Security bytes - null mumbai

13
News bytes Null Mumbai
  • date post

    19-Oct-2014
  • Category

    Education

  • view

    1.818
  • download

    1

description

null Mumbai Chapter - October 2013 Meet

Transcript of Security bytes - null mumbai

Page 1: Security bytes -  null mumbai

News bytes Null Mumbai

Page 2: Security bytes -  null mumbai

Android WebView Exploit

Found by Elad Shapira of AVG Mobile

Vuln in the webview class of Android which could be used to access addJavascriptInterface

Victim needs to have a vulnerable app

All ad libraries at present are vulnerable

Page 3: Security bytes -  null mumbai
Page 4: Security bytes -  null mumbai

New Mac OSX malware

Leverage

App disguised as the picture

Creates a backdoor in the system

Uses two Java vulnerabilities

Exploited by Syrian Electronic Army

Page 5: Security bytes -  null mumbai

Bug bounty

Facebook paid a researcher $12500

Not proper security checks in the photo report abuse feature

Page 6: Security bytes -  null mumbai
Page 7: Security bytes -  null mumbai

TrueCaller hacked

Page 8: Security bytes -  null mumbai

WhatsApp vuln

Page 9: Security bytes -  null mumbai

GTA

Page 10: Security bytes -  null mumbai

Indian celebrities IT accounts hacked

Page 11: Security bytes -  null mumbai
Page 12: Security bytes -  null mumbai