Serious vulnerabilities in the platform WebOS
A skinny dog all are fleas. Remotely control your Internet browser, facilities for sending malicious code or disconnect the telephone connection terminal on a recurring basis. These were some of the shortcomings identified in the security company Group Intrepidus Release 1.3.5 of Palm OS WebOS with simply sending an SMS message.
When we started to look around a bit it became clear WebOS the new platform was shot by some very dangerous errors. These errors can be traced as WebOS is essentially a web browser and applications are written in JavaScript and HTML. This also means that WebOS applications are subject to many web application vulnerabilities as any seasoned developer knows very well.
To make matters worse, the company has released a demo video which shows the existence of many of the shortcomings outlined in the report. Also noted that Palm seems to have corrected the problem with version 1.4 of WebOS, although given the architecture of the system does not preclude further errors.
Vía | PalmInfocenter.
HTC Vodafone Magic with malware: yes there is a remittance card infected
Last week we had that you Panda Security researchers have discovered a remarkable cocktail of malware on a Magic HTC Vodafone just sold. We explain why the virus had to reside in microSD cards and wonder if it could be an isolated case or if the danger was greatest.
Now we know that the threat was not timely. Vodafone has informed us that there is a shipment of infected removable cards, and have already taken steps never to sell any other terminal that contains the virus, in addition to those affected have been sent a new card and I have provided an antivirus to make sure that their computers are clean.
It has only happened in Spain (remember that the botnet Mariposa accessing the virus used to be run by hackers Spanish). In total around 3000 might have to post with danger, although it is clear that all contain malware.
If you're worried about being among the 3000 hit, just cautious to scan the files autorun.inf and autorun.exe housed at the root of the card. The malware that Panda Security was specifically detected a bot Butterfly, worm and Lineage Conficker for password theft.
In Engadget Mobile | Vodafone HTC Magic Gift malware. "Case point or a serious issue
HTC Vodafone Magic Gift malware. “Case point or a serious issue?
Panda Security researchers have identified and disseminated that Vodafone Spain has sold them a HTC Magic infected with malware. Specifically with a viral cocktail made up of a botnet client butterfly, the worm Lineage Conficker and malware to steal passwords.
The surprise was revealed when the phone connected to the computer via the USB cable and the antivirus detected the files autorun.inf and autorun.exe, housed in the microSD, were malicious. The file was programmed to infect every PC on which they were fitted.
Analyzing the bot network's famous butterfly discovered that this botnet is no longer included under the administration of Spanish hacker group "DDP Team", but someone called tnls. The client connects using the UDP protocol to a server that Panda has detailed in his blog and get instructions. In other words, the bot calls home to tell him what to do, probably steal the phone's user credentials.
Let's take this news with tweezers. Of course, fortunately, the Magic with surprise has gone into the hands of security experts, but it is still likely to be a case in point. I mean the files in question were lodged in the microSD format FAT or FAT32 (Windows can not mount the internal memory system where lodges Android), and normally these removable memory cards are empty, freshly formatted. Therefore, I think it could be a terminal handled, perhaps back to Vodafone after a first purchase or used by someone who had access to him before being sold. Hopefully soon clarification and not trigger more cases.
Vía | Panda Research Blog
New Vodafone 360: More Facebook, Tuenti, Twitter, Android, App Store and eBooks
Vodafone has used the start of MWC to present several developments related to the service 360, which integrates in one place All media, social networking and other user to access services them from a mobile or computer.
Vodafone People is perhaps the most important pillar 360 and is in charge of forming one address book all your phone contacts, Mail, messenger and social networks to interact with all in one place without having to access each site separately.
People are automatically synchronized with your computer and is available for 80 different terminals like the Samsung 360, Symbian S60 and now also as the HTC Android Magic Tattoo HTC and Sony-Ericsson XPERIA X10.
Vodafone 360 more social
So far, 360 integration with Facebook was restricted to the state, the pictures of the contacts and little else but a new application that is already available, add the rest of functionalities that can be performed normally via the web.
also adds 360 new social networks that help you grow and make it through new applications that will appear this week to Tuenti and Twitter.
Vodafone App Store
The App Store continues to grow and Vodafone already has more than 7,000 applications, of which 1,500 are available to Spanish customers and are among the most downloaded Gol TV, Language Translator, or Traffic Information Quiz games Intelligence Test.
And to boost the commercialization of editorial content on mobile devices, Vodafone will be the first Spanish operator to offer eBooks through its Application Shop over 100 titles in Spanish and a price below 10 euros, which represents between 30 and 50% below the price on paper.
In addition, to further enhance open 360 community, has launched the App Star contest Competition that different prizes of up to 100,000 euros between developers from 8 countries.
