New CallStranger exploit takes advantage of UPnP vulnerability in millions of routers, gaming systems, TVs, printers, and other Internet-connected attachable devices.

New CallStranger exploit takes advantage of UPnP vulnerability

Researchers just announced the discovery of a UPnP vulnerability that impacts any UPnP device exposed on the Internet. The attack, called CallStranger (CVE-2020-12695), is being used for massive DDoS attacks , to exfiltrate data, and to scan ports from Internet-facing UPnP devices. How the CallStranger exploit works The attack takes advantage of a Callback header…

Read more

If you own a D-Link router, stomp it, burn it, and never buy D-Link again

image thumb 34 1

Maybe other router manufacturers are as magnificently dumb as D-Link but regardless, get rid of all D-Link routers and vow to never buy another D-Link product for a long as your lungs suck in air. The security vulnerabilities present in their devices, especially the DWR-932B router, are so far beyond stupid, well, you’d swear the…

Read more

Users beware – yet another way to secretly save SnapChat pictures without the other user knowing it

image thumb541

Besides using another device to capture the SnapChat image and other “hacks” already discovered that makes SnapChat not quite so “snappy”, yet another hack has been discovered which lets users secretly capture screen shots of SnapChat’s “private” pictures without notifying the sender. SnapChat is the self-claimed “sext-friendly” application that lets users share sexy or naked…

Read more

Java vulnerability said to be “massively exploited” and already present in most exploit kits

image thumb481

A previously unknown and currently unpatched vulnerability in the latest version of Java is being “massively exploited” according to researchers. Code that exploits the vulnerability has been added to Blackhole, Cool, Nuclear Pack, and Redkit exploit kits. The attack code is reportedly “highly obfuscated” meaning it’s likely getting past security checks. According to researchers, the…

Read more

Vulnerability on Samsung smartphones and tablets allows root access

image thumb2131

XDA Developers member alephzain, has published a vulnerability that exists many Samsung devices that use the Exynos is the ARM-based system on chip. The vulnerability allows read/write access to RAM which of course means arbitrary code can be injected into the kernel. Shortly after the vulnerability was announced on the XDA forums, another member published…

Read more