TikTok patched an exploit that could’ve let attackers steal user phone numbers

Earlier this year, TikTok launched a bug bounty program after the discovery of vulnerabilities and threats of a ban by the former Trump administration. That effort appears to have paid dividends, as it recently fixed a serious flaw discovered by the...

Valve patched Steam bugs that could have allowed hackers to take over PCs

Valve has dodged what could have been a potentially nasty cheating situation for Steam users. Check Point Research found four vulnerabilities within the company’s Steam Sockets network library. The library is included as part of a networking plugin V...

iPhone exploit gave hackers control over WiFi without your input

Many security exploits require at least some kind of interaction on your part, but that wasn’t true for an iPhone exploit earlier this year. As Ars Technica reports, Google Project Zero researcher Ian Beer has detailed an iOS 13 exploit that let some...

Homeland Security warns of a ‘critical’ security flaw in Windows servers

The US government has a major server security headache on its hands. Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has delivered a rare emergency directive (via TechCrunch) urging government agencies to install a patch f...

Google Drive flaw may let attackers fool you into installing malware

Google Drive may have a way for hackers to trick you into installing rogue code. System administrator A. Nikoci has told The Hacker News about a flaw in Drive’s “manage versions” feature that could let attackers swap a legitimate file with malware. T...