Car Hacking: More likely to be done by a mechanic than by a hacker
infosec

Car Hacking: More likely to be done by a mechanic than by a hacker

When we talk about car hacking, it comes to mind a hacker who gets remote access to the car system ...
Read More
infosec

Sri Lanka: Blocks access to social media

The government of Sri Lanka has temporarily blocked access to various social media services following deadly explosions that erupted ...
Read More
infosec tweaks

How to hack networks with Wi-Fi passwords

Probably you have a Wi-Fi network in your home or stay close to one (or more) that appears in ...
Read More
infosec tweaks

What is Social Engineering, what are its techniques and how to protect yourself?

Social Engineering is the term used for a wide range of malicious activities that are accomplished through human interactions. Uses the ...
Read More
infosec tweaks

Cryptocurrency: Ways to Enhance Your Privacy

Privacy and privacy on the internet are of great importance. It is not enough to take one or two measures to protect ...
Read More
Latest Posts

Tumblr: Fixes a bug that could leak user information

Tumblr corrected a vulnerability of his platform, which could leak hidden user information. The information that could leaked included email addresses, encrypted and unencrypted passwords, user locations, and the latest IP addresses from which each user connected.

Tumblr

The vulnerability was in the "Recommended blogs" feature of the Tumblr desktop application, where logged-in users could find blogs that might be of interest to them.

According to official announcement Tumblr "When a blog appeared in the recommended blogs field, using special debugging software, it was possible to view hidden items." The bug was reported through Tumblr's bug bounty program, and was resolved by the team in less than 12 hours.

The company said there were very few cases where this bug could be exploited, and reported that there are no reports indicating that this vulnerability has been used by a malicious user. At the same time, the company says users do not need to make a change.

The reason Tumblr announced that the Bug existed and has now been corrected is because it wants to maintain a "transparency" between the platform and the users. In addition, it has improved its monitoring and analysis of data it has so far, so that in the future it will detect such vulnerabilities sooner.

Tumblr is another social network that has publicly announced some vulnerability lately, just like Facebook and the Google+ where it could have been used or confirmed to have been used.

Do you have an opinion? Leave your comment.

The author allows you to copy his / her text only if you report the source (SecNews.gr), as an e-mail address (Live URL) of the article.
Updated on by

Reader Interactions

Leave a reply

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *