Information Security News
Connected Smart Cars Are Easily Trackable, Warns Infosec Bod
Articles featuring a "glassBYTEs Original Story" logo have been written by glassBYTEs.com staff and gone through our normal procedures. In addition, glassBYTEs.com links to newspapers featuring articles about glass and publishes press releases as a ...
The vulnerabilities, laid out in a report published Friday by security firm Bluebox Labs, are the latest black eye for so-called "Internet of Things" devices. The term is applied to appliances and other everyday devices that are connected to the Internet, supposedly to give them a wider range of capabilities. The Hello Barbie doll is able to hold real-time conversations by uploading the words a child says to a server. Instant processing on the server then allows the doll to provide an appropriate response.
Bluebox researchers uncovered a variety of weaknesses in the iOS and Android app developed by Mattel partner ToyTalk. The apps are used to connect the doll to a nearby Wi-Fi networks. The researchers also reported vulnerabilities in the remote server used to communicate with the doll.
Infosec bods rate app languages; find Java 'king', put PHP in bin
Java applications have been found to have many fewer common vulnerabilities than those coded using web scripting language. Less than a quarter of Java apps sport sporting SQL injection vulnerabilities, compared to more than three quarters of those ...