EUVD-2010-4185

Malware in sbrugna...

Like Apple's TouchID, Galaxy S5 Vulnerable to Fingerprint Hack

Researchers published a video this week demonstrating how Samsung’s latest entry in the smartphone arena, the Galaxy S5, is vulnerable to a hack that involves lifting and copying fingerprints to trick the phone’s biometric sensor. Much like the Apple iPhone 5S, the smartphone, which first hit the...

PayPal for Android SSL证书校验安全漏洞

CVE ID:CVE-2013-7201 PayPal for Android是一款用于安卓的paypal支付应用。 PayPal for Android WebHybridClient类不正确校验服务器SSL证书，允许攻击者利用漏洞伪造HTTPS链接，进行中间人等攻击。 0 PayPal for Android 5.3 目前没有详细解决方案提供： https://play.google.com/store/apps/details?id=com.paypal.android.p2pmobile&hl=en...

CVE-2010-4211

The PayPal app before 3.0.1 for iOS does not verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof a PayPal web server via an arbitrary certificate...

Code injection

The PayPal app before 3.0.1 for iOS does not verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof a PayPal web server via an arbitrary certificate...