Researchers from IBM's security team have discovered an authentication flaw in the Dropbox Software Development Kit (SDK) for Android that can be exploited to capture new data a user saves to his Dropbox account.
A web security researcher from Portugal has discovered several vulnerabilities affecting Facebook that he considers to be serious, but hasn't had much success convincing the company of that, so he shared the information with the public.
After security researcher OJ Reeves publicly revealed the existence of a remote code execution zero-day flaw affecting Seagate's Business Storage 2-Bay NAS line of products and published a Metasploit module and a standalone Python script that exploit the vulnerability, the company has finally commented the situation more extensively and has announced a patch: "After careful analysis, Seagate has confirmed that the vulnerability on our Business Storage NAS products is low risk and affects only those Business Storage NAS products used on networks that are publicly accessible via the Internet.
A recently released report by the US Government Accountability Office has revealed that despite some improvements, the Federal Aviation Administration (FAA) still needs to quash significant security control weaknesses that threaten the agency’s ability to ensure the safe and uninterrupted operation of the national airspace system (NAS).
A vulnerability in the update mechanism for the wireless networks operated by GoPro cameras has allowed a security researcher to easily harvest over a 1,000 login credentials (including his own).
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.