 |
User: Login |
The gadgets and technology weblog
 |
| Address URL | http://www.bgr.com Registered: 22-Mar-2008 |
| Ads: |
|
 Send to email | OS X Lion security flaw allows anyone to change your password in SecuritySoftwareflawhackerlionlocalos xpasswordprivacyuser |  By Todd Haselton
el 19-Sep-2011 |
Foto 0 en OS X Lion security flaw allows anyone to change your password: Paste this image in your site, Myspace, Facebook, Ebay copy this code...
Security blog Defense in Depth has found a glaring security flaw in OS X Lion that enables hackers to change the password of any user on a machine running Lion. “[While] non-root users are unable to access the shadow files directly, Lion actually provides non-root users the ability to still view password hash data,” Patrick Dunstan from Defense in Depth explained in a recent blog post. The result is that anyone could use a simple Python script, created by Dunstan himself, to discover a user’s password. It gets worse. Reportedly, OS X Lion does not require its users to enter a password to change the login credentials of the current user. That means typing the command: “dscl localhost -passwd /Search/Users/Roger” will actually prompt you to set a new password for Roger. As CNET points out, a hacker could only take advantage of the known bug if he or she has local access to the computer and Directory Service access. CNET suggests disabling automatic log-in, enabling sleep and screensaver passwords and disabling guest accounts as some preventative measures to keep your Mac secure.
[Via CNET]
Read
Read 4 times
|
|
 |
|
| OS X Lion security flaw allows anyone to change your password | | Security blog Defense in Depth has found a glaring security flaw in OS X Lion that enables hackers to change the password of any user on a machine running Lion. “[While] non-root users are unable to access the shadow files directly, Lion actually provides non-root users the ability to still view password hash data,” Patrick Dunstan from Defense in Depth explained in a recent blog post. [..] Read complete article | | Published 19-Sep-2011 by Todd Haselton in SecuritySoftwareflawhackerlionlocalos xpasswordprivacyuser
Read 4 times. More hits in   |
|
 | Joystiq |  Blogger | Covers video game news from an independent, unbiased perspective
Joystiq Joystiq |
| Joystiq | Blogger | Covers video game news from an independent, unbiased perspective
Joystiq Joystiq |
| Joystiq | Blogger | Covers video game news from an independent, unbiased perspective
Joystiq Joystiq |
| Joystiq | Blogger | Covers video game news from an independent, unbiased perspective
Joystiq Joystiq |
| iOS 4.2 GM fixes dialer security flaw |  Just a quick follow up to an article we posted last week. It looks like Apple’s iOS 4.2 gold master candidate, which was pushed out to developers last night, closes the security loop hole that allowed the iPhone’s lock screen to be bypassed from the “Emergency Call” function. We’ve been trying, unsuccessful, to replicate the issue with the latest iOS pre-release. If y [..] Read complete article | | Published 02-Nov-2010 by Andrew Munchbach in MobileSoftware4.14.2AccessApplebugBypassflawGMgoldiOSMasterSecurity
Read 11 times. More hits in |
|
| Serious Safari security flaw found | 
If you are a Mac user, and fancy Safari as your default internet browser, you are going to want to pay attention to this one. A bug found in Safari’s AutoFill feature can allow a malicious website to gather personal information from a… [..] Read complete article | | Published 22-Jul-2010 by Kelly Hodgkins in AppleSecuritybrowsersExploitflawSafari
Read 27 times. More hits in |
|
| Joystiq | Blogger | Covers video game news from an independent, unbiased perspective
Joystiq Joystiq |
| HTC investigating potential Sense security flaw | | A report was recently published by Android Police that suggests HTC’s Sense user interface has several major security flaws that provide HTC with access to SMS data, phone numbers, system logs, location information and much more. Worse, the flaw could potentially allow any third-party application to access the same private information without having permission from the user to do so. The sec [..] Read complete article | | Published 04-Oct-2011 by Todd Haselton in MobileSecurityEVO 3DEVO 4GflawhackHTCissueSensationSenseThunderboltUI
Read 5 times. More hits in |
|
| Security flaw found in Citi Mobile iPhone app | 
Citigroup confirmed publicly that its Citi Mobile iPhone application has a major security flaw. The Citi Mobile application is used by Citibank customers to manage their bank accounts from their iPhone or iPod Touch. The application reportedly stored sensitive information — including account numbers,… [..] Read complete article | | Published 27-Jul-2010 by Kelly Hodgkins in iOSiPhone OS / iPod OSaccountCheckingCiti MobileCitibankprivacySecurity
Read 17 times. More hits in |
|
|
Warning We are not responsible of information posted from external feeds. Use this website at your own risk.
Notice: We will not be liable for any direct or indirect loss or damage arising under this disclaimer or in connection with our website, whether arising in tort, contract, or otherwise.
|
|
| |
Hello, Guest
Online: 41 visitors
![Image 0 en - Major security flaw lets anyone bypass AT&T Samsung Galaxy S II security [updated]](http://www-bgr-com.vimg.net/wp-content/uploads/2011/09/bgr-att-samsung-galaxy-s-ii.jpg)
BGR has uncovered a major security flaw on AT&T’s version of the Samsung Galaxy S II that renders Android’s security lock feature completely useless. Using a simple workaround, the security hole allows anyone to bypass the unlock pattern, which normally denies users access to an Android device unless a preset pattern is drawn on a grid of nine dots spread across the device’s [..] 
