Vulnerability Articles

Experts: Quicktime for Windows is “bug bait”

  • 16/04/2016 at 23:44 by It's a Gadget Staff
  • News

Apple and MalwareExperts are warning that Quicktime for Windows, a popular programs for creatives, could pose a serious security risk and should be removed.

According to TrendMicro, two new vulnerabilities have been found to impact Quicktime. These advisories, released earlier this week, are titled  ZDI-16-241 and ZDI-16-242.

Once upon a time, these vulnerabilities would have been patched by a security update. But Apple has announced that they will no longer be providing security patch updates for the program, leaving the program wide open for those who continue to use it.

+Continue Reading

The vulnerability of firmware, and what it means for all of us

  • 26/02/2015 at 23:01 by It's a Gadget Staff
  • News

NSA Spy ViewFirmware hacking is in the news a lot this week. Snowden’s Reddit AMA talked about spy agencies and their use of firmware hacking to gain backdoor entry. Gemalto confirmed reports of NSA and GCHQ attempts to break into their systems and steal encryption keys back in 2010 – 2011. Most alarmingly,¬†Kaspersky Lab found a piece of malicious coding in their software last week connected to the now infamous Stuxnet. It makes it clear that firmware is very vulnerable to attack, and that it could have some wide reaching implications.

Firmware hacking tools have become increasingly sophisticated over the years. Each new release and attack seems to be smoother, more effective, harder to find. While in hacks like the Gemalto attempt to steal encryption keys were only acceptable in accessing the first level, and not anywhere near the keys themselves, there have been years of evolution since.

+Continue Reading