Application Security Weekly for June 17

The Android Debig Bridge (ADB) feature is even less secure than we thought.  Avoid those "recharge stations"

https://doublepulsar.com/root-bridge-how-thousands-of-internet-connected-android-devices-now-have-no-security-and-are-b46a68cb0f20

 

A tale of the disclosure of WebUSB vulns.

https://pwnaccelerator.github.io/2018/webusb-yubico-disclosure.html

 

In the "let's be clear" department, Microsoft explains what is will and will not fix.

https://www.theregister.co.uk/AMP/2018/06/13/microsoft_security_servicing_commitments_for_windows_draft/

 

And that's the news.

Add comment

Bill Sempf

Husband. Father. Pentester. Secure software composer. Brewer. Lockpicker. Ninja. Insurrectionist. Lumberjack. All words that have been used to describe me recently. I help people write more secure software.

 

 

profile for Bill Sempf on Stack Exchange, a network of free, community-driven Q&A sites

MonthList