BrakTooth Bluetooth vulnerability exposes millions of Windows and Android devices

A large collection of vulnerabilities have been found in Bluetooth chipsets across a range of popular SoC OEMs including Intel, Qualcomm, Texas Instruments, Infineon (Cypress), Silicon Labs and others. The group of hacks have been dubbed BrakTooth and their impact can range from simply crashing devices using specially crafted Bluetooth Link Manager Protocol packets to executing arbitrary code (CVE-2021-28139). The hacks have been found on 13 boards from 11 vendors, but may affect as many as 1,400 chipsets. Products impacted include laptops and desktops from Dell (Optiplex, Alienware), Microsoft Surface devices (Go 2, Pro 7, Book 3), and smartphones (e.g. Pocophone F1, Oppo Reno 5G). Expressif, Infineon, and Bluetrum have

Hackers stole the personal data of millions of T-Mobile customers

Update 2 (08/20/2021 @ 07:34 PM ET): More bad news for T-Mobile customers — the hack is even worse than initially reported. Click here for more information. The article, as published on August 17, 2021, is preserved below. Previous updates Update 1 (08/18/2021 @ 03:39 PM ET): T-Mobile has shared some of the preliminary findings of its internal investigation into the massive data breach affecting millions of customers. Click here for more information. U.S. carrier T-Mobile has confirmed that it experienced a data breach, saying that “unauthorized access to some T-Mobile data occurred”. It comes after the carrier said that it was investigating a forum post online, claiming to be

Facebook explains why millions of users are losing access to key features

If you’ve logged into Facebook, launched Instagram, or fired up Facebook Messenger recently, you may well have seen a message reading, “some features not available”. So, what’s going on? Various restrictions have come into force because of new privacy laws that Facebook must comply with. It means that some “advanced options”, such as creating polls, are no longer available to millions of users. Facebook has revealed just what is happening. As anyone affected by the limitations will be aware, Facebook apps give a vague explanation for the disabling of features. “This is to respect new rules for messaging services in Europe. We are working to bring them back”. This does

Microsoft Teams will stop working for millions of users today

Microsoft Teams has gained wide popularity across the globe for its seamless video calling experience. The video calling platform can be used on the desktop as well as mobile phones. The company has now announced to end Teams support for Internet Explorer 11 users with the aim to move them to Edge. The company announced ending Teams support on Explorer 11 earlier this year. “Beginning November 30, 2020, the Microsoft Teams web app will no longer support IE 11,” Microsoft noted in an official blog post earlier this year. Starting today, November 30, Microsoft Teams is going to stop working on Internet Explorer 11. If you have been using Teams

Millions of Android phones are vulnerable to a Snapdragon security flaw

DSPs in Qualcomm Snapdragon chips reportedly contain over 400 vulnerabilities. Attackers could use these for spying, malware, or just bricking devices. Fixes are on the way and there are no known attacks, but it’s still concerning. If you’re using an Android phone with a Snapdragon chip inside, there’s a good chance it’s susceptible to a host of potentially serious security flaws. Check Point security researchers say they’ve discovered more than 400 code vulnerabilities, nicknamed “Achilles,” in the digital signal processors (DSPs) of Qualcomm’s Snapdragon chips. The team is keeping the details a secret to prevent malicious use of the vulnerabilities before there’s a fix. The consequences can be serious, however.

Google Play Store Let Millions Of Users Download Malware-Laden Android Apps

Antivirus company McAfee published its findings on the presence of a new kind of malware in a large number of Google Apps, which could make your Android smartphone vulnerable to hacking. The malware, which has been called “Grabos,” was initially discovered in lines of code of several apps. Users are at a risk of installing such apps since these apps seem to have fooled Google’s safety checks and have also received a high rating on the Play Store. Most of these apps were launched on the Google Play Store as recently as August. The first such application was the Aristotle Music Audio Player 2017, which was a free audio player

iOS Vulnerability: 76 Apps With Millions Of Downloads Found To Be Vulnerable To Data Theft

Apple’s App Store is generally considered a much safer app marketplace than its contemporaries, but at least 76 popular iOS apps were recently found to be susceptible to data interception according to a report from a security expert. The concerning findings come from verify.ly, a service created by Sudo Security Group CEO Will Strafach. Using his service, which scans the binary code of an iOS application to produce a report of common security issue, Strafach was able to confirm a considerable number of heavily-downloaded apps were vulnerable to silent man-in-the-middle attacks. The type of attacks the apps could fall victim to should be protected by Transport Layer Security, the protocol

Google marks millions of websites without 'https' as 'Not Secure' in latest Chrome update

A woman walks past a logo of Google at the Global Mobile Internet Conference (GMIC) 2015 in Beijing, China, April 28, 2015.REUTERS/Kim Kyung-Hoon/Files Millions of websites worldwide were estimated to have been hit by Google’s new update rollout for the Chrome browser. As it was first announced in January, Chrome 68 will categorically label an HTTP site as “not secure.” Google Chrome browser on Wednesday received its version 68 as part of the search giant’s definitive roadmap to help cleanse the internet from malicious actors and, in return, further protect its users. Chrome accounts for more than 50 percent of the web browsing population. Being the first version that blatantly