A selection of this week’s more interesting vulnerability disclosures and cyber security news. After last week’s news about a part of Docker Hub being exposed, things have got just a little bit worse. One of the most popular images has a root account vulnerability. Now, with someone knowing what people have, and that there is a potential hole, a target list becomes massively reduced…
We trust our malware and AV companies as their code is in the most trusted part of the OS. What do we do now?
Whenever there is the claim of ‘unhackable’, you just know this will end badly…
- ‘Unhackable’ Biometric USB Offers Up Passwords in Plain Text A simple Wireshark analysis was enough to subvert the gadget, which uses iris identification to protect the drive.
The rest of this week’s news:
- Airbnb Superhost Secretly Recorded Guests with Hidden Bedroom Camera The incident is only the latest in a string of disturbing horror stories of guests finding live, recording cameras hidden in their Airbnb flats.
- Airbnb users complain of accounts being ‘hacked’ saying they’ve been charged thousands and had bookings cancelled
- Avengers: Endgame Sites Promise Digital Downloads, Deliver Info-Harvesting Web scammers are going after Marvel fans as the movie passes the $2.2 billion box-office mark, making it the second-highest grossing film of all time, behind only Avatar.
- Key to success: Tenants finally get physical keys after suing landlords for fitting Bluetooth smart-lock to front door (The Register)