Vulnerabilities

China_Cyber_Threat_Concept

Update: DHS Looking Into Cyber Risk from TCL Smart TVs

The acting head of the U.S. Department of Homeland Security said the agency was assessing the cyber risk of smart TVs sold by the Chinese electronics giant TCL, following reports that the devices may give the company “back door” access to deployed sets.

IP Phone Home

Exploitable Flaw in NPM Private IP App Lurks Everywhere, Anywhere

A serious security flaw in a commonly used npm security module, private-ip, may affect hundreds of thousands of private and public applications.

TCL Android TV

TV Maker TCL Denies Back Door, Promises Better Process

Chinese electronics giant TCL has acknowledged security holes in some models of its smart television sets, but denies that it maintains a secret “back door” that gives it control over deployed TVs.

TCL Android Vulnerability

Security Holes Opened Back Door To TCL Android Smart TVs

A report by independent researchers warns that TCL brand Android smart TVs contained serious and exploitable security holes. It also raises questions about the China-based electronics firm’s ability to remotely access and control deployed devices.

Vulnerability Warning

Episode 190: 20 Years, 300 CVEs. Also: COVID’s Lasting Security Lessons

In this episode of the podcast (#190), sponsored by LastPass, Larry Cashdollar of Akamai joins us to talk about how finding his first CVE vulnerability, more than 20 years ago, nearly got him fired. Also: Katie Petrillo of LastPass joins us to talk about how some of the security adjustments we’ve made for COVID might not go away any time soon.