Tag Archives: Vulnerability

Facebook Photo API Bug Exposed Users’ Unpublished Photos

Facebook Photo API Bug Exposed Users’ Unpublished Photos

A bug in Facebook’s photo API may have exposed up to 6.8 million users’ photos to app developers, the company announced on Friday. Facebook said that normally, when a user gives permission for an app to get at their Facebook photos, the developers are only supposed to get access to photos that are posted onto

Twitter Fixes Bug that lets Unauthorized Apps Get Access to Direct Messages

Back in 2013, the OAuth keys and secrets that official Twitter apps use to access users’ Twitter accounts were disclosed in a post to Github… a leak that meant that authors didn’t need to get their app approved by Twitter to access the Twitter API. Years later, the chickens are still coming home to roost:

Kaspersky Patches Critical Vulnerability in Antivirus Products

Kaspersky Lab has pushed out an update to address a serious antivirus vulnerability reported over the weekend by a Google security engineer. Google’s Tavis Ormandy reported on Saturday that he had discovered a flaw affecting the 2015 and 2016 versions of Kaspersky’s antivirus products. A screenshot published by the expert shows a successful exploit against Kaspersky

Google Patches Vulnerability in “Google Admin” App for Android

Researchers identified a vulnerability in the Google Admin application for Android that could have been exploited to read arbitrary files from the app’s sandbox. Google says it has released an update to patch the flaw. The Google Admin  application for Android is designed to allow administrators to manage their Google for Work accounts from their mobile

Android Vulnerability Allows Attackers to Crash Smartphones

A vulnerability in the Android mobile operating system can be exploited to cause devices to become inoperable, said researchers. According to experts, the vulnerability affects versions of Android starting with 4.3 Jelly Bean and up to 5.1.1 Lollipop. Roughly half of Android devices are running impacted version of the operating system. The issue is an integer