TSEC NEWS: 06.05.21 Cron-Job Fehlerhaft nach PHP Update + PWA mobile + Desktop / 04.05.21 - Android App von TSECURITY 28.04.21 - NEUER SERVER // 26.04.21 ++ Download the Electron-App für tsecurity.de // Über 550 Feed-Quellen


❈ Supreme Court ruling stifles FTC effort to penalize MoviePass for data mismanagement and user throttling

Nachrichten zdnet.com

The FTC and MoviePass settled a complaint that accused the company of blocking subscribers from using the service as advertised....


Kompletten Artikel lesen (externe Quelle: https://www.zdnet.com/article/supreme-court-ruling-stifles-ftc-effort-to-penalize-moviepass-for-data-mismanagement-and-user-throttling/#ftag=RSSbaffb68)

Zur Startseite

➤ Weitere Beiträge von Team Security | IT Sicherheit (tsecurity.de)

Diving Deep Into a Pwn2Own Winning WebKit Bug

vom 449.42 Punkte
Pwn2Own Tokyo just completed, and it got me thinking about a WebKit bug used by the team of Fluoroacetate (Amat Cama and Richard Zhu) at this year’s Pwn2Own in Vancouver. It was a part of the chain that earned them $55,000 and was a nifty piece of

How Password Hashing Algorithms Work and Why You Never Ever Write Your Own

vom 366.29 Punkte
Are you fascinated with cryptography? You're not alone: a lot of engineers are. Occasionally, some of them decide to go as far as to write their own custom cryptographic hash functions and use them in real-world applications. While understandably enticing, doi

CVE-2020-0932: Remote Code Execution on Microsoft SharePoint Using TypeConverters

vom 355.94 Punkte
In April 2020, Microsoft released four Critical and two Important-rated patches to fix remote code execution bugs in Microsoft SharePoint. All these are deserialization bugs. Two came through the ZDI program from an anonymous researcher: CVE-2020-0931

MoviePass Settles With FTC Over Fraud and Data Security Failures

vom 314.49 Punkte
On Monday, the Federal Trade Commission charged the executives of the long-defunct MoviePass app over allegations that they fraudulently blocked customers from using the service as advertised while failing to protect their data privacy. The FTC also announced

AT&T Wants To Settle With FTC To Avoid Unlimited Data Throttling Lawsuit

vom 311.43 Punkte
AT&T has given up its years-long quest to cripple the Federal Trade Commission's authority to regulate broadband providers. "Just weeks ago, AT&T said it intended to appeal its loss in the case to the U.S. Supreme Court before a deadline of May

CVE-2020-0729: Remote Code Execution Through .LNK Files

vom 305.3 Punkte
In this excerpt of a Trend Micro Vulnerability Research Service vulnerability report, John Simpson and Pengsu Cheng of the Trend Micro Research Team detail a recent remote code execution bug in Microsoft Windows .LNK files. The following is a portion of

Veracode Hacker Games: The Results Are In!

vom 305.26 Punkte
The first everツ?Veracode Hacker Gamesツ?competition hasツ?come to a close, but were the flaws inツ?favor of our brave competitors? Read on to find out.ツ? Over the course of the two-weekツ?challenge, students from several universities in the U.S. and the U.K. came together to explore vulne

Local Privilege Escalation in Win32k.sys Through Indexed Color Palettes

vom 290.17 Punkte
This is the second in our series of Top 5 interesting cases from 2019. Each of these bugs has some element that sets them apart from the more than 1,000 advisories released by the program this year. Today’s blog looks a local privilege escalation in t

AT&T Suffers Another Blow In Court Over Throttling of 'Unlimited' Data

vom 263.76 Punkte
An anonymous reader quotes a report from Ars Technica: A federal judge has revived a lawsuit that angry customers filed against AT&T over the company's throttling of unlimited mobile data plans. The decision comes two years after the same judge decided

AT&T Suffers Another Blow In Court Over Throttling of 'Unlimited' Data

vom 263.76 Punkte
An anonymous reader quotes a report from Ars Technica: A federal judge has revived a lawsuit that angry customers filed against AT&T over the company's throttling of unlimited mobile data plans. The decision comes two years after the same judge decided

ConstraintLayout 2.0.0 beta 7

vom 261.2 Punkte
We are happy to announce the release of ConstraintLayout 2.0 beta 7. It’s available from the google maven repository:dependencies {    implementation 'androidx.constraintlayout:constraintlayout:2.0.0-beta7'}or if using the android.support packages:dependencies {    implementation 'com.android.support.constraint:constraint

Deobfuscating/REversing Remcos - AutoIt, Shellcode, and RunPE

vom 251.64 Punkte
Remcos is a robust RAT actively being used in the wild. This multi-staged/evasive RAT provides powerful functionality to an attacker. Each stage is written in a different language: AutoIt -> Shellcode -> C++. I wanted to explore both the evasiven

Team Security Diskussion über Supreme Court ruling stifles FTC effort to penalize MoviePass for data mismanagement and user throttling