Lucene search
+L

467 matches found

threatpost
threatpost
added 2014/10/20 10:24 a.m.10 views

Privacy Criticism Hits OSX Yosemite over Location Data

Apple has fixed a huge number of security vulnerabilities in OS X and iTunes and, at the same time, is being hit with criticisms about privacy issues in the new version of OS X. The latest version of the operating system, known as Yosemite, sends location information to Apple by default via the...

0.2AI score
Exploits0References4
threatpost
threatpost
added 2014/07/08 1:49 p.m.11 views

New Verizon Transparency Report Shows Large Government Appetite for Location, Content Data

Verizon said in a new transparency report that though the number of some kinds of orders dropped–including wiretap orders and warrants–others rose, including general orders and pen register and trap and trace orders, and the company received nearly 150,000 total orders in the first half of 2014...

0.7AI score
Exploits0References4
threatpost
threatpost
added 2014/02/18 12:1 p.m.14 views

First AT&T Transparency Report Shows 2,000+ NSL Requests

AT&T, in its first transparency report, said that it received at least 2,000 National Security Letters and nearly 38,000 requests for location data on its subscribers in 2013. The new report from AT&T is the latest in a growing list of publications from telecom companies, Web providers and cell...

0.3AI score
Exploits0References4
threatpost
threatpost
added 2014/01/20 4:19 p.m.13 views

Starbucks Patches Vulnerable iOS App

Starbucks has patched a vulnerability in its iOS app that was found last week spilling user data, including usernames and passwords, by adding what it’s called an “additional safeguard measure” to protect its customers. While it’s a relatively quick turnaround for the company – it only took about...

0.2AI score
Exploits0References4
threatpost
threatpost
added 2013/12/11 1:8 p.m.13 views

NSA Monitors Google PREF Cookie to Spy

The National Security Agency is monitoring a certain type of cookie – deployed by the search giant Google – as yet another tool in their increasingly public surveillance apparatus. This, according to slides from an April 2013 NSA presentation acquired by the Washington Post, is the latest...

0.4AI score
Exploits0References3
threatpost
threatpost
added 2013/10/02 4:30 p.m.11 views

NSA Director Alexander Confirms Cell Location Pilot Program

In between pleas to end the government shutdown that has upwards of 70 percent of the intelligence community furloughed until further notice, NSA director Gen. Keith Alexander and Director of National Intelligence James Clapper spent a significant amount of time before a Senate Judiciary Committe...

0.1AI score
Exploits0References3
threatpost
threatpost
added 2013/06/17 11:42 a.m.10 views

Apple Fields Data Requests for 10,000 Users Accounts

Since December, U.S. law enforcement agencies have made between 4,000 and 5,000 requests for customer data from Apple on as many 10,000 user accounts, the company said in a statement released last night. Apple said in the wake of allegations that it participates in feeding the U.S. government...

Exploits0References6
jvn
jvn
added 2013/01/31 4:38 a.m.2 views

Weathernews Touch for Android stores location information in the system log file

Overview Weathernews Touch for Android contains a vulnerability that stores location information in the system log file. Weathernews Touch provided by Weathernews Inc. is a weather forecast application. Weathernews Touch for Android contains a vulnerability that stores location information in the...

4.3CVSS6.3AI score0.00893EPSS
Exploits0References5
nvd
nvd
added 2012/12/31 11:50 a.m.17 views

CVE-2012-6334

The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices does not properly implement Location APIs, which allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer."...

2.9CVSS6.7AI score0.01337EPSS
Exploits0References1
nvd
nvd
added 2012/12/31 11:50 a.m.17 views

CVE-2012-6336

The Missing Device feature in Lookout allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer."...

3.3CVSS6.6AI score0.0039EPSS
Exploits0References1
nvd
nvd
added 2012/12/31 11:50 a.m.19 views

CVE-2012-6337

The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a product-recovery effort by tampering with this feature or its location data...

3.3CVSS6.7AI score0.01553EPSS
Exploits0References1
prion
prion
added 2012/12/31 11:50 a.m.26 views

Design/Logic Flaw

The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices does not properly implement Location APIs, which allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer."...

2.9CVSS7.2AI score0.01337EPSS
Exploits0References1
prion
prion
added 2012/12/31 11:50 a.m.16 views

Design/Logic Flaw

The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a product-recovery effort by tampering with this feature or its location data...

3.3CVSS7.3AI score0.01553EPSS
Exploits0References1
prion
prion
added 2012/12/31 11:50 a.m.16 views

Design/Logic Flaw

The Anti-theft service in AVG AntiVirus for Android allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer."...

3.3CVSS7.1AI score0.00457EPSS
Exploits1References1
cvelist
cvelist
added 2012/12/31 11:0 a.m.25 views

CVE-2012-6334

The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices does not properly implement Location APIs, which allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer."...

6.7AI score0.01337EPSS
Exploits0References1
cve
cve
added 2012/12/31 11:0 a.m.48 views

CVE-2012-6335

The CVE-2012-6335 entry concerns AVG AntiVirus for Android: the Anti-theft service can be manipulated by a physically proximate attacker to supply arbitrary location data via a simple GPS location spoofer, potentially affecting app behavior. Impact described as location data spoofing with evidenc...

3.3CVSS6.8AI score0.00457EPSS
Exploits1References1Affected Software1
threatpost
threatpost
added 2012/05/11 2:50 p.m.13 views

Senator Seeks More Info On DOJ Location Tracking Practices

Senator Al Franken D-MN is demanding answers to questions about the U.S. Department of Justice DOJ practice of gathering data from wireless providers in order to monitor individuals’ movements using mobile phone location data. Franken released a copy of a letter to Attorney General Eric Holder on...

1.8AI score
Exploits0References3
threatpost
threatpost
added 2012/02/29 7:29 p.m.7 views

Loophole in iOS Allows Developers Access to Users' Photos

A recently discovered hole in Apple’s iOS allows third-party developers access to users’ iPhone, iPad or iPod Touch photos by exploiting the device’s location data, according to a report from the New York Times’ Nick Bilton on the Bits blog yesterday. The loophole lies in the way that application...

0.9AI score
Exploits0References5
threatpost
threatpost
added 2012/02/13 4:15 p.m.14 views

Finding Location Data In Google Maps SSL Sessions

In the last couple of years, Google and some other Web giants have moved to make many of their services accessible over SSL, and in many cases, made HTTPS connections the default. That’s designed to make eavesdropping on those connections more difficult, but as researchers have shown, it certainl...

6.8AI score
Exploits0References3
threatpost
threatpost
added 2011/09/28 6:7 p.m.68 views

Blowback: Microsoft, OnStar Pump the Brakes on Location Tracking

Redmond, Washington software giant, Microsoft, and Detroit based GM subsidiary, OnStar backtracked on policies widely seen as egregious privacy violations following lawsuits and public outcry. Here’s the news: Windows Phone Update Requires User Consent For Tracking Microsoft released their “Mango...

9.3CVSS0.99945EPSS
Exploits33References8
Rows per page
Query Builder