MacAlert!

Up to the minute Apple and Mac news alerts

Amazon Patches Ring Video Doorbell Vulnerability That Could Allow Hackers to Breach Owner’s Wi-Fi Network

[2019-11-08 20:13:42]

Computing: Once the device is reset, it starts the process of pairing itself with the owner’s Wi-Fi network. Because the exchange of information between the device and the app is performed via an unsecured HTTP connection, it enables a hacker within range of the Wi-Fi network to intercept the login details. The patch released by Ring to mitigate the vulnerability ensures that the device uses an HTTPS connection while broadcasting a Wi-Fi signal for the phone to grab. The connection is also secured through a digital certificate, signed by the firm and validated by the app. Ring was using HTTP? That seems less like a mistake and more like gross incompetence.  ★ 

Read more....



RELATED!

Every Horse Emoji, Ranked

The RCS Messaging Thing Is Working Out as Well as I Expected, Which Is to Say Terribly

Congress Looking Into Anticompetitive Behavior in the Digital Library Market

WeWork’s Adam Neumann Is the Most Talented Grifter of Our Time

United Airlines Suggests That Apple Is Helping Design Terminal Upgrades at SFO

Tim Cook on the Five-Year Anniversary of His Coming Out as Gay

Christopher McQuarrie: ‘Focus Entirely on Execution and Not on Result’

★ The Curious Design of Mail’s Message Action Toolbar in iOS 13

The Talk Show: ‘iPhone-Colored Glasses’

Zuckerberg Testified Before the House Financial Services Committee and It Did Not Go Well for Him

‘Perfectly Cropped’

David Shayer on the Spotty Quality of iOS 13 and MacOS 10.15

★ Idle Speculation on Whether Apple Is Going to Hold Another Keynote Event This Year

Tim Cook Named Board Chairman of Tsinghua University’s School of Economics and Management

Bipartisan Letter From Congress to Tim Cook on Hong Kong and China (PDF)