blog trackingRealtime Web Statistics Fixes Archives | Gregory D. Evans | Worlds No. 1 Security Consultant | Gregory D. Evans | Worlds No. 1 Security Consultant

Posts Tagged ‘fixes’

Google fixes 39 Android flaws

150817-google-marshmallow-03-100608188-large

Source: National Cyber Security – Produced By Gregory Evans

Google fixes 39 Android flaws

Google has released one of the largest Android monthly security updates, fixing a total of 39 vulnerabilities — 15 rated critical, including four that can lead to a complete device compromise. The patches, which are included in new firmware images that were released Monday for the company’s Nexus devices, will also be published to the Android Open Source Project over the next 24 hours. They include a fix for a vulnerability that Google warned about two weeks ago and which is already being exploited by a publicly available rooting application. Tracked as CVE-2015-1805, the privilege escalation flaw was originally fixed in the Linux kernel in April 2014, but it didn’t become clear until February this year that it also affects Android. Android’s media processing components continue to be a source of serious vulnerabilities. This month’s update includes patches for nine critical remote code execution flaws in the Android media codec, mediaserver and Stagefright media library. In addition, one privilege escalation vulnerability and four information disclosure issues rated as high impact were also fixed in mediaserver. Other components where critical flaws were found and patched include the Android kernel, the Dynamic Host Configuration Protocol (DHCP) client, the Qualcomm Performance module and […]

The post Google fixes 39 Android flaws appeared first on National Cyber Security.

View full post on National Cyber Security

NSA merging anti-hacker team that fixes security holes with one that uses them

Source: National Cyber Security – Produced By Gregory Evans

NSA merging anti-hacker team that fixes security holes with one that uses them

A reorganization of the National Security Agency could increase pressure on US spies to choose between keeping hackers out – or acting like them to gather intelligence. This week, the NSA is expected to announce an internal reshuffling that will merge its defensive and offensive cybersecurity missions, two former US officials said. The defensive side, called the Information Assurance Directorate (IAD), works with private companies and government networks to plug security holes before they can be exploited in a cyberattack. The offensive side, called the Signals Intelligence Directorate, often seeks to leave such security holes unpatched so they can be used when they hack into foreign systems. Merging the two departments goes against the recommendation of some computer security experts, technology executives and the Obama administration’s surveillance reform commission, all of which have argued that those two missions are inherently contradictory and need to be further separated. The NSA could decide not tell a tech company to patch a security flaw, they argue, if it knows it could be used to hack into a targeted machine. This could leave consumers at risk. NSA director admiral Michael Rogers has said a flatter structure is necessary to make the agency, which can […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post NSA merging anti-hacker team that fixes security holes with one that uses them appeared first on National Cyber Security.

View full post on National Cyber Security

Talk2Watch Pro updated with new features and fixes to music controls

For those who use a Pebble or Pebble Time with their BlackBerry 10 smartphone will probably be using Talk2Watch Pro to get functionality out of the watch. With a dedicated and active developer, it really is the recommended app. The developer has been busy working on some updates and fixes and a new update has just been pushed. It brings fixes to the music controls where the play/pause button wasn’t quite working as well as some nice new additions.

Read More »

View full post on MobileNations

OnePlus 2 gets updated to OxygenOS 2.0.1 (Stagefright patch and other fixes included)


Starting today, OnePlus is rolling out an over the air update (the first) to its newest smartphone, the OnePlus 2. More exactly, the update is for the international variant of the OnePlus 2 (which runs OxygenOS, not HydrogenOS, like the Chinese model), and brings OxygenOS to version 2.0.1.

Like plenty of other software updates lately, the one offered by OnePlus addresses the Stagefright security exploit. However, that’s not all that OnePlus 2 users are getting with this update. Also included are improved battery performance, improved “user interface logic and coherence”, and various …

View full post on PhoneArena

Verizon pushes out Android 5.1.1 and Stagefright fixes to Galaxy S6, Galaxy S6 edge and Tab 4 10.1

Verizon is sending out Android 5.1.1 and fixes for the Stagefright Exploit to its version of the Samsung Galaxy S6, Samsung Galaxy S6 edge and the Samsung Galaxy Tab 4 10.1. For the Samsung Galaxy S6 and the Samsung Galaxy S6 edge, the update allows you to use Caller Name ID if you have Advanced Calling enabled. With this feature, you can identify who is calling you, giving you the ability to screen calls. The update also gives you the ability to turn off the parallax “Wallpaper motion effect” if it is making you dizzy. It also gives you more wallpaper options to choose from for your lock screen …

View full post on PhoneArena

Windows 10 Mobile Preview build 10512 has over 2,000 fixes

Microsoft has made Windows 10 Mobile Preview build 10512 available to Windows Insiders on the Fast update. That build has over 2,000 bug fixes compared to the last preview version, 10166, which was released over a month ago.

