Researchers show how to remotely exploit the DRAM “Rowhammer” bug by using JavaScriptProof-of-Concept (PoC) The team claims this to be the first remote software-induced hardware fault attack. The downside here is that it is a hardware flaw and not a software flaw, thus it could be present in any computer which has the Intel Processor built since 2009. The next bad news is that hackers can exploit this flaw through any webpage....
Besides helping people to stay connected, the hub also aims to offers tips, authoritative information and other resources about the epidemic, as we practice physical distancing. “Being physically separated from the people you care about is hard. This is especially true in uncertain times. Messenger allows people to be with friends and family regardless of where they are or what device they’re using. Around the world, we’ve seen significant increases in people using Messenger for group calls to stay in touch with their loved ones....
In order to trigger the Pirate Reactions, users can simply change their language to “English (Pirate)” via settings. Once the setting is changed, then the reactions will get updated to ‘shiver me timbers’ instead of a regular ‘wow’. On the top of your page, where Facebook usually asks users to “update status” Pirate mode will ask you to “update your pludnerin”. Event updates will be featured as “looming grog fests” and your “home page” transforms into “home port”....
Currently, when a user dies on Facebook, it refuses to delete dead users automatically and instead turns the account into a “memorialized” version. The only way that one can delete the account of a dead person is for someone to log in with the password and close it down. However, those accounts that are handled by someone else continues to remain on the site. In such a scenario, what happens to our digital possessions once we die?...
Say hello to the FBI’s facial recognition systemNot only criminals, but also Civilian images with non criminal records, The Next Generation Identification (NGI) is a new system developed by FBI, which features the facial recognition system, will help the FBI and other law enforcement agencies in investigations in criminal cases. The NGI entails complete build up of the FACIAL features a person which will then make the task of hunting them down easy for the enforcement agencies....
United States has in place a legislation called Privacy Act which makes it incumbent upon the federal agencies to give people access to the records that have been collected concerning them “allowing them to verify and correct them if needed.”. The Department of Justice wants to bypass this very act. According to a new proposal being floated in early by the Department of Justice, FBI seeks to exempt the biometric database from public disclosure....
For those unfamiliar, the main reason for the shutdown was the lack of business for the OS. Firstly, it was reported that 20 percent of its employees were fired in July 2016 after running into financial trouble. Other than support from one or two smartphone companies, there weren’t enough mobile manufacturers convinced that Cyanogen should be the de facto Android. However, a couple of weeks ago, a team of developers who worked on the CyanogenMod decided to come together and form the next open-source project, Lineage OS in order to carry forward CyanogenMod development in the new model....
Google has just published a new research paper that shows that it is possible to use your phone’s personal assistant without a data connection. The research team at Google is working on creating a new, personalized system for voice commands, as well as dictation. To train the new system, the team mainly used 2,000 hours of recorded and anonymized Google voice search traffic, totalling more than 100 million requests. The team also added background noise from YouTube to imitate real-life speaking conditions....
According to G DATA, the app will be initially available for Android and is designed to your messages private from any outsiders who might try to gain access to them using end-to-end encryption. It protects privacy of the users against data leeches and cyber eavesdropping. It can also be used to share files safely through the use of the Axolotl protocol. SECURE CHAT helps secure all file exchanges, including photos, videos and other media....
GitHub site, which is in its 10th year, was launched in April 2008 by Tom Preston-Werner, Chris Wanstrath, and PJ Hyett. Speaking at the company’s annual GitHub Universe user conference this Wednesday, Chris Wanstrath, co-founder and outgoing CEO, in his final keynote said, “We think the future of coding is no coding at all.” In the month of August, Wanstrath had announced that he would be stepping down as the company’s CEO as soon as he would find a suitable replacement....
The first feature is called “Verified SMS”. This will help the user confirm the true identity of the business that’s texting them. The feature works by verifying, on a per-message basis, that content is sent by a specific business. If the message is verified, Google will display the business name and logo as well as a verification badge in the message thread. Some of the first brands like 1-800-Flowers, Banco Bradesco, Kayak, Payback, and SoFi sent messages with Verified SMS starting yesterday....
The Google Apps allows enterprises to purchase domain names from Google’s partners, while at the same time providing the App users with easy setup and associated services. Announcing the leak in a email sent to the affected Google Apps users, Google said that the leak occurred due to a software defect. Google also said that its engineers were taking remedial action to contain the leak and details of those users who had renewed the domain services were affected by this leak....
The IT giant introduced the reward last year and is yet to have any successful submissions, according to Google’s Nathan Parker and Tim Willis. “That said, great research deserves great awards, so we’re putting up a standing six-figure sum, available all year round with no quotas and no maximum reward pool,” said the pair in a blog post on Monday US time. The company is also extending the reward program to include anyone that can bypass Chrome’s safe browsing download protection features....
Google and Fidelity have invested $1 billion in the SpaceX, a Hawthorne, California company to support the innovation in the areas of space transport, reusability and satellite manufacturing. Both the companies will together own slightly less than 10 percent of the SpaceX. A source close to the deal says Google “has agreed to fund $10 billion to SpaceX for the project.” SpaceX is a privately funded space company, headed up by Tesla CEO Elon Musk....
Google on a back to back App launching spreeGoogle releases Devices and Activity App for enhanced security and frees Zix EncryptionDevices and ActivityUser has to set up the Devices and Activity panel in dashboardSecurity keyZix Encryption Devices and Activity This dashboard will show a list of every device and location that was used to access the account in the past 4 weeks giving the user the exact idea of who is accessing what Google account through which device and from where....
Google researcher team contacted Microsoft regarding the bug on the same day as the flaw was discovered but there are no indications of any action being taken in the matter Forshaw has also stated in the mailing list that he has tested the PoC only on 8.1 and doesnt know whether Windows 7 is vulnerable. The vulnerability is identified in the function ahcache.sys/AhcVerifyAdminContext. The proof of concept includes two program files and a set of instructions for executing it which result in the Windows calculator running as Administrator....
By using search queries that began with the “how to spell” and then the word in question, Google determined which words people have the most trouble spelling in all 50 states. The search giant then laid the data out in colorful map for all to peruse and mock. Among the most commonly misspelled words were desert, maintenance, vacuum, cancelled, gray and pneumonia. While people in Arizona and New Hampshire struggled with the word “diarrhea,” people in Massachusetts often looked up how to spell “Massachusetts....
The Android legacy SOP flaw which was discovered by Rafay Baloch, a Pakistani security researcher, affects the webview component of the Android default browser shipped with around 930,000 smartphones operating on Android 4.3 Jelly Bean and below. The vulnerability in the WebView component, occurs when replacing the ‘data’ attribute of a given HTML object with a JavaScript URL scheme. A potential hacker could leverage the UXSS flaw to scrape cookie data and page contents from a vulnerable browser window....
It is guessed that the hackers may have known about the unpatched zero-day bugs in the Firefox web browser for a year or more. According to Mozilla, the attacker was able to breach a user’s account that had privileged access to Bugzilla, including the non-public zero-day flaw information. By the time, the hacker broke in, 43 of the severe flaws had already been patched in the Firefox browser claims Mozilla....
