KeePassDroid - External URLs, Native code usage, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application KeePassDroid published at the 'play' market has multiple vulnerabilities...

IKO - Dangerous filesystem permissions, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application IKO published at the 'play' market has multiple vulnerabilities...

NetTV - ContentProvider mode not defined, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application NetTV published at the 'play' market has multiple vulnerabilities...

[SECURITY] Fedora 25 Update: chromium-native_client-58.0.3029.81-1.20170421gitc948e9b.fc25

Google's "pnacl" toolchain for native client support in Chromium. Depends on their older "nacl" toolchain, packaged separately...

Recent Python Meterpreter Improvements

The Python Meterpreter has received quite a few improvements this year. In order to generate consistent results, we now use the same technique to determine the Windows version in both the Windows and Python instances of Meterpreter. Additionally, the native system language is now populated in the...

touchControl - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application touchControl published at the 'play' market has multiple vulnerabilities...

easyTek - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application easyTek published at the 'play' market has multiple vulnerabilities...

Connexx Smart Remote - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Connexx Smart Remote published at the 'play' market has multiple vulnerabilities...

Signia myHearing - Dangerous filesystem permissions, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Signia myHearing published at the 'play' market has multiple vulnerabilities...

Connexx Smart Connect - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Connexx Smart Connect published at the 'play' market has multiple vulnerabilities...

myHearing - Dangerous filesystem permissions, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application myHearing published at the 'play' market has multiple vulnerabilities...

binaxDemo - External URLs, Native code usage, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application binaxDemo published at the 'play' market has multiple vulnerabilities...

Hanover - External URLs, Native code usage, Runtime command execution vulnerabilities

HackApp vulnerability scanner discovered that application Hanover published at the 'play' market has multiple vulnerabilities...

Pokladnica - Certificates or keys found, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Pokladnica published at the 'play' market has multiple vulnerabilities...

Database Activity Monitoring: A Do’s and Don’ts Checklist for DBAs

In a previous post, we looked at the limitations of native audit, the free tool often used by database administrators DBAs for logging database activity. While it has its appeal—it’s already part of the database server and does not require additional cost for third-party appliances or...

Android Qualcomm sound driver elevation of privilege vulnerability (CNVD-2017-06114)

Android is a Linux-based open source operating system developed by Google and the Open Handheld Alliance OHA, and Qualcomm Sound Driver is a sound driver developed by Qualcomm. The Qualcomm sound driver in Android on Pixel and Pixel XL devices is vulnerable to a power lifting vulnerability. An...

Native Auditing Tools – Performance, Cost, and Compliance Issues

As we covered in a previous post, data-centric security measures need to be implemented to meet compliance requirements and protect against complex, ever-evolving attacks. There are two primary approaches to implementing these measures: Native auditing, which uses a database server's built-in too...

STC Voice - Dangerous filesystem permissions, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application STC Voice published at the 'play' market has multiple vulnerabilities...

Zalo - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Zalo published at the 'play' market has multiple vulnerabilities...

eWeLink - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application eWeLink published at the 'play' market has multiple vulnerabilities...