Last week I warned you about a serious FaceTime flaw that could allow malicious attackers to snoop through your iPhone’s camera and mic by starting a malicious group call. Apple credited a 14-year-old boy for reporting this vulnerability. This week, Apple released updates to fix this FaceTime issue, and a few others that attackers are exploiting in the wild. Watch today’s video … [Read more...]
Vendor Assaults Security Researcher – Security Byte
Vendors and security researchers haven’t always gotten along, but when one physically assaults the other you know things have gone way off course. A pair of UK-based security researchers found many critical flaws in a vendor’s gambling player reward systems. All signs suggest that these researchers did their best—really going beyond the call of duty—to report these flaws to … [Read more...]
KeySteal Controversy – Security Byte
An 18year-old, German researcher (Linus Henze) has found a serious, zero day password leak vulnerability in macOS’s key store, but he refuses to share the technical details with Apple. Turns out, Apple only offers iOS bug bounties, not macOS ones, and this researcher is protesting that fact. Watch the video below to learn more about this critical vulnerability, and where my … [Read more...]
Password Checkup – Security Byte
If you are like me, you are probably sick of the constant deluge of credential and password leaks. It seems like big businesses are losing our credentials every other day. How is a IT professional supposed to keep their passwords safe? Well, the simple answer is password managers and multi-factor authentication (MFA). That said, if you are someone that doesn’t always change … [Read more...]
Board Meeting Phish – Security Byte
A security company called GreatHorn recently detected a relatively prevalent spear phishing email targeting C-level executives, warning them about a change in their board meeting. The malicious email appears to come from the targeted company’s CEO and informs them that they have to reschedule a board meeting. However, if you interact with the email you may end up giving away … [Read more...]