Android flaw allows attackers to permanently freeze your device

Android’s December 2019 updates patches a small list of system and Qualcomm flaws across the operating system’s two patch levels [1].
According with Google, a specific flaws (CVE-2019-2232) may allows an attacker to cause a permanent denial of service by simply sending a specifically crafted message [2].

Continue reading “Android flaw allows attackers to permanently freeze your device”

146 new security vulnerabilities discovered in various Android versions

Researchers by security firm Kryptowire have discovered and revealed 146 vulnerabilities in various version of Android.

Continue reading “146 new security vulnerabilities discovered in various Android versions”

Two NTLM vulnerabilities may allow full AD domain compromise

On October 2019 Patch Tuesday, Microsoft released patches for CVE-2019-1166 and CVE-2019-1338, two serious vulnerabilities that may leading to a full Active Directory domain compromise.

Continue reading “Two NTLM vulnerabilities may allow full AD domain compromise”

Simjacker: a brand new mobile vulnerability exploited by surveillance companies for espionage operation

Some updates here!

Researchers from AdaptiveMobile Security have uncovered a new and previously undetected vulnerability and associated exploits, called Simjacker.

Continue reading “Simjacker: a brand new mobile vulnerability exploited by surveillance companies for espionage operation”

Google researchers reveals iOS’s exploit chains that changes everything we know about iPhone security

Security researchers from Google’s Project Zero team say they have discovered a number of compromized websites which used previously undisclosed security flaws to attack any iPhone that visited them.

Continue reading “Google researchers reveals iOS’s exploit chains that changes everything we know about iPhone security”