The first day of the Pwn2Own hacking contest held in Tokyo has concluded, and a dual-member team of white-hat hackers by the name of Fluoroacetate cleaned up the house. After successfully hacking past numerous devices from multiple manufacturers, such as Samsung and Xiaomi, the team collected a bounty of $145,000 and secured a commanding lead in the contest after accruing 15 Master of Pwn points. Read More
Checking your credit card statement after wondering why your balance is so high and finding transactions that you don't recognize is among life's most uncomfortable moments. Many of us have been there, and even though you know there's a good chance you'll get the money back, that feeling of violation is hard to shake. Unfortunately, some recent OnePlus customers are going through exactly that at this moment in time.
A poll was posted on the OnePlus forum on Thursday asking users if they had noticed fraudulent charges on their credit cards since purchasing items on the OnePlus site. More than 70 respondents confirmed that they had been affected, with the majority saying they had bought from the site within the past 2 months. Read More
Sometimes inaction can be just as dangerous as making a wrong move. That seems to be the case for Samsung, as it appears simply letting a domain expire could have left millions of its customers vulnerable to hackers. Luckily, a security researcher named João Gouveia noticed the potential problem and snapped up the domain before anyone with more nefarious intentions was able to grab it. Read More
The ability to unlock a device with your face is nothing new - Android had it back in 4.0 Ice Cream Sandwich. But recently, we've seen more complex eye unlocking technology crop up on consumer electronics, such as Windows Hello. The Galaxy Note7 and S8 included something similar, called the Iris Scanner.
Members of the Chaos Computer Club, Europe's largest association of hackers, claim they have broken the security of the S8's Iris scanner. Read More
Heard of Mr. Robot, the popular USA show that features developers, hacking, giant, evil corporations, and computers? If so, listen up: Glitchskier is a game where the player hacks the computer to progress, defeating enemies, boss fights, and the system itself.
Playing Glitchskier doesn't really feel like a game at all. It's more like a computer, with the game prompting you to open a game-within-a-game to play. This thing is hard - maybe I'm just not very good at it, or I need more practice, but it's a tricky one to master. Simply put you, an arrow ship thing, need to destroy the enemies heading towards you as you advance through a level. Read More
During the I/O 2016 Keynote presentation, and again at the October 4th Pixel announcement, Google made brief references to newly added support for seamless updates in Nougat. To make this work, many changes had to be made to the structure of Android and its assorted system partitions. As a result, there have also been some changes to the fastboot utility many of us use when new factory images become available. This post covers a few of the technical details and also demonstrates some of the ways to use the new features.
How it works
Seamless updates are accomplished by creating a second set of logical partitions in device storage. Read More
One of the more interesting things to emerge from the digital revolution is hacking competitions and prizes, wherein benevolent "white hat" hackers are invited to try and defeat hardware and software in a closed environment. The latest mobile-only edition of the Pwn2Own competition was sponsored by software security company Trend Micro, offering cash prizes to anyone who could get user info, install rogue apps, or completely unlock some of the biggest mainstream phones out there: the Nexus 6P, the Galaxy S6, and the iPhone 6s. Read More
Calling all hackers and security researchers: Google wants to pay you money. Quite a lot, in fact. The top prize for finding a new critical flaw in Android in the new Project Zero Prize competition is a whopping $200,000, with the second prize at $100,000 and $50,000 split among additional entrants. The contest is being run by Project Zero, the company's own internal team of security researchers that documents critical flaws and bugs in wide-reaching software. Read More