Author Archives: Zeljka Zorz

WhatsApp RCE flaw can be exploited by sending malicious MP4 files

Facebook has patched a critical vulnerability (CVE-2019-11931) affecting various versions of its popular WhatsApp Messenger app and is urging users to update as soon as possible. About the patched flaw (CVE-2019-11931) CVE-2019-11931 is a stack-based buffer overflow vulnerability that could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. “The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS … More

The post WhatsApp RCE flaw can be exploited by sending malicious MP4 files appeared first on Help Net Security.

Most Americans feel powerless to prevent data collection, online tracking

Most U.S. adults say that the potential risks they face because of data collection by companies (81%) and the government (66%) outweigh the benefits, but most (>80%) feel that they have little or no control over how these entities use their personal information, a recent Pew Research Center study on USA digital privacy attitudes has revealed. Interesting discoveries on USA digital privacy attitudes The study has also shown that: 72% of respondents feel that all, … More

The post Most Americans feel powerless to prevent data collection, online tracking appeared first on Help Net Security.

Hackers helping communities: Leveraging OSINT to find missing persons

People, in general, like helping other people, no matter their degree of connection. And then there are people who go even further: they find a way to help people help people. Robert Sell, the founder and president of Trace Labs, is one of those individuals. For the last ten years, Sell has been helping track down missing persons in the wilderness of British Columbia, Canada. But people don’t go missing just in the wilderness, and … More

The post Hackers helping communities: Leveraging OSINT to find missing persons appeared first on Help Net Security.

GitHub Security Lab aims to make open source software more secure

GitHub, the world’s largest open source code repository and leading software development platform, has launched GitHub Security Lab. “Our team will lead by example, dedicating full-time resources to finding and reporting vulnerabilities in critical open source projects,” said Jamie Cool, VP of Product Management, Security at GitHub. GitHub Security Lab GitHub Security Lab is a program aimed at researchers, maintainers, and companies that want to contribute to the overall security of open source software. Current … More

The post GitHub Security Lab aims to make open source software more secure appeared first on Help Net Security.