Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Detecting vulnerabilities in the QR code reader tool of iOS 11 may trick users into accessing malicious websites
Infosec page discovered a security flaw in the QR code reader tool of iOS 11 Camera app that could cause users to be tricked into accessing malicious websites without their knowledge.
Since iOS 11, to read QR codes, users only need to use the Camera app and not install their own software like before. Even, users can access the website if the QR code is embedded with the website address. But an error occurred on this QR tool, which can cause users to be tricked into accessing other websites with the displayed address.
Infosec has experimented with the Camera app on iOS 11.2.1, with the QR code below you will get asked to access facebook.com, but in fact it leads users to the Infosec website. This shows that the tool for reading QR codes in iOS 11 Camera app is easily tricked.
The bug was discovered by Infosec at the end of last year, and they reported this error to Apple on December 23, 2017, but so far despite a lot of iOS update versions have been released, it has not been fixed yet.
See more:
- New dangerous security vulnerabilities appear on iOS 11.2.6, can read messages without unlocking
- The former Apple engineer claims to be able to unlock all iPhones for $ 15,000
- The most prominent new features in iOS 11.3
Kareem WintersYou should read it
- The researcher released code that exploits the iOS Kernel vulnerability
- What is QR code?
- Microsoft fixes a serious vulnerability that has existed for 17 years in Windows Server
- Immediately patch CWP vulnerability that allows code execution as root on Linux servers
- Hundreds of HP printer models contain vulnerabilities that allow remote code execution attacks
- How to read UPC bar codes to identify US, Japanese or Chinese goods
- Find bug in Emotet malware, prevent it from spreading for 6 months
- Discovered a new zero-day vulnerability on macOS that allows attackers to run commands remotely
May be interested
- Detecting SharkBot malware hiding in anti-virus applications on Google Play
somehow, the sharkbot anti-virus application has been approved on the google play store. - Warning: New malware can hijack Vietnamese users' access to Facebook and Gmaila new line of malicious code using plugx rat is attacking vietnamese users.
- CMC InfoSec provides malware removal tool for online DDoS attackyour computer may be infected with cbot malicious code and is one of the tens of thousands of 'militants' that are attacked by attackers taking advantage of ddos attack on vietnamese websites these days. however, there were tools to destroy this dangerous malicious code.
- McAfee exaggerates the risk of the .vn websitesurveys with nearly 70,000 .vn websites using mcafee's website security assessment tool show that only 2.33% of websites contain malicious code, a very small percentage of the company's previous research results.
- Warning: The new Facebook virus, a malicious code that is spreading rapidly through Messengerfrom yesterday (december 18, 2017), a new type of malicious code has appeared and raged in vietnam. this malicious code is not too sophisticated but is spreading very fast through facebook messenger because it is sent from the friends in the friend list.
- 14 games on the App Store contain malicious code, iPhone users be carefulsecurity researchers wandera recently discovered 14 games linked to a server once used to control malware golduck that made the android world chaotic last year.
- Instructions to block websites from accessing the camera on Edgewith the option to adjust camera permissions on microsoft edge, users can easily change options for websites, thereby ensuring more privacy.
- Detecting malicious code 'super dangerous'security researchers have discovered a very malicious type of malicious code that has infected and stole user information on millions of pcs.
- Reader code names famous games to infiltrate Microsoft Storea malicious code called electron bot has infiltrated microsoft's official app store, microsoft store.
- Detecting new malware on WinRAR can infiltrate computers and steal dataresearchers have discovered a new type of malicious code that could take advantage of the security bug on winrar decompression software to hijack and hijack computers to steal data.
Attack the network
- Many computers in Vietnam have been hijacked due to virus infection
- CertUtil.exe allows an attacker to download malicious code and bypass antivirus software
- Warning: GandCrab extortionist code is attacking Vietnam
- Appearing dangerous Android malicious code specializing in stealing chat content on Facebook Messenger, Skype ...
- Warning: Detecting more than 1000 Cisco router and switch devices in Vietnam has a serious security error
- A series of cult videos, billions of views on YouTube were hacked, renamed and deleted
Many computers in Vietnam have been hijacked due to virus infection
CertUtil.exe allows an attacker to download malicious code and bypass antivirus software
Warning: GandCrab extortionist code is attacking Vietnam
Appearing dangerous Android malicious code specializing in stealing chat content on Facebook Messenger, Skype ...
Warning: Detecting more than 1000 Cisco router and switch devices in Vietnam has a serious security error
A series of cult videos, billions of views on YouTube were hacked, renamed and deleted