Neowin News Feed for: Flaw

Microsoft refuses to patch IE mouse tracking flaw that is currently being exploited

Brad Sams — Wed, 12 Dec 2012 15:11:19 +0000

A flaw that was discovered and disclosed to Microsoft in October has been revealed that allows anyone to track your mouse movements and Microsoft has refused to fix the issue. Read more...

Activation flaw gifts pirates legitimate Windows 8

Tim Schiesser — Wed, 21 Nov 2012 06:25:02 +0000

Through the use of an illegitimate KMS activation and a free Windows Media Center upgrade, it's apparently possible to turn your pirated copy of Windows into a fully activated "legitimate" copy Read more...

Smart Cover flaw can bypass password-protected iPad 2's

Byron Hinson — Fri, 21 Oct 2011 18:20:52 +0100

A new security flaw has been discovered for iPad 2 owners who use a Smart Cover while password-protecting their hardware. The flaw allows anyone with a Smart Cover to unlock the iPad 2 with ease. Read more...

Password security flaws in Mac OS X Lion exposed

Denis Wong — Tue, 20 Sep 2011 19:06:19 +0100

A security blogger expose two flaws in Mac OS X Lion that allows unauthenticated password changes and the acquisition of password hashes by any logged on user. Read more...

Why Twitter was compromised, and how it ended so soon

Tzvi Friedman — Wed, 22 Sep 2010 15:06:03 +0100

Yesterday, the Twitter-sphere was engorged with spam tweets produced by a significant security hole in cross-scripting capability that threw the service into total disarray. People were warned repeatedly to stay off the service’s main page,... Read more...

Microsoft delivers temporary fix for critical Windows flaw

Tom Warren — Thu, 22 Jul 2010 00:28:05 +0100

Microsoft released a temporary "Fixit" workaround on Tuesday, to protect Windows users against a critical unpatched Windows Shell vulnerability. Microsoft issued a security bulletin on Friday to warn customers of a 0-day exploit involving the Windows... Read more...

Microsoft confirms new 64-bit Windows 7 vulnerability

Tom Warren — Wed, 19 May 2010 18:51:08 +0100

Microsoft said on Tuesday that it is investigating a publicly reported vulnerability in the Windows Canonical Display Driver (cdd.dll) affecting 64-bit versions of Windows 7 and Windows Server 2008 R2. The flaw resides in the Canonical... Read more...

Twitter fixes flaw that allowed users to force anyone to follow them

Brad Sams — Mon, 10 May 2010 17:13:59 +0100

Twitter, the popular short message service experienced a serious flaw that impacted feeds and timelines. If you tweeted accept @bdsams, you would automatically be added to that persons follow list. What exactly does this mean?... Read more...

Palm's WebOS hacked via SMS message

Brandon Boyce — Tue, 20 Apr 2010 00:24:01 +0100

Intrepidus Group, a security and risk company, found a flaw in Palm's WebOS. Due to a flaw in the way SMS is implemented on the device, the researchers were able to send a specially formed... Read more...

Microsoft releases cumulative out-of-band update for Internet Explorer

Tom Warren — Tue, 30 Mar 2010 23:42:01 +0100

Microsoft said on Tuesday that it has released a new out-of-band cumulative update for Internet Explorer 6 and 7 users. The update (MS10-018) fixes 10 flaws, with the most serious allowing remote attackers to execute arbitrary... Read more...

Energizer needs to stick to batteries, software opens your PC to hackers

Brad Sams — Tue, 09 Mar 2010 17:32:01 +0000

Energizer is known for their batteries and not for their software. So, if you have installed the software for the Energizer Duo battery charger to monitor the charging level of your batteries, remove the... Read more...

O2: Apple to patch iPhone SMS flaw this Saturday

Tom Warren — Fri, 31 Jul 2009 16:54:34 +0100

British network operator O2 has issued a statement to the BBC confirming that Apple will fix a security issue with the iPhone on Saturday via iTunes. Researchers revealed yesterday that they had discovered a flaw... Read more...

Updated: Microsoft responds to the Windows 7 UAC flaw

Chakkaradeep Chandran — Thu, 05 Feb 2009 13:21:31 +0000

Update: Microsoft have now updated that they are going to deliver two changes to the Windows 7 Release Candidate regarding this issue. Before getting into the actual news, lets take a while to understand... Read more...

Microsoft insists UAC vulnerability is not a flaw

Tom Warren — Sat, 31 Jan 2009 10:27:24 +0000

Yesterday we reported on a major UAC security flaw where malicious hackers could potentially execute a script on a users machine by tricking into them into opening a disguised exe. This script would disable UAC... Read more...

Clickjackers could hijack Webcams, microphones, Adobe warns

Daniel Fleshbourne — Wed, 08 Oct 2008 18:35:09 +0100

Adobe Systems warned users Tuesday that hackers could use recently-reported "clickjacking" attack tactics to secretly turn on a computer's microphone and Web camera. Flash on all platforms is susceptible to clickjacking attacks, Adobe said in... Read more...

Vendors fixing bug that could crash Internet systems

Daniel Fleshbourne — Fri, 03 Oct 2008 12:43:39 +0100

Internet infrastructure vendors are working on patches for a set of security flaws that could help hackers knock servers offline with very little effort. The security community has been buzzing about the bugs since Tuesday,... Read more...

Security researcher reveals iPhone design flaws

Daniel Fleshbourne — Thu, 02 Oct 2008 17:40:00 +0100

Apple's iPhone has two design flaws that could pose potential security problems, according to a researcher. The first one concerns the iPhone's e-mail application, which automatically downloads images within an e-mail, said Aviv Raff, a... Read more...

Ubuntu issues patch for Linux kernel flaw

Daniel Fleshbourne — Tue, 26 Aug 2008 12:34:03 +0100

Ubuntu is the latest Linux vendor to patch a vulnerability in the open-source operating system's kernel that could have left the door open for hackers to find their way into users' machines. In an email... Read more...

DNS flaw is so big it puts every network at risk

Daniel Fleshbourne — Thu, 07 Aug 2008 15:16:51 +0100

A recently found flaw in the internet's addressing system is worse than first feared, so Dan Kaminsky said when speaking publicly about his discovery at the Black Hat conference in Las Vegas. He said... Read more...

Apple misses mark on DNS patch

Daniel Fleshbourne — Tue, 05 Aug 2008 11:14:29 +0100

Security researchers are claiming that Apple has failed to fully patch the high profile DNS cache poisoning error. The company issued the patch last week as part of a larger security update. The so-called Kaminsky... Read more...