Skip to main content

Breaking News : YAHOO has just released a security patch that prevents a serious bug which allowed hackers to read any email

Breaking News : YAHOO has just released a security patch that prevents a serious bug which allowed hackers to read any email

Yahoo has just issued a security patch of a highly critical XSS (cross-site scripting) security vulnerability in its users’ email system that allowed hackers to read any email contents.

Who discovered this security flaw ?

Jouko Pynnonen, a famous cyber-security researcher lived in Finland first discovered this serious issue and reported it to Yahoo. Jouko Pynnonen also reported a serious bug in Yahoo last year that allowed hackers to hack any user’s account by using XSS (cross-site scripting) vulnerability. He was also awarded in $10,000 by Yahoo’s bug bounty program on Hackerone.

How does this bug work ?

Jouko Pynnonen has posted an article on his personal blog about how the bug works. He said that the bug existed in the email’s HTML filtering.
Jouko sent an email with various sorts of attachments to inspect the raw code in HTML (Hyper Text Markup Language) of that email. However, Yahoo has a protection to block malicious codes of these type HTML emails in its filtration process.
But, Jouko had succeeded to bypass this filtration process by sending a YouTube link in that email which allowed him to execute a JavaScript code. After executing this malicious JavaScript he was able to read victim’s email finally.
According to his statement :
“As long as the URL pointed to a white-listed website such as YouTube, it was not further sanity checked or encoded,” writes Pynnonen.

I’m still a Yahoo user. What can I do now to get rid off ?

Do not scare …. Yahoo has already fixed this poisonous flaw.

Sources for the news and further reading


Tags : Bugs, Hacks, News, Security, Software, Yahoo, 

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 



$3 Donation [Fixed]

$Any Amount





Comments

Back to Top

Popular Posts (Last 7 Days)

What I Learnt Today : Pterodactyl was not only the flying dinosaur, There were many

What I Learnt Today : Pterodactyl was not only the flying dinosaur, There were many
image source & credit : LINK We are all familiar to Pterodactyl, the flying dinosaur. But, actually there existed so many flying dinosaurs. The common name of all this “flying dinosaurs” is Pterosaurs. There are about 130 genus of Pterosaurs existed in the jurassic period. Here I listed some of them — 1. Pterodactyl The Pterodactyls had a couple of very wide wings up to 40 feet long. But, these wings are not similar to modern bird’s wings. There were no feathers , their wings were made of a leathery substance. They lived near the sea in the cave & trees. They ate sea fish, large insects & other small dinosaurs. We found their fossils in Europe, North America, Australia, and Africa.
Pterodactyl
image source & credit : LINK
Pterodactyl Fossil
image source & credit : LINK 2. Petinosaurus Petinosaurus wings were formed by membranes of skin and other soft tissues. And also there were no feat…

Top 10 famous Abstract Art of all the time

Top 10 famous Abstract Art of all the time I love abstract arts. I believe that abstract art is not what you see , it’s what you think. Abstract art is the freedom of using colors, is the freedom of representing your thoughts in colors. Today, here I share top 10 famous abstract arts of all the time. Hope you’ll enjoy them. Number 10 : The Son Of Man by Rene Magritte
image source & credit : LINK Artist: René Magritte
Media: Oil paint
Created: 1964
Period: Surrealism
Subject: René Magritte Number 09 : Garçon à la pipe by Pablo Picasso
image source & credit : LINK Artist: Pablo Picasso
Dimensions: 1 m x 81 cm
Created: 1905
Media: Oil paint
Period: Picasso’s Rose Period
Support: Canvas Number 08 : The Night Watch by Rembrandt
image source & credit : LINK Artist: Rembrandt
Dimensions: 3.63 m x 4.37 m
Created: 1642
Locations: Amsterdam Museum, Rijksmuseum
Periods: Baroque, Dutch Golden Age
Genres: Portrait, History painting Number 07 : Girl with a pearl earring by Johannes Ver…

"The Old Man"- My Original Abstract Art

My Original Abstract Art "The Old Man"



 enjoy :) 
Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


dragon painting - My Original Abstract Art

My Original Abstract Art "dragon painting"



enjoy :)
Tags : Abstract, Art, Design, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


BREAKING NEWS : Millions of Google Accounts Compromised by Gooligan Malware Attack

BREAKING NEWS : Millions of Google Accounts Compromised by Gooligan Malware Attack
image credit Gooligan Malware Attack is compromising Google accounts on android devices including Gmail, Google Play, Google Drive, Google Docs, Google Photos and some other services of Google. This malware is now attacking near 13K Google accounts on android devices per day. Google is aware & release an update recently : “Gooligan has breached over a million Google accounts. We believe that it is the largest Google account breach to date,” Researchers of an IT security firm CheckPoint, have discovered this malware campaign that has been targeting Android users. This malware has already breached more than 1 million Google accounts of users around the world. IT Security firm Checkpoint stated that : “These exploits still plague many devices today because security patches that fix them may not be available for some versions of Android, or the patches were never installed by the user. If rooting is suc…

My Original Abstract Art - “sunless flower garden”

My Original Abstract Art “Sunless Flower Garden”


enjoy :)
Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


My Original 3D Art “Absent-minded”

My Original 3D Drawing “Absent-minded”







*All 3D models used in my 3D arts are created with the help of Poser Pro by myself Tags : Art, Drawing, Painting, Sketch,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


"Moonlit Night" My Original Abstract Art

Here I share my original abstract art "Moonlit Night"

enjoy :) Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


“Tears on Cheek of Africa” My Original Abstract Art

My Original Abstract Art “Tears on Cheek of Africa”

The love with lands surrounded by
the Mediterranean sea to north,
Sinai Peninsula keeps a house with whom?
Suez and red having room. Forest and her ancient folk
always in our feelings and talk,
All the mankind having so curious
You,more I think mysterious. Beauty of her smile peeking, a truth
I know the truth, the truth.
The photographer committing suicide
never conceding the painful sight. A monster throwing away foods
In the water, children of you
Crying crying for a grain.
The moribund acting his last sequence
Why? a vulture waiting, a question. I love you, consider mother of lions
Smile revealing a secret, oh Africa!
enjoy :) Tags : Abstract, Art, Drawing, Painting, Poems, Poetry,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


ALERT ! Kickass Torrents Mirror katcr.to stealing users credit card data

katcr.to seems to a torrent site offering torrent services, but, the shocking truth is that it's not legit, it's a scam site. It scams its users by requesting them to register with their valid credit card details. Also kat.am is doing same. These two sites are using the same pattern to scam people. The most worried thing is that due to their site's alexa ranks, it's very difficult to determine that they are legit or scam.  The worldwide alexa rank of Katcr.to is 15,355 &  Kat.am is 6,773. On the past 21st July, 2016  the alleged owner of Kat.cr domain Artem Vaulin wasarrested. ALERT !! Don't be SCAMMED by this fake torrent site. Do not provide any financial or, confidential data. Source of the news : https://www.hackread.com/kickass-torrents-mirror-credit-card-scam/ image source & credit : LINK Tags : Hacks, News, Security, Cyber Attack, Cyber Crime,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if y…