CVE-2020-9066

Huawei smartphones OxfordP-AN10B with versions earlier than 10.0.1.169C00E166R4P1 have an improper authentication vulnerability. The Application doesn't perform proper authentication when user performs certain operations. An attacker can trick user into installing a malicious plug-in to exploit...

CVE-2020-9066

Huawei smartphones OxfordP-AN10B with versions earlier than 10.0.1.169C00E166R4P1 have an improper authentication vulnerability. The Application doesn't perform proper authentication when user performs certain operations. An attacker can trick user into installing a malicious plug-in to exploit...

Security feature bypass

In Huawei HiRouter-CD20-10 with the versions before 1.9.6 and WS5200-10 with the versions before 1.9.6, there is a plug-in signature bypass vulnerability due to insufficient plug-in verification. An attacker may tamper with a legitimate plug-in to build a malicious plug-in and trick users into...

Facebook 'Like' Scam Driven by Malicious Chrome Extension

A Kaspersky Lab researcher has discovered a Brazilian social engineering campaign that attempts to trick Facebook users into installing a malicious plug-in hosted on Google’s Chrome Web Store. The Facebook scam-page solicits victims by promising to teach them how to “remove the virus from their...