security hacks – Page 22 – WindowsTechs.com

This Week in Security: Zimbra RCE, Routers Under Attack, and Old Tricks in WebAssembly

Posted on July 1, 2022 by Jonathan Bennett

There’s a problem in the unrar utility, and as a result, the Zimbra mail server was vulnerable to Remote Code Execution by simply sending an email. So first, unrar is …read more Continue reading This Week in Security: Zimbra RCE, Routers Under Attack, and Old Tricks in WebAssembly→

Posted on June 24, 2022 by Jonathan Bennett

[Eaton Zveare] purchased a Jacuzzi hot tub, and splurged for the SmartTub add-on, which connects the whirlpool to the internet so you can control temperature, lights, etc from afar. He …read more Continue reading This Week in Security: IoT In the Hot Tub, App Double Fail, and FreeBSD BadBeacon→

Posted on June 22, 2022 by Jenny List

Many years of using televisions, monitors, and projectors have conditioned us into treating them as simple peripherals whose cables carry only video. A VGA cable may have an i2c interface …read more Continue reading HDMI Is An Attack Surface, So Here’s An HDMI Firewall→

Posted on June 18, 2022 by Lewin Day

Two-factor authentication is becoming the norm for many applications and services, and security concerns around phone porting hacks are leading to a phaseout of SMS-based systems. Amidst that backdrop, [Josh] …read more Continue reading Build Your Own Two-Factor Authenticator With Good USB→

Posted on June 18, 2022 by Lewin Day

[Gabe Schuyler] had a frustrating problem when it came to getting into his building’s garage. The RFID access system meant he had to remove his gloves while sitting on his …read more Continue reading Your Building’s RFID Access Tags Might Be Really Insecure→

Posted on June 17, 2022 by Jonathan Bennett

There’s not one, but two side-channel attacks to talk about this week. Up first is Pacman, a bypass for ARM’s Pointer Authentication Code. PAC is a protection built into certain …read more Continue reading This Week in Security: Pacman, Hetzbleed, and The Death of Internet Explorer→

Posted on June 10, 2022 by Jonathan Bennett

If you roll way back through the history of open source webmail projects, you’ll find Horde, a groupware web application. First released in 1998 on Freshmeat, it gained some notoriety …read more Continue reading This Week in Security: For The Horde, Feature Not a Bug, and Confluence→

Posted on June 10, 2022 by Jenny List

The curtain of state secrecy which surrounds the type of government agency known primarily by initialisms is all-encompassing and long-lived, meaning that tech that is otherwise in the public domain …read more Continue reading A Secure Phone Fit For A Prime Minister→

Posted on June 5, 2022 by Arsenijs Picugins

[Etienne Sellan] got one of these lovely $5 logic analyzers. As with any shiny new tool, he started looking for things to investigate with it, and his gaze fell on …read more Continue reading Anyone Can Be The Master Of This Master Lock Safe→

Posted on June 3, 2022 by Jonathan Bennett

Depending on who you ask, there’s either 2 vulnerabilities at play in Follina, only one, or according to Microsoft a week ago, no security problem whatsoever. On the 27th of …read more Continue reading This Week In Security: Follina, Open Redirect RCE, and Annoyware→