Crashing WhatsApp By sending A Huge Amount of Emojis

Security researcher Indrajeet Bhuyan has discovered another issue in WhatsApp messenger. The first bug was discovered last year where he discovered that by sending text messages of few thousands work, WhatsApp would crash on desktop and Android version whereas on iOS it would freeze for a short time. This bug was later patched by WhatsApp.

This time Mr Bhuyan discovered a flaw which can be used to crash WhatsApp mobile app and whastapp Web ( which is the PC version of the same ).
According to Mr Bhuyan, WhatsApp web allows 65500-6600 characters and after typing around 4200-4400 smiley, the browser starts to slow down. Since the limit of characters allowed is not reached, the attacker can continue inserting. When a user receives the message, it will overflows the buffer and crashes WhatsApp.

POC VIDEO

Cybercriminals Increasingly Targeting Apple Products

In one of its annual threat landscape reports, security firm Symantec stated that there has been a rise in malware targeting Apple operating system, both Mac OS X and iOS. With the increased popularity in recent years, attackers have begun developing more malware to infect Apple products. The threats have not only grown in numbers but have also diversified.
In 2013 Symantec did not detect any new malware targeting iOS but in 2014, three new threats were detected and seven in the first 9 months of 2015. A full list of all the threats targeting iOS and Mac OS can be found in the report below.

Download full report [Here!]

Underwear Thief Used Social Media Location Data To Find Victim's Home


Arturo Galvan, a 44 year old man from Los Angeles, has been using social media websites Instagram to find out where his victims lived, to steal their computer, iPads, panties and bras.

Galvan identified his victims by hanging out on public gathering places in Fullerton and Orange and searched for social media posts where people 'checked in'. He then allegedly searched through the victim's posted pictures through GPS data attached to the digital images and mapped them to find out where they live.

At his place, a garage-full of stolen items consisting of bras, panties and electronic devices were found. He was arrested last week and faces charges of burglary, receiving stolen property, and peeping and prowling. Galvan was released from jail Saturday after posting bail of $200,000.

Readers, do check your social media accounts and apps settings for your privacy.

Read More: [Fullerton Police]

Google Patches 19 Vulnerabilities in Latest Android Update

On Monday Google released its December Nexus Security Bulletin,in which, 19 bugs were addressed. This updates is for builds LMY48Z or later and Android Marshmallow.

The 4 critical vulnerabilities are:
  • Remote Code Execution Vulnerability in Mediaserver(CVE-2015-6616)
  • Remote Code Execution Vulnerability in Skia(CVE-2015-6617)
  • Elevation of Privilege in Kernel(CVE-2015-6619)
  • Remote Code Execution Vulnerabilities in Display Driver(CVE-2015-6633/CVE-2015-6634)

The 12 high vulnerabilities are:
  • Remote Code Execution Vulnerability in Bluetooth(CVE-2015-6618)
  • Elevation of Privilege Vulnerabilities in libstagefright(CVE-2015-6620)
  • Elevation of Privilege Vulnerability in SystemUI(CVE-2015-6621)
  • Elevation of Privilege Vulnerability in Native Frameworks Library(CVE-2015-6622)
  • Elevation of Privilege Vulnerability in Wi-Fi(CVE-2015-6623)
  • Elevation of Privilege Vulnerability in System Server(CVE-2015-6624)
  • Information Disclosure Vulnerabilities in libstagefright(CVE-2015-6626/CVE-2015-6631/CVE-2015-6632)
  • Information Disclosure Vulnerability in Audio(CVE-2015-6627)
  • Information Disclosure Vulnerability in Media Framework(CVE-2015-6628)
  • Information Disclosure Vulnerability in Wi-Fi(CVE-2015-6629)

The two moderate vulnerabilities are:
  • Elevation of Privilege Vulnerability in System Server(CVE-2015-6625)
  • Information Disclosure Vulnerability in SystemUI(CVE-2015-6630)

We advise our readers who are using affected devices to apply the patches as soon as they receive it.

Source:[Click Here!]

Visitors

Free counters!

Translate

MauriHackerS - Providing Latest IT Security and Hacking News !