Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ Security Flaw In a Popular Smart Helmet Allowed Silent Location Tracking

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š Security Flaw In a Popular Smart Helmet Allowed Silent Location Tracking


๐Ÿ’ก Newskategorie: IT Security Nachrichten
๐Ÿ”— Quelle: yro.slashdot.org

An anonymous reader quotes a report from TechCrunch: The maker of a popular smart ski and bike helmet has fixed a security flaw that allowed the easy real-time location tracking of anyone wearing its helmets. Livall makes internet-connected helmets that allow groups of skiers or bike riders to talk with each other using the helmet's in-built speaker and microphone, and share their real-time location in a friend's group using Livall's smartphone apps. Ken Munro, founder of U.K. cybersecurity testing firm Pen Test Partners, said Livall's smartphone apps had a simple flaw allowing easy access to any group's audio chats and location data. Munro says the two apps, one for skiers and one for bike riders, collectively have about a million users. At the heart of the bug, Munro found that anyone using Livall's apps for group audio chat and sharing their location must be part of the same friends group, which could be accessed using only that group's six-digit numeric code. "That 6-digit group code simply isn't random enough," Munro said in a blog post describing the flaw. "We could brute force all group IDs in a matter of minutes." In doing so, anyone could access any of the 1 million possible permutations of group chat codes. "As soon as one entered a valid group code, one joined the group automatically," said Munro, adding that this happened without alerting other group members. "It was therefore trivial to silently join any group, giving us access to any users' location and the ability to listen in to any group audio communications," said Munro. "The only way a rogue group user could be detected was if the legitimate user went to check on the members of that group." [...] In an email, Livall's R&D director Richard Yi explained that the company improved the randomness of group codes by also adding letters, and including alerts for new members joining groups. Yi also said the app now allows the shared location to be turned off at the user level.

Read more of this story at Slashdot.

...



๐Ÿ“Œ Security Flaw In a Popular Smart Helmet Allowed Silent Location Tracking


๐Ÿ“ˆ 91.9 Punkte

๐Ÿ“Œ โ€œSmartโ€ helmet flaw exposes location tracking and privacy risks


๐Ÿ“ˆ 53.9 Punkte

๐Ÿ“Œ Gerรผchte: "Sanfter Neustart" von Silent Hill mit "Team Silent" und mรถgliches Revival von Silent Hills


๐Ÿ“ˆ 39.06 Punkte

๐Ÿ“Œ Turning Off Facebook Location Tracking Doesn't Stop It From Tracking Your Location


๐Ÿ“ˆ 38.17 Punkte

๐Ÿ“Œ Turning Off Facebook Location Tracking Doesn't Stop It From Tracking Your Location


๐Ÿ“ˆ 38.17 Punkte

๐Ÿ“Œ Location, location, location... technologies under the microscope


๐Ÿ“ˆ 32.19 Punkte

๐Ÿ“Œ Popular Weather App AccuWeather Caught Sending User Location Data, Even When Location Sharing is Off


๐Ÿ“ˆ 31.38 Punkte

๐Ÿ“Œ A flaw in Kaspersky Antivirus allowed tracking its users online


๐Ÿ“ˆ 28.83 Punkte

๐Ÿ“Œ Track Target Using Canary Token Tracking Link | Location Tracking


๐Ÿ“ˆ 27.44 Punkte

๐Ÿ“Œ Smart Ski Helmet Headphone Flaws Leak Personal, GPS Data


๐Ÿ“ˆ 27.38 Punkte

๐Ÿ“Œ New 5G Flaw Exposes Priority Networks to Location Tracking and Other Attacks


๐Ÿ“ˆ 26.52 Punkte

๐Ÿ“Œ Cherry MX Board Silent: Die G80 erhรคlt rote und schwarze Silent-Taster


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ Cherry MX Board Silent: Die G80 erhรคlt rote und schwarze Silent-Taster


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ PSA: Turning off silent macros in Office for Mac leaves users wide open to silent macro attacks


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ PSA: Turning off silent macros in Office for Mac leaves users wide open to silent macro attacks


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ Gerรผchte: "Sanfter Neustart" von Silent Hill und mรถgliches Revival von Silent Hills; Konami USA dementiert


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ Silent Hill: Konami stellt gleich drei neue Spiele und das Remake von Silent Hill 2 vor


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ Silent Hill: Neuer Film โ€žReturn to Silent Hillโ€œ von Christophe Gans angekรผndigt


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ Konami stellt โ€žSilent Hill: The Short Messageโ€œ vor und verรถffentlicht neuen Trailer zum Remake von Silent Hill 2


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ Two popular WordPress plugins allowed the admin to log in without a password (300,000+ installs).


๐Ÿ“ˆ 22.96 Punkte

๐Ÿ“Œ Shoddy security of popular smartwatch lets hackers access your childโ€™s location


๐Ÿ“ˆ 22.67 Punkte

๐Ÿ“Œ Logitech app security flaw allowed keystroke injection attacks


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ WhatsApp Desktop Platform Security Flaw Allowed Access To Local File System


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ Apple just fixed a security flaw that allowed malware to take screenshots on Macs


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ Flaw allowed man to access private information of other Brinks Home Security customers


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ Critical Yahoo Mail Security Flaw Allowed Hackers to Access Any Account


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ Critical Yahoo Mail Security Flaw Allowed Hackers to Access Any Account


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ UPDATE: Zoom has patched a security flaw that could have allowed anyone to remotely eavesdrop on unprotected active meetings.


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ I found a WhatsApp security flaw that allowed hackers to read the file system


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ Apple patches security flaw that allowed Magic Keyboard Bluetooth connections to be faked


๐Ÿ“ˆ 22.5 Punkte

๐Ÿ“Œ Leaky ski helmet speakers expose conversations and data


๐Ÿ“ˆ 22.06 Punkte

๐Ÿ“Œ Science and Bicycling Meet In a New Helmet Design


๐Ÿ“ˆ 22.06 Punkte

๐Ÿ“Œ Telstra and Arenberg develop 5G bike helmet prototype


๐Ÿ“ˆ 22.06 Punkte

๐Ÿ“Œ Helmet Store Showroom 1.0 SQL Injection


๐Ÿ“ˆ 22.06 Punkte

๐Ÿ“Œ #0daytoday #Helmet Store Showroom 1.0 SQL Injection Exploit [webapps #exploits #0day #Exploit]


๐Ÿ“ˆ 22.06 Punkte











matomo