Security Alerts & News
by Tymoteusz A. Góral

#1894 Facebook’s ImageTragick story
"I want to believe that all of you know about ImageMagick and its Tragick. This issue was found in the end of the April, 2016 and due to many processing plugins depends on the ImageMagick library this issue has a huge impact. Since there were evidences that information about this issue was available not only for researchers, who discovered it and ImageMagick’s development team, but also for others, on the 3rd of May, 2016 the information (without PoC) was disclosed. Many of researchers got this low-hanging fruit while discovering applications which were not updated in time. But for some unknowable reason i was not among them. "
Read more
#1894 Facebook’s ImageTragick story
#1893 Router vulnerabilities disclosed in July remain unpatched
#1892 Secret tokens found hard-coded in hundreds of Android apps
#1891 Vulnerabilities leave iTunes, App Store open to script injection
#1890 It’s shockingly easy to hijack a Samsung SmartCam camera
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12