[HackerNews] Critical ThroughTek SDK Bug Could Let Attackers Spy On Millions of IoT Devices

A security vulnerability has been found affecting several versions of ThroughTek Kalay P2P Software Development Kit (SDK), which could be abused by a remote attacker to take control of an affected device and potentially lead to remote code execution.
Tracked as CVE-2021-28372 (CVSS score: 9.6) and discovered by FireEye Mandiant in late 2020, the weakness concerns an improper access control flaw

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] Cybersecurity Firm Exposes Breach Database Containing 5 Billion User Records

All posts, Security Week

Technology research company Comparitech on Monday said its researchers discovered that a cybersecurity firm had exposed a database containing more than 5 billion user records. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[BleepingComputer] Norton 360 antivirus now lets you mine Ethereum cryptocurrency

NortonLifelock has added the ability to mine Ethereum cryptocurrency directly within its Norton 360 antivirus program as a way to “protect” users from malicious mining software. […] Source: Read More (BleepingComputer)

Read More

[SecurityWeek] EU Data Watchdogs Want Ban on AI Facial Recognition

All posts, Security Week

The EU’s data protection agencies on Monday called for an outright ban on using artificial intelligence to identify people in public places, pointing to the “extremely high” risks to privacy. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.