Get a Pentest and security assessment of your IT network.

News

Don’t Panic

A new feature of the Kindle Touch browser is support for NPAPI, a common scriptable plugin API. NPAPI poses serious security risks for the browser, as the API has full root privileges on the device. It is possible in version 5.1.0 of the device to call the API in an tag, and then use the “lipc.set” method to inject shell commands with root privileges. The VRT has you covered with SIDs 23616 and 23617.”]

Source: https://blog.talosintelligence.com/2012/07/dont-panic.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2