TECH NEWS

Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk

Six Microsoft 365 Android apps contain an identical flaw that could risk billions of downloads being compromised.

The findings, shared exclusively with SecurityWeek ahead of the expected public release of the research on Tuesday, were uncovered by Enclave, an AI-powered exploitable bug hunter. It is nothing more than a single debug flag being left in the production code of Word, PowerPoint, Excel, Microsoft 365 Copilot, Microsoft Loop and OneNote for Android. Someone left debug mode enabled in production: – set IsDebugMode(true). This was enabled across all six apps, but was not enabled in other Microsoft (MS) apps such as Teams. These were not affected by any consequent potential exploitation attempt.

The effect of such debug flags varies. Sometimes the purpose is simply to affect logging or to test output. “This one changed the behavior around account access token sharing,” explains Enclave reporting its findings. “With debug mode enabled, the protection...

Copyright of this story solely belongs to securityweek.com. To see the full text click HERE

http://thetechpanda.com/wp-content/uploads/2022/12/254921.png

Closing the AI Fluency Gap in Security Teams: Why Governance, Transparency & Training Decide AI Succes

AI has changed the tempo of cybersecurity. For defenders, it can help detect threats faster, reduce repetitive work, and speed up response. For attackers, it can make phishing more convincing, social engineering easier to scale, and deepfakes harder to identify. The same technology helping security teams move faster is also

https://cdn.mos.cms.futurecdn.net/WNFviZQjeAUdwa86PBSQX3-2100-80.jpg

'The last thing any of us want': Microsoft CEO Satya Nadella warns AI dominance could 'hollow out entire…

* Satya Nadella warns against giving AI too much power and reliance * Microsoft CEO warns such a move could "hollow out entire industries" * The AI industry can learn from past mistakes, Nadella urges Microsoft CEO Satya Nadella has issued a warning against handing over too much power and value

https://cdn.mos.cms.futurecdn.net/Ynn5A7LMwGwCLDCEBjZ5PY-2000-80.jpg

My favorite digital photo frame just got the Google Photos integration I've been waiting years for — and…

* Aura has added Google Photos support for its digital photo frames * Albums / individual photos can be uploaded to frames from linked accounts * Aura Frames can also be pre-loaded with existing Google Photo albums Aura features heavily in my best digital photo frames guide. In fact, I have two of its

https://cdn.mos.cms.futurecdn.net/z3Bv4T4muSD8f9BhR8M4q4-2560-80.jpg

Brain experts tell the UK government there's 'very little' scientific evidence that phones are harming kids — but a social media ban is going ahead anyway

* Experts say more evidence is needed on kids' phone use * They were speaking in a House of Commons Select Committee * Right now "almost everything is correlational" The UK government has now put in motion a plan to ban under-16s from accessing social media content in apps such

Read more

Closing the AI Fluency Gap in Security Teams: Why Governance, Transparency & Training Decide AI Succes

'The last thing any of us want': Microsoft CEO Satya Nadella warns AI dominance could 'hollow out entire…

My favorite digital photo frame just got the Google Photos integration I've been waiting years for &mdash; and…

Brain experts tell the UK government there's 'very little' scientific evidence that phones are harming kids &mdash; but a social media ban is going ahead anyway

My favorite digital photo frame just got the Google Photos integration I've been waiting years for — and…

Brain experts tell the UK government there's 'very little' scientific evidence that phones are harming kids — but a social media ban is going ahead anyway