View full post on MobileNations

Tesla’s Response to Hacked Car Offers a Road Map for Fast Fixes

Source: National Cyber Security – Produced By Gregory Evans

Cybersecurity researchers on Friday are publicizing software flaws in the Tesla Model S that could allow remote hackers to shut down a moving car’s engine. But owners of the high-tech luxury sedan have little need to worry. The electric-car maker quickly deployed a fix over the Internet. As cars loaded with on-board computers increasingly add wireless connections they are becoming more vulnerable to hackers, as seen recently with a Jeep Cherokee. Tesla’s response offers a model for how other automakers can address the increasing threat of computer attacks. Tesla owners get prompted on their cars’ infotainment screens to download software updates, the same way smartphone users do. The consultants who found the Model S flaws — Kevin Mahaffey, co-founder and chief technology officer of Lookout Inc., and Marc Rogers, principal security researcher for CloudFlare Inc. — revealed the vulnerabilities earlier this week ahead of a presentationFriday at the DefCon hacker conference in Las Vegas. The pair discovered six key weaknesses in the vehicle, alerted Tesla Motors Inc. and coordinated their disclosure with a fix from the automaker to reduce the risk to owners of the car, which starts at $70,000. Two-Edged Sword Such responsible disclosure, as the process is known […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Tesla’s Response to Hacked Car Offers a Road Map for Fast Fixes appeared first on National Cyber Security.

View full post on National Cyber Security

BMW fixes security flaw that left locks open to hackers

_80724006_478390649

Source: National Cyber Security – Produced By Gregory Evans

The flaw affected models fitted with BMW’s ConnectedDrive software, which uses an on-board Sim card. The software operated door locks, air conditioning and traffic updates but no driving firmware such as brakes or steering, BMW said. No cars have actually been hacked, but the flaw was identified by German motorist association ADAC. ADAC’s researchers found the cars would try to communicate via a spoofed phone network, leaving potential hackers able to control anything activated by the Sim. The patch, which would be applied automatically, included making data from the car encrypted via HTTPS (HyperText Transfer Protocol Secure) — the same security commonly used for online banking, BMW said. “On the one hand, data are encrypted with the HTTPS protocol, and on the other hand, the identity of the BMW Group server is checked by the vehicle before data are transmitted over the mobile phone network,” it said in a statement. This should have already been in place, said security expert Graham Cluley. “You would probably have hoped that BMW’s engineers would have thought about [using HTTPS] in the first place,” he wrote on his blog. “If you are worried that your vehicle may not have received the update (perhaps because […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post BMW fixes security flaw that left locks open to hackers appeared first on National Cyber Security.

View full post on National Cyber Security

Its time for change , MOZILLA redisgn firefox design after fixes security Vulnerabilities

1

Mozilla yesterday discharged the considerably upgraded variant 29 of its Firefox program. The most recent cycle incorporates fixes for various basic and very evaluated security vulnerabilities. Around the five discriminating vulnerabilities are client without after bugs in nshostresolve, imgloader while resizing pictures, and the Text Track Manager for HTML features. The remaining two discriminatingly appraised patches resolve a benefit heightening weakness in the Web warning provision programming interface and an assortment of memory security dangers. Settles that get discriminating appraisals apply to vulnerabilities that could be misused to run assaulter code and introduce programming without any client cooperation past typical …continue reading

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Its time for change , MOZILLA redisgn firefox design after fixes security Vulnerabilities appeared first on National Cyber Security.

View full post on National Cyber Security

Microsoft Fixes Critical Vulnerability in Windows Common Controls

April’s Patch Tuesday update delivers six bulletins — including a critical fix for a core flaw that affects a long list of Microsoft applications.

View full post on eSecurityPlanet RSS Feed

View full post on National Cyber Security

Page 1 of 212»

My Twitter

  • Cyber Security News Today is out! https://t.co/NZKBy2kROK @gregorydevans #hacker
    about 1 day ago
  • RT @GregoryDEvans: #galaxylife #samsung4life Website/IP https://t.co/i9wU6iYIef may be hackable #hacked, #WGH, #USA, #hackerproof https://t…
    about 2 days ago
  • RT @GregoryDEvans: Longmont’s ‘topless barber’ returns to court in September https://t.co/c0JwJBj8rH https://t.co/VfkzRSHsF8
    about 2 days ago
  • RT @GregoryDEvans: Website/IP https://t.co/i9wU6jgj5N may be hackable #hacked, #WGH, #USA, #hackerproof https://t.co/d95YykpwAd
    about 2 days ago
  • RT @GregoryDEvans: Website/IP https://t.co/i9wU6jgj5N may be hackable #hacked, #WGH, #USA, #hackerproof https://t.co/d95YykpwAd #security #…
    about 2 days ago

AmIHackerProof.com By Gregory D. Evans

Hacker For Hire By Gregory Evans

Gregory D. Evans On Facebook

Parent Securty By Gregory D. Evans

National Cyber Security By Gregory D. Evans

Dating Scams By Gregory Evans