‘Chaos’ iPhone X Attack Alleges Remote Jailbreak
The attack makes use of previously disclosed critical vulnerabilities in the Apple Safari web browser and iOS. Go to Source
How Web Apps Can Turn Browser Extensions Into Backdoors
Researchers show how rogue web applications can be used to attack vulnerable browser extensions in a hack that gives adversaries access to private user data. Go to Source
Google Fined $57M in Largest GDPR Slap Yet
The French Data Protection Authority (DPA) found a lack of transparency when it comes to how Google harvests and uses personal data for ad-targeting purposes. Go to Source
Adobe Issues Unscheduled Updates for Experience Manager Platform
The patches are part of Adobe’s second unscheduled update this month. Go to Source
Google Play Removes Malicious Malware-Ridden Apps
Two apps on Google Play were infecting devices with the Anubis mobile banking trojan. Go to Source
Fallout EK Retools for a Fresh New 2019 Look
The Fallout EK has added the latest Flash vulnerability to its bad of tricks, among other tune-ups. Go to Source
Threatpost News Wrap Podcast For Jan. 18
Threatpost editors break down the top headlines from the week ended Jan. 18. Go to Source
Critical, Unpatched Cisco Flaw Leaves Small Business Networks Wide Open
A default configuration allows full admin access to unauthenticated attackers. Go to Source
Twitter Android Glitch Exposed Private Tweets for Years
Twitter has fixed the issue, which has been ongoing since 2014. Go to Source
VOIPO Database Exposes Millions of Texts, Call Logs
VOIPO acknowledged that a development server had been accidentally left publicly accessible, and took the server offline. Go to Source