12 matches found
EUVD-2014-6577
Malware in sbrugna...
News Wrap: AWS Cryptojacking Worm, IBM Privacy Lawsuit and More
Threatpost editors Lindsey O’Donnell-Welch and Tara Seals discuss the top security news stories of the week ended Aug. 21, including: IBM, the owner of the Weather Channel mobile app, has reached a settlement with the Los Angeles city attorney’s office after a 2019 lawsuit alleged that the app wa...
IBM Settles Lawsuit Over Weather Channel App Data Privacy
IBM, the owner of the Weather Channel mobile app, has reached a settlement with the Los Angeles city attorney’s office after a 2019 lawsuit alleged that the app was deceiving its users in how it was using their geolocation data. The 2019 lawsuit claimed, the app’s permission prompt for users to...
This Week in Security News: Phishing Attacks and Ransomware
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about schemes used in phishing and other email-based attacks. Also, learn how ransomware continues to make a significant impact in the...
The Weather Channel goes offline after ransomware attack
By Uzair Amir The ransomware took The Weather Channel's live transmission offline for almost an hour. Another day, another ransomware attack; this time The Weather Channel suffered a powerful ransomware attack forcing its live TV telecast to go offline for 90 minutes. See: WannaCry hero MalwareTe...
Weather Channel Knocked Off-Air in Dangerous Precedent
On Thursday, The Weather Channel – a trusted cable network source of meteorological data across the U.S. – was knocked off the air by what it said was a “malicious software attack” on its network. The Weather Channel hack – not to be confused with the Weather Channel’s own hacks – affected its li...
The Weather Channel - Dangerous filesystem permissions, MIT license, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application The Weather Channel published at the 'play' market has multiple vulnerabilities...
Weather Channel Cross Site Scripting
The Weather Channel weather.com Almost All Links Vulnerable to XSS Attacks Domain Description: http://www.weather.com/ "The Weather Channel is an American basic cable and satellite television channel which broadcasts weather forecasts and weather-related news and analyses, along with documentarie...
CVE-2014-6699
The Weather Channel aka com.weather.Weather application 5.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The Weather Channel aka com.weather.Weather application 5.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6699
The Weather Channel aka com.weather.Weather application 5.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6699
The Weather Channel (com.weather.Weather) Android app version 5.2.0 does not verify X.509 certificates from SSL servers, allowing man‑in‑the‑middle attackers to spoof servers and obtain sensitive information via a crafted certificate. The provided documents do not specify affected APIs, versions ...