is patched.