ATFuzzer: exploiting AT commands on Android basebands using malicious USB and Bluetooth accessories

Researchers at Purdue College and University of Iowa have revealed a paper detailing how the baseband processors of a large number of common Android smartphones may be compromised using malicious USB and Bluetooth accessories.

Continue reading “ATFuzzer: exploiting AT commands on Android basebands using malicious USB and Bluetooth accessories”

Watch out! A new vulnerability in WhatsApp for Android allows attackers to perform remote commands on devices

Security researcher Awakened has identified a vulnerability in the Android version of WhatsApp messaging app which could allow attackers to launch remote code execution attacks (with privilege elevation) on victims.

Continue reading “Watch out! A new vulnerability in WhatsApp for Android allows attackers to perform remote commands on devices”

CVE-2019-16928: a new vulnerability on Exim exposes millions of email servers to remote attacks

Another potential RCE in Exim! Let’s update, folks!

Continue reading “CVE-2019-16928: a new vulnerability on Exim exposes millions of email servers to remote attacks”

Checkm8: a new ‘unpatchable’ jailbreak for all iOS devices from iPhone 4s to iPhone X

The security expert Axi0mX has released a new jailbreak, dubbed Checkm8, that works on all iOS devices running on A5 to A11 chipsets: so all Apple products released between 2011 and 2017, including iPhone models from 4S to X.

Continue reading “Checkm8: a new ‘unpatchable’ jailbreak for all iOS devices from iPhone 4s to iPhone X”