5 matches found
Magecart Gang Targets Skin Care Site Visitors For 5+ Months
The website of popular skin care brand First Aid Beauty has been hacked by the infamous Magecart group, which embedded digital card skimmers on the site to steal visitors’ payment-card information. The skimmers were undetected on the website for more than five months. First Aid Beauty is an...
CVE-2018-5298
In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...
Design/Logic Flaw
In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...
CVE-2018-5298
In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...
CVE-2018-5298
The CVE-2018-5298 entry concerns the Procter & Gamble Oral-B App for Android (com.pg.oralb.oralbapp) v5.0.0, where AES is used with static parameters to protect locally stored shared preferences. The underlying issue is insecure key/parameter handling, enabling an attacker who can access the pref...