Khalil, a Palestinian white hat hacker, submitted bug reports to Facebook about a vulnerability that allowed him to post on anyone’s wall. But Facebook’s security team didn’t do anything. So Khalil wrote on Mark Zuckerberg’s wall about it and was generally a badass.
     |
Most folks who are new parents for the first time would not mind forking out rolls of money just to ensure that their bundle of joy gets nothing but the very best, including being able to keep an eye (as well as an ear) on the little one throughout the night, even from a different room. This is made possible thanks to advancements in modern day technology such as baby monitors, but the parents of a couple of young kids were rattled after they realized that their baby monitor was hacked.
To compound things even further, the hacker did something which was extremely disturbing afterwards – as the father of the two kids, along with his wife, claimed to have heard a detached voiced mumbling sexual things to their two-year-old daughter. Marc Gilbert and his wife have relied on their Internet connected baby monitor for so long, that he said, “We almost couldn’t live without it.” Unfortunately for them, someone managed to hacked their baby monitor, and he believed that his router was first to get hacked before the camera was next. Well, it goes to show just how important it is to always ensure that your home networks are as secure as possible.
Baby Monitor Hacked, Gave Parents A Scare original content from Ubergizmo. 
| |
Shooting videos on Vine is limited by design. All you have is your creativity and six seconds to fill. One button, one camera. Unless you don’t mind getting a little dirty.
| |
I guess that anyone with an online presence in the form of a website or web page is fair target of hackers, although your blog would be left mostly untouched if all you did with it was to show off pictures of your lunch, your pet cat lazing around the home, as well as selfies. If you were a high profile person who somehow divides opinion right down the middle, then the chances of someone defacing or hacking into your website is a whole lot higher, as the Dalai Lama found out recently with his Chinese site hacked. Apparently, the Central Tibetan Administration (CTA) of His Holiness the Dalai Lama site will come with an embedded iframe which will redirect Chinese visitors to a Java exploit, where said exploit will open up a backdoor payload, according to Kaskpersky Lab’s Kurt Baumgartner.
This is better known as a watering hole attack, where it is normally used by hackers to work their way into a site which has an extremely high probability level to be visited by a select group of users. While the site remains legitimate to most security software, visiting the compromised website could result in malicious content being installed on your machine which will then allow hackers safe passage to your personal information. It would be best to avoid this particular site at the moment to prevent any unwanted data theft.
Dalai Lama’s Chinese Site Hacked original content from Ubergizmo. 
| |
After a few weeks of outage, Apple has finally restored the developer site post hack. Since the middle of July, a security intrusion of the Apple developer site rendered a slew of tools for both iOS as well as Mac OS X developers inaccessible, and after a nice three week “sabbatical”, Apple has finally restored their developer site to working order. Since last Monday, Apple did mention that that it was a matter of days before Cupertino is able to restore the remaining “down services” at the site, and Apple also did reassure that the security intrusion was “not associated with any customer information.”
Well, developers would most certainly did not enjoy the entire outage period, as it would have left them in suspended animation to say the least, since they are left unable to equip new devices in order to have them run pre-release versions of Apple’s software or to try out new apps. Apart from that, the downtime was also untimely, since Apple was working hard to have developers to test and create software for the future versions of iOS and Mac OS X, where both of them are tipped to arrive in the coming fall which ain’t too far away. Were you one of those who were affected by the outage over at the Apple Developer site?
Apple Developer Site Restored original content from Ubergizmo. 
| |
“Here’s where it all happens for Apple developers” reads the tagline, but that’s not been the case for much of the last few weeks. This morning, Apple’s advising that its developer centre is now fully restored, after being taken offline due to intruder attempts. Hopefully for real this time. In any case, Cupertino’s offering up a month’s extended membership in return for the inconvenience, as outlined in the official statement past the break. Now, back to it…
Source: Apple
An attack against Tor Browser users on Windows machines was discovered this Sunday, and there is speculation that the uncovered malware was used by a law enforcement agency to harvest the IP addresses of users of several hidden services hosted by Freedom Hosting. The malware exploits a serious JavaScript security vulnerability affecting Firefox and other products that share the same code base, including the Tor Browser.
| |
Apple’s stock headphones aren’t exactly the most-loved product in the company’s oeuvre, even after Jony Ive’s team revamped them last year. Yet they’re free (with purchase) and produced by the millions. So Sprng, an inexpensive little plastic do-dad that makes them useful, is worth paying attention to.
| |
Apple and its developer community have had a few rough weeks: hackers struck Apple’s Dev Center in mid-July, and the company’s efforts to both recover and rejuvenate the portal have been slow going. Things are looking up, however, as the company just sent word that it will restore most of the remaining services this week. These will include crucial elements like enrollments and renewals, although Apple has already extended current developers’ memberships to avoid interruptions. While there’s still a few missing pieces, it’s clear that developers can soon return to business as usual.
Filed under: Cellphones, Software, Apple
Source: 9to5 Mac
Last year, we talked about Satis, a new luxury toilet (only in Japan!) that can be controlled by a smartphone app. Well, considering how smartphone apps are not well known for their security capabilities and does not have a particularly strong and secure background, it is not surprising to hear that the Satis luxury toilet which boasts of automatic flushing functionality, a bidet spray, as well as music and fragrance release capabilities, is vulnerable to hacks – at least, its smartphone app is. I guess this is more of a traditional “hack” per se, but rather, an oversight on Lixil’s part when churning out the Satis.
Considering how you would have forked out somewhere in the region of $5,686 for this bad boy to be installed in your bathroom, the last thing you would have expected would be to have your toilet hacked. Once access to the smartphone app (it runs on Android and is called My Satis) is gained, it could be used to activate any of the toilets, which might give rise to some folks thinking that it is another case of The Conjuring in the making.
Since the toilet relies on Bluetooth connectivity to receive instructions via the app, the weakness lies in the PIN code – every model has been hardwired to be four zeros (0000), which means it cannot be reset and can be activated by any phone with the My Satis app. All one mischievous person needs to do is download the My Satis app and start wreaking havoc to the actual owner.
Satis Luxury Toilet’s Smartphone App Can Be “Hacked” original content from Ubergizmo. 
| |
This is site is run by Sascha Endlicher, M.A., during ungodly late night hours. Wanna know more about him? Connect via Social Media by jumping to about.me/sascha.endlicher.
