+101 - Vote for the best Android Apps


101 Best Android Apps Archive

Posts Tagged ‘vulnerabilities’

[Update: Fix now available] ES File Explorer vulnerability leaves your files exposed to anyone on the same network

Friday, January 18th, 2019

In the early days of Android, ES File Explorer was one of the better ways to manage your storage.

Read More

[Update: Fix now available] ES File Explorer vulnerability leaves your files exposed to anyone on the same network was written by the awesome team at Android Police.

[Update: Developer response] ES File Explorer vulnerability leaves your files exposed to anyone on the same network

Thursday, January 17th, 2019

In the early days of Android, ES File Explorer was one of the better ways to manage your storage. That hasn't been true for a long time, though. Not only is the app rather cluttered and buggy, security researcher Elliot Alderson (@fs0c131y on Twitter) points out this app makes your files vulnerable to theft.

Read More

[Update: Developer response] ES File Explorer vulnerability leaves your files exposed to anyone on the same network was written by the awesome team at Android Police.

ES File Explorer vulnerability leaves your files exposed to anyone on the same network

Wednesday, January 16th, 2019

In the early days of Android, ES File Explorer was one of the better ways to manage your storage. That hasn't been true for a long time, though. Not only is the app rather cluttered and buggy, security researcher Elliot Alderson (@fs0c131y on Twitter) points out this app makes your files vulnerable to theft. All you have to do is open it once.

According to Alderson, ES File Explorer launches an HTTP server on port 59777.

Read More

ES File Explorer vulnerability leaves your files exposed to anyone on the same network was written by the awesome team at Android Police.

Newegg hacked, card information stolen for millions

Thursday, September 20th, 2018

Popular e-commerce website Newegg is the latest victim of cyber attacking by Magecart, according to Volexity, a cyberthreat monitoring firm. Newegg is one in a string of high profile cyber attacks making use of the card skimming code which recently compromised British Airways, Ticketmaster, and Feedify. Most critically, customer names and complete card details were stolen using exploited code between August 16th and September 18th.

Magecart exploited the Newegg checkout process with JavaScript similar to the code used in their hacking of British Airways.

Read More

Newegg hacked, card information stolen for millions was written by the awesome team at Android Police.

Another T-Mobile website bug allowed anyone to access customer info using just a phone number

Saturday, May 26th, 2018

T-Mobile customers: Your data has been put at risk by your carrier, once again. In what seems like copypasta at this point, a security researcher recently found a bug in a publicly discoverable subdomain on T-Mobile's website that gave anyone access to customer data using just a phone number. It's almost like T-Mobile wants to award those bug bounties.

This time around, a not-hidden-enough API in promotool.t-mobile.com, apparently a "Customer Care Portal" for employees, allowed any enterprising individual to access T-Mobile customer data by appending the customer's phone number to the end of the URL — no password required.

Read More

Another T-Mobile website bug allowed anyone to access customer info using just a phone number was written by the awesome team at Android Police.

T-Mobile website bug exposed customer logins to hackers, carrier says no accounts compromised

Sunday, February 25th, 2018

In the words of a famous disc jockey: "Another one." A young hacker-turned-security researcher in England found a critical vulnerability on T-Mobile's website that basically left records of user logins exposed online for hackers to pillage. The bug was reported and patched in December, and T-Mobile says no customer information was compromised as a result of this flaw.

Kane Gamble, who pled guilty to trying to hack into the email accounts of senior U.S.

Read More

T-Mobile website bug exposed customer logins to hackers, carrier says no accounts compromised was written by the awesome team at Android Police.

Other Stuff

Sponsors

Apps Jobs - Search and advertise android apps jobs